Description
This course explores the theoretical and practical aspects of basic security design fundamentals as they relate to the analysis, design, development, and implementation of Information System components. Topics covered include separation of domains, isolation, encapsulation, least privilege, simplicity of design, testing, documentation, minimization of implementation, deployment, maintenance, fail safe defaults, fail secure, modularity, layering, least astonishment, open design, usability, and reverse engineering.