CISSPOIGv2第九章资源-CSDN文库

5星 · 超过95%的资源需积分: 3 166 浏览量 2011-05-05 14:29:34 上传评论收藏 1.6MB PDF 举报

### CISSP OIG v2 第九章：安全架构与设计 #### 一、引言本章节旨在探讨CISSP认证中关于安全架构与设计的相关概念、原则、结构、框架以及标准。这些内容对于设计、实施、监控及保护单个系统及整个IT企业至关重要。重点在于用于强制执行关键信息资产的机密性、完整性和可用性的不同级别的安全服务的架构。 #### 二、CISSP期望 CISSP认证考试中对考生在安全架构与设计方面有以下期望： - 理解并能够应用安全架构的基本原理。 - 掌握常见的架构框架及其应用场景。 - 能够分析需求并将其转化为安全架构文档。 - 了解并运用ISO/IEC 27001和27002等国际安全标准。 - 熟悉验证安全架构的方法和技术。 - 掌握维护安全架构的最佳实践。 #### 三、安全设计的基础 - **安全设计的基本概念**：包括如何根据需求制定安全策略，确保系统的安全性。 - **常见的架构框架**： - **Zachman Framework**：这是一种广泛使用的框架，用于描述组织的信息系统架构。它分为六个视角（Scope、Players、Functions、Processes、Rules、Social/Political），帮助组织从多个角度理解其信息系统。 - **SABSA (Sherwood Applied Business Security Architecture)**：这是一种专注于业务需求的安全架构方法论，侧重于将安全嵌入到业务流程中。 - **TOGAF (The Open Group Architecture Framework)**：这是一种全面的企业架构框架，不仅涵盖了技术架构，还涉及业务、数据和应用架构。 - **ITIL (IT Infrastructure Library)**：这是一套指导IT服务管理的最佳实践集合，虽然主要关注服务管理和支持，但也包含了对安全架构的重要指导。 #### 四、捕捉与分析需求 - 在构建安全架构之前，必须清晰地定义和捕捉业务需求。这包括但不限于： - 确定业务目标和战略。 - 分析威胁模型和风险评估。 - 明确合规性和法规要求。 #### 五、创建和记录安全架构 - 创建和记录安全架构的过程是确保设计满足所有需求的关键步骤。这包括： - 设计安全控制措施。 - 制定安全政策和程序。 - 编写详细的架构文档。 #### 六、ISO/IEC 27001和27002安全标准 - **ISO/IEC 27001**：这是国际标准化组织发布的信息安全管理系统的标准，规定了建立、实施、维护和持续改进信息安全管理系统的要求。 - **ISO/IEC 27002**：这是提供信息安全控制措施的具体指南，包括了11个控制领域中的35个控制目标和114项控制措施。 #### 七、COBIT (Control Objectives for Information and Related Technology) - COBIT是一种帮助企业实现信息技术治理目标的框架。它提供了一套全面的控制目标，覆盖了信息技术的所有方面，并强调了与业务目标的一致性。 #### 八、验证安全架构 - 验证安全架构的有效性是通过以下几种方式实现的： - 使用正式的安全模型来验证设计的正确性。 - 应用评估标准来确保符合性。 - 进行认证和认可过程以确保安全架构的可靠性。 #### 九、维护安全架构 - 维护安全架构涉及到定期审查和更新，以应对新的威胁和技术发展。 #### 十、总结本章深入探讨了安全架构与设计的核心概念和技术，为读者提供了构建强大、灵活且可扩展的安全架构所需的理论基础和实用指南。通过理解和应用这些原则，CISSP考生能够更好地准备相关的考试内容，并在实际工作中有效地解决安全问题。 #### 十一、企业安全架构 - **关键目标和目的**：企业安全架构的目标是确保整个组织的信息资产得到妥善保护，同时支持业务连续性和增长。 - **预期收益**：通过有效的安全架构，可以显著降低风险，提高效率，并增强组织的整体安全态势。 - **定义和维护企业安全架构**：这包括识别关键的安全服务，例如身份和访问管理、数据保护等，并确保它们在整个组织中得到一致的应用。 - **常见的安全服务**：如身份验证、授权、审计等。 - **安全控制区域**：组织通常会划分不同的安全控制区域或区域，以实现更精细的访问控制和监控。 #### 十二、系统安全架构 - **计算平台类型**：包括大型机和其他瘦客户端系统、分布式系统、中间件、嵌入式系统以及无处不在的计算和移动计算设备。 - **常见系统组件**：如处理器、内存和存储、外围设备及其他输入/输出设备、操作系统等。 - **如何协同工作**：这些组件如何相互作用以实现整体系统的安全。 - **常见的系统安全威胁和漏洞**：如缓冲区溢出、恶意软件感染等。 - **系统安全技术和技术**：如防火墙、入侵检测系统等。 #### 十三、领域总结 - 本章概述了安全架构与设计领域的主要概念和技术，为后续的学习奠定了坚实的基础。 - 通过详细讨论这些主题，CISSP考生可以更好地理解如何将理论应用于实践，并在职业生涯中应用这些知识来保护组织的信息资产。

资源推荐

资源详情

资源评论

667

9Chapter

Security Architecture

and Design

Gary McIntyre, CISSP and Micki Krause, CISSP

Contents

Introduction ..................................................................................................... 668

CISSP Expectations ...........................................................................................669

What, Why, and How...................................................................................670

What? ......................................................................................................670

Why? .......................................................................................................670

How? .......................................................................................................671

 e Basics of Secure Design ..............................................................................671

Common Architecture Frameworks ..............................................................671

Zachman Framework ...............................................................................672

Sherwood Applied Business Security Architecture (SABSA)

Framework ...............................................................................................672

 e Open Group Architecture Framework (TOGAF) ..............................673

IT Infrastructure Library (ITIL) ...............................................................673

Capturing and Analyzing Requirements .......................................................676

Creating and Documenting Security Architecture .........................................678

ISO/IEC 27001 and 27002 Security Standards ........................................679

Control Objects for Information and Related

Technology (COBIT) ..............................................................................681

668 ◾ Of cial (ISC)

Guide to the CISSP CBK

Verifying Security Architecture .....................................................................682

Common Formal Security Models ...........................................................682

Evaluation Criteria ...................................................................................692

Certi cation and Accreditation ................................................................699

Maintaining Security Architecture ................................................................700

Section Summary ..........................................................................................703

Enterprise Security Architecture ........................................................................703

Key Goals and Objectives .............................................................................703

Intended Bene ts ..........................................................................................704

De ning and Maintaining Enterprise Security Architecture ..........................705

Common Security Services .......................................................................706

Security Zones of Control ........................................................................707

Section Summary ..........................................................................................708

System Security Architecture .............................................................................708

Types of Computing Platforms .....................................................................709

Mainframes and Other  in Client Systems.............................................709

Distributed Systems .................................................................................710

Middleware ..............................................................................................712

Embedded Systems ..................................................................................712

Pervasive Computing and Mobile Computing

Devices ....................................................................................................713

Common System Components .....................................................................713

Processors .................................................................................................714

Memory and Storage ................................................................................715

Peripherals and Other Input/Output Devices ...........................................718

Operating Systems ...................................................................................719

How  ey Work Together ........................................................................720

Common System Security  reats and Vulnerabilities ..............................720

System Security Techniques and Technologies ..........................................721

Section Summary ..........................................................................................725

Domain Summary .............................................................................................725

Sample Questions ..............................................................................................726

Introduction

 e security architecture and design domain addresses the concepts, principles,

structures, frameworks, and standards used to design, implement, monitor, and

secure individual systems and the IT enterprise. It focuses on the architecture of

security services used to enforce various levels of con dentiality, integrity, and

availability in key information assets. Security architecture and design focus on

the translation of security requirements into usable designs for security controls.

Security Architecture and Design ◾ 669

 e scope of those designs may be enterprise in scope or may be focused on individual

components within a single computing system.

CISSP Expectations

According to the (ISC)

Candidate Information Bulletin, a CISSP candidate should

understand security models in terms of con dentiality, integrity, and information

 ow; system models in terms of the common criteria; technical platforms in terms

of hardware,  rmware, and software; and system security techniques in terms of

preventative, detective, and corrective controls.

Key areas of knowledge are

Understand the fundamental concepts of security models, e.g., con dential- ◾

ity, integrity, and multilevel models

Understand the components of information systems security evaluation ◾

models

Product evaluation models, e.g., common criteria −

Industry and international security implementation guidelines, e.g., PCI- −

DSS, ISO

Understand security capabilities of information systems, e.g., memory pro- ◾

tection, virtualization, trusted platform module TPM

Understand the vulnerabilities of security architectures ◾

System, e.g., covert channels, state attacks, emanations −

Technology and process integration, e.g., single point of failure, service- −

oriented architecture (SOA)

Understand application and system vulnerabilities and threats ◾

Web-based, e.g., XML, SAML −

Client-based, e.g., applets −

Server-based, e.g., data  ow control −

Database security, e.g., inference, aggregation, data mining −

Understand countermeasure principles, e.g., defense in depth ◾

 e designing of security and controls can be likened to the DNA of a human body.

DNA is a set of blueprints or a recipe, since it contains the instructions needed to

construct other components of cells, such as proteins and RNA molecules; the

security architecture is a recipe for the construction of requisite controls. Security

design and architecture is analogous to DNA. Not designing and architecting secu-

rity is akin to putting your  nger in the dike, as with the Hans Brinker legend

about the brave Dutch boy who puts his  nger in the dike to prevent a  ood. A

solid and well-executed design helps to ensure that security is proactive, rather than

reactive, but it also ensures that you get the security that you need and want.

670 ◾ Of cial (ISC)

Guide to the CISSP CBK

Looking at the ten domains of the Information Security Common Body of

Knowledge, one can see that this domain is a compilation of the fundamentals

from the other domains, incorporated and integrated into a representative set of

controls. In this chapter, we will bring the many elements of architecture methodol-

ogy, common techniques, and frequently used technologies used in secure design.

We will focus on information security architecture; physical or industrial security

architecture will be addressed in the physical security domain.

What, Why, and How

Several variations on the theme have been written about the topic of information

security architecture and design. For the candidate who may not have a strong

background in security architecture, here we o er some generic attributes for de ning

the “what,” “why,” and “how” of this domain.

What?

Security architecture:

Provides the framework and foundation to enable secure communication, ◾

protect information resources, and ensure that IT delivery is con dential,

available, and with integrity

Identi es the basic services needed to provide security for current and future ◾

systems

Models the rules of behavior as well as the technologies required to securely ◾

and e ectively protect assets

Documents these evolving models to connect the business drivers to the tech- ◾

nical implementation of controls

Is typically built using standardized methodologies founded on industry ◾

frameworks and international standards

Why?

Security architectures require considerable investment in time and resources while

yielding many potential bene ts.  ese bene ts can include

Better coordination of investment in security technologies and practices ◾

Improved long-term planning for capital investment and operating budgets ◾

Interoperability with other components of system and enterprise ◾

architecture

Greater adaptability, scalability, and coherence of security services ◾

Standardization of common functions across multiple systems ◾

Security Architecture and Design ◾ 671

Consistent application of security practices and solutions, including compli- ◾

ance with regulations

Providing the means to ensure that the implementation of security controls ◾

is correct and veri able

How?

 ere are many methodologies for developing an IT and security architecture. Later in

this chapter, we discuss some examples of frameworks, models, and standards frequently

used in secure design. Although most security architectures are built on common

themes, they vary depending on the needs of the organization that sponsored them.

Successful integration is predicated on the acceptance and adoption of the stakehold-

ers and customers of the architecture.  is is accomplished by ensuring that the secu-

rity architecture addresses the business requirements of a system.  ose requirements

will often be di erent depending on the scope of the design e ort: system security

architecture will focus on requirements for individual systems while enterprise security

architecture (ESA) will focus on multiple systems throughout the enterprise.

In this chapter, we will  rst focus on the basic principles of secure design and

the common methodologies and techniques used to create, implement, and verify

these designs. Later, we will cover key concepts in system security architecture and

ESA. As a CISSP candidate, you will need to understand how security architecture

and design is performed and how di erent levels of architecture work together to

secure information assets.

The Basics of Secure Design

Creating and maintaining good security architecture is a di cult task.  e role of

the security architect is the translation of business requirements into solutions that

provide security to key assets. Since both the assets requiring protection and the

organization’s preferred approach to protect them may be di erent, each design is

somewhat unique. A strong design will require that the architect understands both

the assets to be protected and management’s priorities.  e architect must also be

prepared to adjust the design over time as key assets or those priorities change as

well as verify that their designs have been implemented correctly.  is requires the

architect to be a good negotiator, artist, and analyst.

Common Architecture Frameworks

As any security architect will tell you, no two architects will produce the

same design or approach the problem in the same way. To help one architect

剩余62页未读，继续阅读

评论收藏

内容反馈

wudijuan007

2013-07-09

下载了这一系列的英文版，非常有帮助，谢谢！~

mfcsdk

粉丝: 2
资源: 9

CISSP OIG v2 第九章

CISSP OIG v2 第二章

CISSP OIG v2 第四章

CISSP OIG v2 第三章

CISSP OIG v2 第六章

CISSP OIG v2 第八章

CISSP OIG v2 第七章

CISSP OIG v2 第五章

CISSP OIG v2

CISSP OIG V2 第十章

CISSP OIG V2 总目录

CISSP OIG V2 附录

cissp中文版第九章

CISSP OSG 第九版 英文版

CISSP_AIO+V2中文

Official Guide to CISSP V2

CISSP学习笔记 CISSP关键知识点总结汇总.zip

cissp中文版第八章

cissp中文版第五章

cissp中文第七章

JDK 1.8 64位.rar

SoftCnKiller2.54.zip（因为要下载码，弃用不更新了）

编译好的64位pycdc.exe(支持python3.10和python3.11)

工程伦理的期末考试题库

广联达授权9.9（2.5）

雷电模拟器改成真机环境

ISO26262标准(中文版)下载.pdf

Open3D算法测试数据.rar

NFC-Reader-Tool-电脑版.zip

常用经典斯坦福点云数据

最新资源

CISSP OSG 第九版英文版