Glossary

Security engineering
The field dealing with the security and integrity of real-world systems.

Security policy
A generic document that outlines rules for computer network access determines how policies are enforced and lays out some of the basic architecture of the company security environment.
Trusted system- In security engineering, it is a system that you have no choice but to trust. The failure of a trusted system will compromise security. In general, the number of trusted components in a system should be minimized.

Privilege separation
Used to decide if person, program or device X is allowed to have access to data, functionality or service Y.

Automated theorem proving
(Currently the most important subfield of automated reasoning) is the proving of mathematical theorems by a computer program.

Code review
Is peer review of computer source code intended to find and fix mistakes overlooked in the initial development phase, improving overall code quality. Code reviews can often find and remove common security vulnerabilities such as format string attacks, race conditions, and buffer overflows, thereby improving software security

Unit test
To write test cases for every non-trivial function or method in the module so that each test case is separate from the others if possible.

Defense in depth
The proposition that multiple layers of security are better than a single protection mechanism. The layers may be technological, procedural, or policy.

Fail secure- fail safe
Multics (Multiplexed Information and Computing Service)
An extraordinarily influential early time-sharing operating system.

Operating system (OS)
The system software responsible for the direct control and management of hardware and basic system.

Time-sharing
A n approach to interactive computing in which a single computer is used to provide apparently simultaneous interactive general-purpose computing to multiple users by sharing processor time.

Mikrokernels
In computer engineering, the kernel is the core of an operating system. It is a piece of software responsible for providing secure access to the machine's hardware and to various computer processes (a process is a computer program in a state of execution).

Physical security
Measures that prevent or deter attackers from accessing a facility, resource, or information stored on physical media.

Capability
A concept in secure computing and refers to a value that references an object along with an associated set of access rights

Access control list
A concept in computer security, used to enforce privilege separation. It is a means of determining the appropriate access rights to a given object given certain aspects of the user process that is requesting them, principally the process's user identity (in POSIX, effective UID).


Back to Top

DiscoverArtists.info - DiscoverAstrology.info - DiscoverBabies.info - DiscoverBlogs.info - DiscoverBusiness.info - DiscoverCars.info - DiscoverComputers.info
 DiscoverCountries.info - DiscoverDating.info - DiscoverDIY.info - DiscoverFinance.info - DiscoverFlowers.info - DiscoverGambling.info - DiscoverGadgets.info
DiscoverGolf.info - Discover-Health.info - Discover-Insurance.info - DiscoverJewelry.info - DiscoverLanguages.info - Discover-Loans.info - DiscoverParenting.info
Discover-Pets.info - Discover-RSS.info - DiscoverSports.info - DiscoverTheHome.info - DiscoverWeddings.info - DiscoverWeightLoss.info - DiscoverWorldCities.info