Official (ISC)2 Guide to the CISSP CBK, Third Edition: Security Architecture and Design

This ebook covers the Security Architecture and Design Domain. It addresses the concepts, principles, structures, frameworks, and standards used to design, implement, monitor, and secure individual systems and the IT enterprise. It focuses on the architecture of security services used to enforce various levels of confidentiality, integrity, and availability in key information assets. Security architecture and design focus on the translation of security requirements into usable designs for security controls. It discusses security models in terms of confidentiality, integrity, and information flow; system models in terms of the common criteria; technical platforms in terms of hardware, firmware, and software; and system security techniques in terms of preventative, detective, and corrective controls.