14




                                        Security engineering













                                            Objectives
                                            The objective of this chapter is to introduce issues that should be
                                            considered when you are designing secure application systems. When
                                            you have read this chapter, you will:
                                              understand the difference between application security and
                                               infrastructure security;
                                              know how life-cycle risk assessment and operational risk assessment
                                               are used to understand security issues that affect a system design;
                                              be aware of software architectures and design guidelines for secure
                                               systems development;
                                              understand the notion of system survivability and why survivability
                                               analysis is important for complex software systems.





                                            Contents

                                            14.1 Security risk management
                                            14.2 Design for security
                                            14.3 System survivability