H Tillwick and MS Olivier, "A Layered Security Architecture," Proceedings of the Fourth Annual Information Security South Africa Conference (ISSA2004), Midrand, South Africa, June/July 2004 (Work in progress paper, published electronically)
System security is a key technology to the development and deployment of IT applications and services in a growing global network. Security is critical at various levels of the system. However, security solutions typically address a very specific vulnerability with little relation to the larger picture of secure information systems. Organisations have successfully implemented these solutions without knowing if all security requirements have been met or what impact these solutions have on other parts of the information system. The focus of this paper will be to identify the various layers that exist in large distributed systems, and to lay the groundwork for defining security requirements for each layer allowing for a mapping of security implications that each layer has on other layers. This will result in the design of a layered security architecture which could assist organisations in mapping out all required or successfully implemented security requirements at various levels of information systems.
Secure information systems, layered architecture, security model, system layers
@INPROCEEDINGS(lasa,
AUTHOR={Heiko Tillwick and Martin S Olivier},
TITLE={A Layered Security Architecture},
BOOKTITLE={Proceedings of the Fourth Annual Information Security South Africa
Conference (ISSA2004)},
ADDRESS={Midrand, South Africa},
MONTH={June},
YEAR={2004},
NOTE={Work in progress paper, published electronically} )
The full text may be downloaded from http://mo.co.za/open/lasa.pdf (PDF, 104K).
[Publications]
[Home]
Page maintained by
Martin Olivier
Last update: 20 August 2004