Lesson 9: Explain the Purpose of Mitigation Techniques Used to Secure the Enterprise

0.0(0)
Studied by 0 people
call kaiCall Kai
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
GameKnowt Play
Card Sorting

1/21

encourage image

There's no tags or description

Looks like no tags are added yet.

Last updated 5:47 AM on 5/28/26
Name
Mastery
Learn
Test
Matching
Spaced
Call with Kai

No analytics yet

Send a link to your students to track their progress

22 Terms

1
New cards

Secure Design Engineering

The goal of secure design engineering is to develop trustworthy and survivable systems.

- Survivability is a system property (i.e., the system's ability to prevent, mitigate, and recover from cyber events).
- Three sets of secure design principles:
- Secure Design Planning Principles
- Secure Design Configuration Principles
- Secure Design Relationship Principles

2
New cards

Secure Design Planning Principles

  • Threat Modeling: Use threat modeling to anticipate threats. Focus on undesirable consequences.
    - Keep it Simple: Security mechanisms should be as simple as possible. Simplicity means fewer possibilities exist for error, and the assessment process is less complex.
    - Default Deny Posture: Base access decisions on permission rather than exclusion. This means that, by default, access is denied, and the protection scheme identifies conditions under which access is permitted.
    - Fail-Secure: In the event of failure, access is denied.
    - Open Design: The security mechanism should not depend upon the secrecy of the design or implementation. Argument against "security through obscurity".
3
New cards

Secure Design Configuration Principles

  • Secure the Weakest Link: Identify and strengthen weak links until an acceptable level of risk is achieved.
    - Defense-in-Depth: Utilize multiple layers of diverse controls including endpoint protection such as host-based firewall.
    - Least Functionality: Systems and devices should be configured to provide only essential capabilities, and specifically prohibit or restrict the use of unnecessary functions, ports, protocols, and services.
    - Appropriate Disclosure: Error and system messages should not include unnecessary information that may lead to a compromise of security.
    - Sanitize Data Sent to Other Systems: Sanitize all data passed to complex subsystems such as command shells, relational databases, and commercial off-the-shelf (COTS) components.
4
New cards

Secure Design Relationship Principles

  • Zero Trust: No default trust or privilege. Verification (authentication) is required for access.
    - Trust but Verify: Dependencies are not trusted until proven trustworthy.
    - Separation of Duties: Breaking a task into segments so that no one subject is in complete control or has complete decision-making power.
    - Least Privilege: Giving a subject or process only the rights and permissions needed to complete assigned tasks.
    - Psychological Acceptance: Human interface should be designed for ease of use, so that users routinely and automatically apply the protection mechanisms correctly.
5
New cards

Segmentation

Segmenting an enterprise into security zones is useful for creating and enforcing security policies, controlling information flow, and securing network access.

- Security zones are divisions of the network based on functional, performance, and/or security requirements.
- Security zones are enforced by firewall ingress and egress access control lists (ACL) - rules.

6
New cards

Security Zones

Untrusted
Screened Subnet
Trusted
Enclave
Air Gapped
Physically Isolated
Wireless
Virtual Private Network (VPN)

7
New cards

Untrusted (Security Zone)

An untrusted network is one which the organization has no control over.

8
New cards

Screened Subnet (Security Zone)

A screened subnet has connections to both trusted and untrusted networks.

9
New cards

Trusted (Security Zone)

A trusted network is one which the organization has complete control over.

10
New cards

Enclave (Security Zone)

An enclave is a restricted network within a trusted network.

11
New cards

Air Gapped (Security Zone)

An air gapped network does not connect to any untrusted network.

12
New cards

Physically Isolated (Security Zone)

A physically isolated network does not connect to any other network.

13
New cards

Wireless (Security Zone)

A wireless network supports wireless transmissions.

14
New cards

Virtual Private Network (VPN)

A VPN is designed to facilitate secure communications over a public circuit.

15
New cards

Micro-segmentation

Micro-Segmentation is a method of creating zones within data centers and cloud environments to isolate workloads from one another and secure them individually.

16
New cards

North-South

North-South refers to the traffic that flows into and out of a data center or cloud.

17
New cards

East-West

East-West refers to traffic within a data center or cloud.

18
New cards

Protect Surface

The protect surface is made up of the network's most critical and valuable data, assets, applications, and services (DAAS). It is always knowable.

19
New cards

Zero Trust (Micro-segmentation)

Micro-segmentation allows for the implementation of zero trust protect surface environments. Authentication is always required and enforces least privilege access.

20
New cards

Isolation

Isolation is when zones, devices, sessions, or even components need to be segregated, so as not to cause harm or to be harmed.

21
New cards

Virtualization

Virtualization technology creates multiple environments from a single physical hardware system.

- Virtual machines (VMs) provide fault and security isolation at the hardware level including memory and CPU access.

22
New cards

Virtual Local Area Network (VLAN)

A virtual local area network (VLAN) divides a single existing network into multiple logical network segments which can be restricted.

- Broadcast domains are portioned and isolated at the data link layer.