In the past, software applications were created with little thought to the importance of security. This course introduces some of the biggest security disasters in software design and what lessons can be learned from them. Participants will develop a fundamental understanding of the concepts of security architecture, its design, and the kinds of models, policies, correspondence, structure testing, and permissions that should be implemented. Lastly, they will understand and use confidentiality, integrity, and availability as the three main tenets of information security.
On successful completion of this course, learners should have the knowledge and skills to:
- Describe NIST 800-53 security architecture and design
- Describe types of security models
- Understand security-relevant components
- Understand correspondences
- Understand security testing and permissions
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.