Cyber Security Principles




Cyber Security Principles

Guiding Principles are aspirational, developed and delivered as a partnership between Government and ISPs.

Some of the essential cyber security principles are -

 Cyber Security Principles

Cyber Security Principles

  • Economy of mechanism
  • Fail-safe defaults
  • Least Privilege
  • Open Design
  • Complete mediation
  • Separation of Privilege
  • Least Common Mechanism
  • Psychological acceptability
  • Work Factor
  • Compromise Recording

Economy of mechanism

  • The Economy of mechanism principle simplifies the design and implementation of security mechanisms.
  • The checking and testing process is less complicated so that fewer components need to be tested.
  • Interfaces between security modules are the suspect area which should be as simple as possible.

Fail-safe defaults

  • Fail-safe defaults principle states that the default configuration of a system should have a conservative protection scheme.

Least Privilege

  • Principle states that a user should only have those privileges that need to complete his task.
  • If possible, the elevated rights of a user identity should be removed as soon as those rights are no longer needed.

Read Also

Open Design

  • Principle states that the security of a mechanism should not depend on the secrecy of its design or implementation.

Complete mediation

  • The principle of complete mediation restricts the caching of information, which often leads to simpler implementations of mechanisms.
  • The operating system should mediate all and every access to an object.

Separation of Privilege

  • This principle states that a system should grant access permission based on more than one condition being satisfied.
  • Two conditions must be met -
    • The user must know the root password.
    • The user must be in the right group (wheel).

Least Common Mechanism

  • This principle may also be restrictive because it limits the sharing of resources.

Psychological acceptability

  • The psychological acceptability principle recognizes the human element in computer security.
  • If security-related software or computer systems are too complicated to configure, maintain, or operate, the user will not employ the necessary security mechanisms.

Work Factor

  • This principle states that the cost of circumventing a security mechanism should be compared with the resources of a potential attacker when designing a security scheme.

Compromise Recording

  • Compromise Recording principle states that sometimes it is more desirable to record the details of intrusion that to adopt a more sophisticated measure to prevent it.


Related Searches to Cyber Security Principles

Adblocker detected! Please consider reading this notice.

We've detected that you are using AdBlock Plus or some other adblocking software which is preventing the page from fully loading.

We don't have any banner, Flash, animation, obnoxious sound, or popup ad. We do not implement these annoying types of ads!

We need money to operate the site, and almost all of it comes from our online advertising.

Please add wikitechy.com to your ad blocking whitelist or disable your adblocking software.

×