Documente Academic
Documente Profesional
Documente Cultură
Design Principles
Dr. Ahmad Almulhem
Computer Engineering Department, KFUPM
Spring 2008
1 / 12
Outline
1 2
Overview Design Principles Least Privilege Fail-Safe Defaults Economy of Mechanism Complete Mediation Open Design Separation of Privilege Least Common Mechanism Psychological Acceptability Key Points
2 / 12
Overview
Design Principles
Principles underlie the design and implementation of mechanisms supporting security policies. Simplicity
Easy to understand Less to go wrong Less sanity checks Fewer possible inconsistencies in policy
Restriction
Minimize access Minimize communication (information ow)
3 / 12
Least Privilege
Function (not identity) controls rights assignment Rights added as needed, discarded after use Minimal protection domain (resources that the process may access)
4 / 12
Fail-Safe Defaults
5 / 12
Economy of Mechanism
6 / 12
Complete Mediation
7 / 12
Open Design
Popularly misunderstood to mean that source code should be public Does not apply to information such as passwords or cryptographic keys
8 / 12
Separation of Privilege
9 / 12
10 / 12
Psychological Acceptability
11 / 12
Key Points
12 / 12