Definition[]
A security architecture is
“ | [a] set of physical and logical security-relevant representations (i.e., views) of system architecture that conveys information about how the system is partitioned into security domains and makes use of security-relevant elements to enforce security policies within and between security domains based on how data and information must be protected.[1] | ” |
Overview[]
"The security architecture reflects security domains, the placement of security-relevant elements within the security domains, the interconnections and trust relationships between the security-relevant elements, and the behavior and interactions between the security-relevant elements. The security architecture, like the system architecture, may be expressed at different levels of abstraction and with different scopes."[2]
References[]
- ↑ NIST Special Publication 800-160, at B-10.
- ↑ Id.