From the course: ISC2 Information Systems Security Engineering Professional (ISSEP) Cert Prep by Infosec
Join today to access over 25,600 courses taught by industry experts.
Core security concepts
From the course: ISC2 Information Systems Security Engineering Professional (ISSEP) Cert Prep by Infosec
Core security concepts
Okay, we're going to wrap up this introduction to secure systems engineering by just touching on some core security concepts. Now by now, I'm pretty sure you're familiar with the ideas of confidentiality, integrity and availability. But just a quick mention here, confidentiality is all about preventing unauthorized disclosure of information. So we want to make sure that there's no unauthorized access, which tells us we're going to need to implement principles of strong access control, which we see down in the IAAA below. We'll talk about that in just a second. Also things like encryption and other forms of protection need to be integrated into our systems. Now for integrity, we want to be able to detect modification, right? We want to be able to detect if data has been and maliciously or accidentally modified. So we think about things like integrity checking. Availability, we think resiliency, and I'll talk a little more about resiliency of systems in just a few minutes. Now down…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.