Security and Information Assurance
Security Models
- The McCumber/Maconachy, et.al. Information Assurance Model
- Confidentiality models
- Integrity models
- Risk assessment models
- Other models
Security Policies
- Creation of Policies
- Maintenance of Policies
- Prevention
- Avoidance
- Incident Response
Security Technologies
- Cryptography
- Pointer to Algorithms section
- Digital Signatures
- Performance (software/hardware, operational approaches)
- Authenticaiton protocols and mechanisms
- Defense in depth
- Physically secure hardware
- Violation detection
- intrusion detection
- audit logs
- cryptographic hashing
- checksums
- Error-correcting codes
- Redundancy
- Fault Tolerance
Network Security
- Pointer to attacks/threats (for DOS)
- Security aspects of network devices (routers, firewalls, access points)
- packet filtering
- Virtual Private Networks (VPN)
- Network organization for security
- Design for availability
Operational Issues
- Auditing
- Cost / benefit analysis
- Asset Management
- Standards
- Enforcement
- Legal issues
- Physical plant security
- Disaster recovery (natural and man-made)
Threats and Attacks
- Social Engineering
- Malware (Viruses, Trojan Horses, Worms)
- Protocol attacks
- Active attacks
- Passive Attacks
- Buffer Overflow Attacks
- Denial of Service
Forensics
- Legal Systems
- Digital Forensics and its relationship to other Forensic disciplines
- Rules of Evidence
- Search and Seizure
- Digital Evidence
- Media Analysis
Human Considerations
- Applied Psychology and security policies
- Usability design and security
- Security mindset
-- Main.nova - 11 Feb 2006 (by Rich LeBlanc and Bob Sloan)
-
- Intrusion Detection
- Intrusion Protection
Security Standards
-- Main.nova - 14 Jun 2005
to top