Introduction to Computer Security

It provides the user with a mechanism for the user to communicate with the content (usually TCB) the user is trying to communicate with.

It aims to provide powerful process separation, sealed storage, secure user path, and certification

Make sure that users do not tamper with application software that can communicate safely with the author

Carefully check the design and code (each request -> design and code), pay attention to the problem on the way

B1 tag security protection, informal security policy model, MAC of some objects, tags, more rigorous security testing

B2 structured protection, formal security policy model, MAC, labeling of all objects, trusted path, least privilege, secret channel analysis, configuration management

B3 security domain, full reference validation mechanism, increase reliable path requirements, limit code development, increase DTLS requirements, files

A1 Proof of protection, extensive use of formal methods, reliable assignment, code, FTLS communication

NCSC introduces "interpretation" for other content such as network (trusted network interpretation, Redbook), database (trusted database interpretation, purple or lavender).

Security audit, communication, encryption support, user data protection, identification and authentication, security management, privacy, security function protection, resource utilization, TOE access, trusted path

Bind authentication failure, user attribute definition, secret specification, user authentication, user identification, and user / topic

"CC Protection Profile (PP) is a set of security requirements that is implementation-independent and appropriate for a class of products or systems that meet specific consumer needs."

"EAL 4" represents the highest level product not specifically designed to meet the requirements of EAL 5-7.

The remainder of this document is divided into four main sections. Section 2 describes computer security log management, including organizational probable log management needs and challenges associated with log management. Section 3 describes the components, architecture, and functionality of the log management infrastructure. Section 4 provides recommendations for planning log management, such as defining roles and responsibilities and creating executable logging strategies. Section 5 describes the process by which an organization develops and executes log management operations.

In this article, I will briefly outline what the term cloud computing explains and the impact of cloud computing security. We explain the security benefits of cloud computing and the security risks arising from their adaptability. The way to implement security management in cloud computing is almost the same as in traditional IT environments. However, due to the dispersibility of the assets, the security risk depends on the type of asset used, the way and people who manage the assets, the control mechanism used, the location of these mechanisms, and ultimately, Varies.

Cloud security is a field and practice for protecting cloud computing environments, applications, data, and information. Cloud security - also called cloud computing security - is designed to protect the cloud environment from unauthorized use / access, distributed denial of service (DDOS) attacks, hackers, malware, and other risks. To achieve this goal, cloud security uses policies, policies, processes, best practices, and technologies. In the context of the above definitions, cloud security is related to "cloud-based security" or security as a service, but they are different. Cloud-based security refers to a SaaS (Software-as-a-service) delivery model of security services hosted in the cloud, rather than deployed via on-premise hardware or software.