veryard projects - innovation for demanding change

demanding security

veryard projects > security
we offer three notions of security material links
consultancy

management briefings

independent advice on tools and methods
security  as fence Security is a container.  It keeps the good stuff in and the bad stuff out.
security as game Security is a battle between attackers and defenders. Attackers try to navigating a complex (and changing) space, where each place or state gives you access to certain other places or states, and visibility of some further places or states not directly accessible.  Defenders try to detect intrusion, close off as many access points as possible, set traps, and keep changing the configuration of the space. This is a topological way of conceiving security.
security as landscape Security involves a complex terrain, where some points are (or appear) more attractive or vulnerable than others - to a range of diverse stakeholders. Security involves a balance of risk and reward.

These three notions of (demanding) security provide an important counterweight to the three notions of (demanding) change described elsewhere on this website.
latest news

WS-Security
 
on this page

challenge
principles
 
elsewhere

selected security models

more
 home

notion finder

contact us
veryard projects - innovation for demanding change

Challenges of Security

veryard projects > security > challenges
Security always conflicts with other interests: change, innovation, marketing, sales, surveillance.
Many powerful players want to see security as a feature, or as a collection of features. They claim that certain products are more secure than ever, because these products have greater security features. But at the same time, these products are more complex and have more vulnerabilities than ever.
Interference and interaction between security mechanisms.  Adding another layer of security doesn't always make you safer - in some cases, unwanted interference between the layers can introduce gaping holes.
veryard projects - innovation for demanding change

Principles of Security

veryard projects > security > principles
All systems can be broken, given sufficient effort.
Technical systems always have human weaknesses.
veryard projects - innovation for demanding change

More Material

veryard projects > security > material
more Trust, Risk Management, Internet Risk, Information Leakage
cbdi forum Patterns for trust and security
more A Guide to Understanding Security Modeling in Trusted Systems
National Computer Security Center, October 1992
more Diffuse
veryard projects - innovation for demanding change
[top]

[home page]

[contact us]
This page last updated on May 9th, 2002
Copyright © 2001-2002 Veryard Projects Ltd 
http://www.veryard.com/security/index.htm
in asssociation with 
antelope projects
CBDi Forum