Security forms for protection against vulnerabilities in computer systems

Paper in proceeding, 1992

This paper describes a taxonomy that reflects concepts within the area of security which was developed with the intention of creating a useful structure for security analysis, estimation and design. Many terms found in the security area are clearly defined, together with a structured approach to the problem of describing the field of security in a simple and yet correct and usable way. Different types of threats are discussed and three major areas of security mechanisms are identified. A discussion is also included of the areas in which vulnerabilities can be found, and is used as a basis for defining six different forms of security. We believe this work has resulted in a usable taxonomy which comprehensively increases the understanding of the area of security. It clearly explains the relationsbetween different forms of security, and the interrelations with threats, attacks and security mechanisms.