0% found this document useful (0 votes)

95 views12 pages

Security Design Principles Guide

The document outlines eight design principles for secure systems: least privilege, fail-safe defaults, economy of mechanism, complete mediation, open design, separation of privilege, least common mechanism, and psychological acceptability. It provides examples and brief explanations of each principle. The principles are meant to underlie the design and implementation of security mechanisms and policies.

Uploaded by

youngfp

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

95 views12 pages

Security Design Principles Guide

Uploaded by

youngfp

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 12

Outline Overview Design Principles Key Points

Design Principles
Dr. Ahmad Almulhem
Computer Engineering Department, KFUPM

Spring 2008

Ahmad Almulhem - Network Security Engineering - 2008

1 / 12

Outline Overview Design Principles Key Points

Outline
1 2

Overview Design Principles Least Privilege Fail-Safe Defaults Economy of Mechanism Complete Mediation Open Design Separation of Privilege Least Common Mechanism Psychological Acceptability Key Points

Ahmad Almulhem - Network Security Engineering - 2008

2 / 12

Outline Overview Design Principles Key Points

Overview
Design Principles
Principles underlie the design and implementation of mechanisms supporting security policies. Simplicity
Easy to understand Less to go wrong Less sanity checks Fewer possible inconsistencies in policy

Restriction
Minimize access Minimize communication (information ow)

Ahmad Almulhem - Network Security Engineering - 2008

3 / 12

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Least Privilege

Principle#1: Least Privilege

A subject should be given only those privileges necessary to complete its task
- If a subject does not need an access right, the subject should not have that right

Function (not identity) controls rights assignment Rights added as needed, discarded after use Minimal protection domain (resources that the process may access)

Ahmad Almulhem - Network Security Engineering - 2008

4 / 12

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Fail-Safe Defaults

Principle#2: Fail-Safe Defaults

Default action is to deny access Access rights are explicitly granted If action fails, system as secure as when action began

Ahmad Almulhem - Network Security Engineering - 2008

5 / 12

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Economy of Mechanism

Principle#3: Economy of Mechanism

Keep security mechanisms as simple as possible - KISS Principle Simpler means less can go wrong When errors occur, they are easier to understand and x Watch for interfaces and interactions

Ahmad Almulhem - Network Security Engineering - 2008

6 / 12

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Complete Mediation

Principle#4: Complete Mediation

Check every access whether it is allowed Usually done once, on rst action UNIX: access checked on open, not checked thereafter (caching) If permissions change after, may get unauthorized access

Ahmad Almulhem - Network Security Engineering - 2008

7 / 12

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Open Design

Principle#5: Open Design

Security should not depend on secrecy of design or implementation Security through obscurity
If security depends on the ignorance of a user, a knowledgeable user will defeat it Technical means: disassemblers, analysis Non-technical means: searching garbage (dumpster-diving)

Popularly misunderstood to mean that source code should be public Does not apply to information such as passwords or cryptographic keys

Ahmad Almulhem - Network Security Engineering - 2008

8 / 12

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Separation of Privilege

Principle#6: Separation of Privilege

Require multiple conditions to grant privilege Separation of duty Bank example: Checks more than $75,000 must be signed by two ocers Unix example: A user change to root if 1- user knows the root password 2- user in wheel group

Ahmad Almulhem - Network Security Engineering - 2008

9 / 12

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Least Common Mechanism

Principle#7: Least Common Mechanism

Mechanisms should not be shared Information can ow along shared channels Covert channels Isolation
Virtual machines Sandboxes

Ahmad Almulhem - Network Security Engineering - 2008

10 / 12

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Psychological Acceptability

Principle#8: Psychological Acceptability

Security mechanisms should not add to diculty of accessing resource Hide complexity introduced by security mechanisms Security burden should be minimal and reasonable Ease of installation, conguration, use Human factors critical here

Ahmad Almulhem - Network Security Engineering - 2008

11 / 12

Outline Overview Design Principles Key Points

Key Points

Principles of secure design underlie all security-related mechanisms Require:

Good understanding of goal of mechanism and environment in which it is to be used Careful analysis and design Careful implementation

Ahmad Almulhem - Network Security Engineering - 2008

12 / 12

Security Design Principles
No ratings yet
Security Design Principles
5 pages
Chapter 2 Secure Desing and Principle
No ratings yet
Chapter 2 Secure Desing and Principle
20 pages
Network Security and Management: Week 02-I
No ratings yet
Network Security and Management: Week 02-I
13 pages
Security Mechanism PDF
No ratings yet
Security Mechanism PDF
19 pages
Cyber Security Principles
No ratings yet
Cyber Security Principles
5 pages
8-Module - 4-23-06-2023
No ratings yet
8-Module - 4-23-06-2023
85 pages
Security Principles
No ratings yet
Security Principles
38 pages
(Breather) : Principles of Secure Design by Matt Bishop (Augmented by Michael Rothstein)
No ratings yet
(Breather) : Principles of Secure Design by Matt Bishop (Augmented by Michael Rothstein)
11 pages
Design Principles: 1. Principle of Least Privilege
No ratings yet
Design Principles: 1. Principle of Least Privilege
3 pages
Lecture 9
No ratings yet
Lecture 9
45 pages
Security Design Principles
No ratings yet
Security Design Principles
12 pages
Chapter - 3
No ratings yet
Chapter - 3
19 pages
Information Assurance and Security (IAS)
No ratings yet
Information Assurance and Security (IAS)
27 pages
Design Principles
No ratings yet
Design Principles
5 pages
Chapter 2 Secure Desing and Principle
No ratings yet
Chapter 2 Secure Desing and Principle
21 pages
Security Design Principles Lecture 02
No ratings yet
Security Design Principles Lecture 02
16 pages
Chapter 2 Secure Desing and Principle
No ratings yet
Chapter 2 Secure Desing and Principle
24 pages
Week 1
No ratings yet
Week 1
41 pages
Principles of Secured Network IFT 302
No ratings yet
Principles of Secured Network IFT 302
10 pages
Unit 1 Crypto
No ratings yet
Unit 1 Crypto
84 pages
FSDP
No ratings yet
FSDP
15 pages
Software Security for SE Students
No ratings yet
Software Security for SE Students
41 pages
Information System Security
No ratings yet
Information System Security
10 pages
IS Books
No ratings yet
IS Books
7 pages
Fundamentals of Network Security Fundamental Security Principles - Fundamental Attack Principles
No ratings yet
Fundamentals of Network Security Fundamental Security Principles - Fundamental Attack Principles
15 pages
Information Security Assignment
No ratings yet
Information Security Assignment
3 pages
Information Security Lecture 2
No ratings yet
Information Security Lecture 2
15 pages
Security Design Principles Guide
No ratings yet
Security Design Principles Guide
43 pages
Unit 8
No ratings yet
Unit 8
49 pages
Unit 1
No ratings yet
Unit 1
25 pages
ITA2009 Reference-Material-I
No ratings yet
ITA2009 Reference-Material-I
44 pages
CH 01
No ratings yet
CH 01
33 pages
CIT 855 Cybersecurity Summarized Note
No ratings yet
CIT 855 Cybersecurity Summarized Note
20 pages
‎⁨المستند⁩
No ratings yet
‎⁨المستند⁩
3 pages
JFJJJJJJ
No ratings yet
JFJJJJJJ
2 pages
3 - IC624 - Information Security Terminologies
No ratings yet
3 - IC624 - Information Security Terminologies
46 pages
002 Security Design Principles
No ratings yet
002 Security Design Principles
7 pages
Security Design Principles
No ratings yet
Security Design Principles
8 pages
Secure Design Principles Guide
No ratings yet
Secure Design Principles Guide
12 pages
Lecture 6-IA-Security Design Principles
No ratings yet
Lecture 6-IA-Security Design Principles
11 pages
Group 4 Assigment
No ratings yet
Group 4 Assigment
69 pages
Secure Software Design Principles
No ratings yet
Secure Software Design Principles
70 pages
Lecture 2
No ratings yet
Lecture 2
18 pages
2 Ics
No ratings yet
2 Ics
15 pages
Mid 1
No ratings yet
Mid 1
21 pages
Com4212 InfoSec - Chap01
No ratings yet
Com4212 InfoSec - Chap01
34 pages
Chapter 1 Overview
No ratings yet
Chapter 1 Overview
33 pages
Computer Security: Principles and Practice: Chapter 1: Overview
100% (2)
Computer Security: Principles and Practice: Chapter 1: Overview
33 pages
CYB 324-System Security (Lecture 9-10)
No ratings yet
CYB 324-System Security (Lecture 9-10)
13 pages
01 Ch01 Introduction
No ratings yet
01 Ch01 Introduction
32 pages
1 Overview of Access Control
No ratings yet
1 Overview of Access Control
5 pages
Week 1 - Security Concepts & Principles
No ratings yet
Week 1 - Security Concepts & Principles
7 pages
1-Module 1-10-08-2024
No ratings yet
1-Module 1-10-08-2024
33 pages
CH 1
No ratings yet
CH 1
33 pages
CISSP Session 02
100% (1)
CISSP Session 02
81 pages
Esu Sec Week 3 Principle
No ratings yet
Esu Sec Week 3 Principle
46 pages
ISS 06 Detailed Overview 8-8-2024
No ratings yet
ISS 06 Detailed Overview 8-8-2024
57 pages
Freeboard Calculation Guide
100% (7)
Freeboard Calculation Guide
26 pages
Symbols For Triangular Lights
No ratings yet
Symbols For Triangular Lights
1 page
Questions and Answers (Q&A's) : LNG Information Paper No. 7
100% (1)
Questions and Answers (Q&A's) : LNG Information Paper No. 7
20 pages
Light Signal Alarm System LSAS Brochure PDF
No ratings yet
Light Signal Alarm System LSAS Brochure PDF
6 pages
Light Signal Alarm System LSAS Brochure
No ratings yet
Light Signal Alarm System LSAS Brochure
5 pages
Cable Selection Guide For Process Instrumentation
No ratings yet
Cable Selection Guide For Process Instrumentation
3 pages
The Guideline To Electric Propulsion
100% (1)
The Guideline To Electric Propulsion
20 pages
DNV GUIDANCE Emergency Stop Systems
No ratings yet
DNV GUIDANCE Emergency Stop Systems
13 pages
BNWAS Le Guardian 2025 English Brochure PDF
No ratings yet
BNWAS Le Guardian 2025 English Brochure PDF
6 pages
Dead Man Alarm DMA English Brochure
No ratings yet
Dead Man Alarm DMA English Brochure
6 pages
Status of Vessel Biofouling
No ratings yet
Status of Vessel Biofouling
15 pages
Sulzer Zv40/48 Zgoda Crankshaft Replacement & In-Place Machining
No ratings yet
Sulzer Zv40/48 Zgoda Crankshaft Replacement & In-Place Machining
2 pages
Wartsila Seals Bearings Portable CBM
No ratings yet
Wartsila Seals Bearings Portable CBM
2 pages
Cold Ironing and Onshore Generation For Airborne Emission Reductions
No ratings yet
Cold Ironing and Onshore Generation For Airborne Emission Reductions
34 pages
MSC 1-Circ 1371-Add 2
No ratings yet
MSC 1-Circ 1371-Add 2
11 pages
Information On Detention and Action Taken Rev5
100% (1)
Information On Detention and Action Taken Rev5
12 pages
Becker Intelligent Monitoring System BIMS PDF
No ratings yet
Becker Intelligent Monitoring System BIMS PDF
4 pages
IACS Joint Safety Statement
No ratings yet
IACS Joint Safety Statement
3 pages
Marine Offshore Safety Sign PDF
No ratings yet
Marine Offshore Safety Sign PDF
9 pages
SOLAS Cargo Tank Amendments
No ratings yet
SOLAS Cargo Tank Amendments
2 pages
Network Security Assignment Questions
No ratings yet
Network Security Assignment Questions
10 pages
2022 Info Sec Semester
No ratings yet
2022 Info Sec Semester
3 pages
Recommendation For Block Cipher Modes of Operation - Galois Counter Mode (GCM) and GMAC (NIST SP800-38D) - Morris Dworkin
No ratings yet
Recommendation For Block Cipher Modes of Operation - Galois Counter Mode (GCM) and GMAC (NIST SP800-38D) - Morris Dworkin
39 pages
Hem-INTERNSHIP REPORT
No ratings yet
Hem-INTERNSHIP REPORT
14 pages
Port Loyola Voter Registration
100% (1)
Port Loyola Voter Registration
108 pages
Dictionary Attack 1684757421
No ratings yet
Dictionary Attack 1684757421
6 pages
Assignment 8 3 MSAS 611 Bahri Mohammed
No ratings yet
Assignment 8 3 MSAS 611 Bahri Mohammed
9 pages
Cybersecurity Lecture Notes
No ratings yet
Cybersecurity Lecture Notes
32 pages
Syllabus PTSV3
No ratings yet
Syllabus PTSV3
21 pages
Ransomware Affect An ESXi Host
No ratings yet
Ransomware Affect An ESXi Host
7 pages
Final Project
No ratings yet
Final Project
11 pages
A Hacker Profile
No ratings yet
A Hacker Profile
2 pages
A Research Paper On Cyber Security 3.0
No ratings yet
A Research Paper On Cyber Security 3.0
10 pages
Cryptography Session 2020 v1
No ratings yet
Cryptography Session 2020 v1
98 pages
Cybersecurity Bootcamp - V1 - 0324
No ratings yet
Cybersecurity Bootcamp - V1 - 0324
20 pages
Secure Login For SAP Single Sign-On Implementation Guide
No ratings yet
Secure Login For SAP Single Sign-On Implementation Guide
364 pages
RSA Algorithm Basics for Beginners
No ratings yet
RSA Algorithm Basics for Beginners
1 page
TUTANESCU I-Anatomy and Types of Attacks Against Computer .
No ratings yet
TUTANESCU I-Anatomy and Types of Attacks Against Computer .
6 pages
Notes For The Applied Cryptography
No ratings yet
Notes For The Applied Cryptography
6 pages
EN SFD-Manual For UMB PDF
No ratings yet
EN SFD-Manual For UMB PDF
16 pages
Mini Project
No ratings yet
Mini Project
19 pages
Cybersecurity Tools and Techniques
No ratings yet
Cybersecurity Tools and Techniques
12 pages
LNCS 2729 SIGMA The SIGn and MAc Approach To Authenticated Diffie Hellman and Its Use in The IKE Protocols 1st Edition by Hugo Krawczyk ISBN 3540451463 9783540451464 Instant Download
100% (5)
LNCS 2729 SIGMA The SIGn and MAc Approach To Authenticated Diffie Hellman and Its Use in The IKE Protocols 1st Edition by Hugo Krawczyk ISBN 3540451463 9783540451464 Instant Download
54 pages
Network Access Control Insights
No ratings yet
Network Access Control Insights
33 pages
X1 Access Control
No ratings yet
X1 Access Control
4 pages
Suggested Projects (Leo Tsui)
No ratings yet
Suggested Projects (Leo Tsui)
2 pages
Incident Response and Digital Forensic
No ratings yet
Incident Response and Digital Forensic
6 pages
CryptoJS Tutorial For Dummies PDF
No ratings yet
CryptoJS Tutorial For Dummies PDF
7 pages
The Role of Artificial Intelligence in Enhancing Data Security
No ratings yet
The Role of Artificial Intelligence in Enhancing Data Security
24 pages

Security Design Principles Guide

Uploaded by

Security Design Principles Guide

Uploaded by

Outline Overview Design Principles Key Points

Ahmad Almulhem - Network Security Engineering - 2008

Outline Overview Design Principles Key Points

Ahmad Almulhem - Network Security Engineering - 2008

Outline Overview Design Principles Key Points

Ahmad Almulhem - Network Security Engineering - 2008

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Principle#1: Least Privilege

Ahmad Almulhem - Network Security Engineering - 2008

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Principle#2: Fail-Safe Defaults

Ahmad Almulhem - Network Security Engineering - 2008

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Principle#3: Economy of Mechanism

Ahmad Almulhem - Network Security Engineering - 2008

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Principle#4: Complete Mediation

Ahmad Almulhem - Network Security Engineering - 2008

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Principle#5: Open Design

Ahmad Almulhem - Network Security Engineering - 2008

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Principle#6: Separation of Privilege

Ahmad Almulhem - Network Security Engineering - 2008

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Least Common Mechanism

Principle#7: Least Common Mechanism

Ahmad Almulhem - Network Security Engineering - 2008

Outline Overview Design Principles Key Points

Least Privilege Fail-Safe Defaults Economy of Mechanism Com

Principle#8: Psychological Acceptability

Ahmad Almulhem - Network Security Engineering - 2008

Outline Overview Design Principles Key Points

Principles of secure design underlie all security-related mechanisms Require:

Ahmad Almulhem - Network Security Engineering - 2008

You might also like