Security Architecture & Design models - Assignment Example

Security Architecture & Design models Security of an information system is the assurance that an information system components are prevented from unauthorized entry, manipulation of data. Security also safeguards against destruction of that systems components like data or resources. Elements of an information system that needs to be secured include file or data, resources like computers, hard drives, and other peripheral networking components. Securing an information system requires that security architecture be created by the management of the information system. Security architecture, therefore, is a comprehensive security design that will ensure that a system has the correct authentication, authorizations and proper preventive measure against system attacks and vulnerabilities. Coming up with the best security architecture requires the management of an organization to perform a risk assessment and management process in order to come up with the best security model to secure the system. The risk assessment will identify the extent of the system if the system is large with interrelated components, the data locations and storage of the system. Determining if the system uses the Internet for functions like data transfer and identifying all the resources and hardware components being utilized by the system. The risk assessment will identify the potential risks that a system can have or might face in the future. The management the is aiming to ensure information security should consider the following types of security architecture models. The security models are used to create several access control levels. The security models include access matrix, Bell-Lapadula, Lettice, information flow, Clark-Wilson, the state machine and Biba. The security models contain the following components. Data classification model that facilitates wider sharing of information through ensuring that information have been given additional controls. The model classifies information into several categories like low, medium, high and unclassified. Data security model assist the users in making sure the information is secured in the appropriate manner. The security model creates several security categories for the processes, hardware devices, hard-drives and the various users of the information. Detection model that has several methods of detecting intrusions and vulnerabilities in the information system. Detection models should be up and running at all times in the system. Prevention model ensures that information in a system is prevented from unauthorized access whether from external sources or internal users who have different access level. The management of an information system should have a monitoring model that ensure that the security architecture models are in line the security policies, technical requirements and the strategies of the organization. Finally, a safety management model should be in place to ensure that there is coordination between the other security models ( detection, monitoring, and prevention). The above security architecture model components have been integrated into many security architecture models. Major information security architecture model include the following; Access Matrix Model Access matrix security architecture model describes the rules and strategies for information access control. The model contains several combination of read, write and execute permissions that can be set to individual files or given to particular users. The model contains access control entries and access control lists. The primary rules for controlling access to a subject are discretionary, mandatory and non-discretionary. The access matrix model mainly focuses on confidentiality of the information and file. Confidentiality in a security model ensures the information and data files are protected from unauthorized access throughout the whole information architecture of a system. Information architecture includes all the data and files associated with security architecture data stores, applications and all the communication and information links or processes. Bell-Lapadula Bell-Lapadula security architecture model is mostly used in multilevel security system. The model has two ground rules. Angelo (2001) says that the simple security rule that ensures that there is no read up. The property law that provides that there is no write down of information. The matrix model provides that an objects or files classification will remain the same when the file or object id being processed by the system. A useful property of Bell-Lapadula model is that, it ensures that a system that if a system starts in a secure way, it will always stay safe. Its primary focus is confidentiality of information. Lattice The lattice model of information security makes sure that each user and each resource of information is connected with one of a tidy set of classes. The categories of information or the levels set for files or users are based on the interaction between several objects and subject and it also uses labels. The lattice model is non-discretionary meaning that the element is the object and subject, and the subject has an upper bound, CISSP (2004). The upper bound of the subject is equal or higher than the upper bound of the information object being accessed by a user or an information system. State Machine Model State machine is security control access model that allows operating systems ( Linux or Windows operating system ) to transition only between series of well-defined states. The defined states have been set to ensure total security of the information files. The model focuses primarily on the confidentiality of the data and information. Biba Model From CISSP study guide, we learn that Biba security architecture model is very similar to Bell-Lapadula. It also contains only two primary rules of integrity axiom that ensures there is no write up of information, and the role of simple integrity that ensures there is no read down of information. The primary focus of Biba model is integrity. Integrity ensures that information, service, resources and data are not destroyed or altered in an unauthorized manner, Angelo (2001). Information Flow Model The model ensures that all the object, data, information, and files are assigned security values and classes. The information flow model will ensure that the information only flows in a direction that the security policy permits. The information flow model consists of state transitions, lattice states, and objects. Its primary focus is on the hidden information channel analysis. Clark and Wilson Clark-Wilson model makes sure that there is the separation of duties. Separation of duties ensures that there is data or information integrity. It has requirements that ensure that objects ( data files ) are only accessed through programs Angelo (2001). It's central aim id to ensure data integrity. The primary elements of Clark-Wilson model are: Users who are the active agents Transformation procedures – this are abstract operation like write, read and modify that have been programmed. Constrained data items that are only manipulated by transformation procedures. Unconstrained data elements can be managed by users through read and write operations. Integrity verification procedures that checks for constrained data items consistency with external reality. Graham-Denning Model The Graham-Denning model defines different sets of rights or commands that a subject can execute on an individual subject. The eight fundamental protection rights that determine how functionalities should take place include: How to securely create an object or a subject. How to safely delete and object or a subject. How a system user can safely provide and issue the grant access right. How information system can securely allocate the Delete access right. How to securely assign transfer access right. The management of information must ensure that the implementation of any of the following models will provide information security. The models must make sure that the system operates in different modes in regards to data sensitivity, clearance level of users and authorization level. Most importantly the model must incorporate information security, risk detection, data management and it should have several ways of classifying data into several sections. Reference Scott M. Angelo, (2001). SANS Security Essentials: Security Architecture Model Component Overview. Retrieved From http://www.sans.org/reading-room/whitepapers/auditing/security-architecture-model-component-overview-sans.pdf CISSP, (2004). Study Guide: Security Architecture and Design. Retrieved From https://www.isc2.org/cissp-training.aspx CISSP, (2004). All-in-one Exam Guide: Security architecture and design . Retrieved From https://www.isc2.org/cissp-training.aspx Read More