Download ISA 562 - GMU Computer Science

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
page
13
page
14
page
15
page
16
page
17
page
18
page
19
page
20
Document related concepts

Distributed operating system wikipedia , lookup

Unix security wikipedia , lookup

Security-focused operating system wikipedia , lookup

Transcript 
ISA 562
Internet Security Theory & Practice
Domain5: Security Architecture & Design
ISA 562
1
Objectives




Security Architecture Description and benefits
Definition of Trusted Computing Base (TCB)
System level and Enterprise Security
Architectures
Trusted Systems
2
Introduction




Security architecture describes how system security
is put together to satisfy security requirements.
Balance requirements among capability, flexibility, ,
security, performance…etc
Security architecture is one aspect of the overall
system architecture
Security requirements are


Not added steps to the development process
Instead, specifications or guidelines influencing the life
cycle
3
Major Concepts

Security related terminology





ISMS ( Information Security Management System)
ISA ( Information Security Architecture)
Trusted Computing Base (TCB)
Security models
Enterprise Security Architecture

Main objectives in any enterprise security architecture



Guidance
Aligning business and security objectives
Using security best practices
4
Major Concepts

Benefits



Components




Manage IT risk at a reduced cost
Interoperability, integration and ease-of-access.
Architecture model
Language to be used
Using an architectural framework
Perspectives

People, process & Technology
5
Process framework for a Security Architecture
6
Good and bad architecting

Good security architecture



Strategic, holistic, allows multiple implementations.
Manages the processes of architecting, Solution
implementation, Compliance and Monitoring
Signs of poor architectural planning



No support for new business services
Prone to security breaches and vulnerabilities
Poor understanding of security goals and objectives
7
A High-Level Design
8
Enterprise Architecture Frameworks

PDCA Approach ( ISO 17799 or ISO 27001 )

TQM and ISO 9001:2000

Total Quality Management
9
Enterprise Architecture Frameworks

What is an ISMS?


ISMS stands for Information Security Management
System.
What is it for?

Incorporates process into business that




Influence the quality of the system
Increase product and service quality
Aligns process objectives with business objectives
Implementing an ISMS






Define the information security policy
Define the Scope of ISMS will coverage
Go through a security Risk assessment
Identify the risks and manage them
Select security controls
Prepare a statement of applicability
10
Enterprise Architecture Frameworks - 1

Zachman Framework


ITIL (Information technology infrastructure
Library)



Published in the UK and knows as the British Standard
15000
IT Services delivery
COBIT (Control Objectives for information
Technology)


Aligns business and IT objectives
Emphasizes regularity compliance
Basel II (Financial Risk Management Framework)


Establishes basic requirements for risk management
Guarantees financial stability standards
11
Enterprise Architecture Frameworks - 2

Six Sigma (process variance control framework)

Data driven and measurement based



COSO (Committee of Sponsoring Organizations)


DMAIC
DMADV
The importance of Identifying and managing risk
CMMI (Capability Maturity Model Integration)



Based on TQM
Improving process
Different Maturity levels
12
System Level Architectural Concepts

Components which provide basic security services




Two types of components



Integrity of computing processes
Controlled access to system resources
Predictable computing services
Hardware
Software
Computer layers include





End user
Application which sits on top of
Utilities that sit on top of
Operating systems which sits on top of
Hardware
13
System Level Architectural Concepts - 1

Some of the operating system services are






Process execution
Input and output processing
Error detection and handling
Communication
Security kernel provides critical security services
CPU - two different privilege states



Supervisor state where system programs execute
Application state where application programs and
non-privileged programs execute
Process states

Stopped , running, waiting , etc
14
System Level Architecture Concepts -2

Applications


System approaches



Current applications are portable and execute in a
multi-threaded OS.
Open or Closed systems
Single level or multi-level systems
System architectures

Centralized vs. Distributed
15
System Level Architecture Concepts -3

Memory management requirements




Protection: users cannot generate address, users can
share access, etc
Relocation and Sharing
Logical and Physical organization
Memory Addressing



Logical: requires translation to a physical address
Relative: location relative to known point ( ex: array)
Physical: absolute address or actual location
16
System Level Architecture Concepts - 4

Virtual memory




A process uses more memory than what is available
in the physical memory
Limited by swap space on disk
Uses the concept of pages and segments
I/O

Inter-process communication which involves locating
and relocation data and instructions between a
number of storage facilities (I/O controller, managing
memory, etc)
17
Basic System Security Concepts

Trusted Computing base (TCB)




Includes all the components and their operating
processes and procedures that ensure the security
policy of the organization is enforced
It should also be simple and testable
Enforces security policy
Monitors




Process activation
Execution Domain Switching
Memory protection
Input/output Operations
18
Basic System Security Concepts

Objects that require protection


Anything on the system such as: Memory, Operating system
tables, Directory files, Data structures, etc
Reference Monitor Concept

Abstract machine




Includes


Tamperproof
Verifiable
Always invoked (cannot bypass)
Subjects and objects
What is a Security Kernel?

Hardware, firmware, and software elements of a trusted
computing base that implements the reference monitor
19
Establishing Confidence in Trusted Systems

Evaluation criteria are standardized methods for
establishing confidence that products satisfy the
functional and assurance requirements of the
organization





Trusted Computer System Evaluation Criteria
(TCSEC) – The Orange book (1983-1999)
Information Technology Security Evaluation Criteria
(ITSEC) (1991-2001)
Federal criteria 1992
FIPS 140-1 of 1994 and FIPS-2 of 2001
Common Criteria (ISO 15408) (1998-present)
20
Related documents
www.itgovernance.co.uk/training
www.itgovernance.co.uk/training
commercial laboratory services
commercial laboratory services
Orange
Orange
Orange Book Summary - UMBC Center for Information Security and
Orange Book Summary - UMBC Center for Information Security and
Operating System Security
Operating System Security
Chapter 05
Chapter 05
World II Unit I May2011
World II Unit I May2011
Review Session #3
Review Session #3
TrustedDB A Trusted Hardware based Database with Privacy and
TrustedDB A Trusted Hardware based Database with Privacy and
Sirrix AG
Sirrix AG
Designing Trusted Operating Systems Operating Systems
Designing Trusted Operating Systems Operating Systems
Course Schedule
Course Schedule