System Architecture and Models

Introduction

The systems architecture and models domain deals with system hardware and the software that interacts with it. This chapter discusses the standards for securing these systems and protecting confidentiality, integrity, and availability. You are introduced to the trusted computer base and the ways in which systems can be evaluated to assess the level of security.

To pass the CISSP exam, you need to understand system hardware software models, and how models of security can be used to secure systems. Standards such as Common Criteria, Information Technology System Evaluation Criteria (ITSEC), and Trusted Computer System Evaluation Criteria (TCSEC) are covered on the exam.