This preview shows pages 1–2. Sign up to view the full content.
This preview has intentionally blurred sections. Sign up to view the full version.View Full Document
Unformatted text preview: CSE 425, Introduction to Computer Security Chapter 1. What is Security Engineering? 2008 by Wayne R. Dyksen. All Rights Reserved. 1-1 Michigan State University Department of Computer Science and Engineering Security Engineering Chapter 1. What is Security Engineering? by Ross Anderson Professor Wayne Dyksen Department of Computer Science and Engineering Michigan State University Spring 2008 CSE 425, Introduction to Computer Security 1 - 2 1. What is Security Engineering? Security engineering is about building systems to remain dependable in the face of malice, error, or mischance. Software engineering is about ensuring that certain things dont happen. Security engineering is about ensuring that certain things cant happen. 1 - 3 Cross-Disciplinary Expertise Cryptology Computer Security Formal Methods Hardware Design (Tamper-Resistance) Applied Psychology Accounting Processes Audit Processes Law Criminal Justice Etc 1 - 4 1.1 Example 1: A Bank Physical Security (Partially implemented by Computer Systems) Bookkeeping System Private Networks EFTs Between Banks Private Networks Telephone Network ATMs Point-of-Sale Systems (Public) Internet EFTs Purchasing Changing Environment 1 - 5 1.2 Example 2: An Air Force Base1....
View Full Document