Engineering Principles for Information Technology Security (A Baseline for Achieving Security)

Abstract

The purpose of the Engineering Principles for Information Technology (IT) Security (HP-ITS) is to present a list of system-level security principles to he considered in the design, development, and operation of an information system. Ideally, the principles presented here would he used from the onset of a program-at the beginning of, or during the design phase- and then employed throughout the system's life-cycle. However, these principles are also helpful in affirming and confirming the security posture of already deployed information systems. The principles are short and concise and can he used by organizations to develop their system life-cycle policies.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jun 01, 2001
Accession Number
ADA393550

Entities

People

  • Alexis Feringa
  • Clark Hayden
  • Gary Stoneburner

Organizations

  • Booz Allen Hamilton

Tags

Communities of Interest

  • Cyber
  • Engineered Resilient Systems
  • Human Systems

DTIC Thesaurus Topics

  • Application Software
  • Commerce
  • Computer Access Control
  • Computer Programming
  • Computers
  • Cybersecurity
  • Department Of Defense
  • Engineering
  • Governments
  • Information Security
  • Information Systems
  • Life Cycles
  • Personnel Management
  • Risk
  • Risk Analysis
  • Security
  • Software Development

Fields of Study

  • Computer science
  • Engineering

Readers

  • Cybersecurity.
  • Life Cycle Cost Analysis
  • Systems Analysis and Design