The IT Law Wiki
Don't have an account?
Register
Advertisement
Register
in: Definition, Security, Technology

Security architecture

Edit

Definition[]

A security architecture is

[a] set of physical and logical security-relevant representations (i.e., views) of system architecture that conveys information about how the system is partitioned into security domains and makes use of security-relevant elements to enforce security policies within and between security domains based on how data and information must be protected.[1]

Overview[]

"The security architecture reflects security domains, the placement of security-relevant elements within the security domains, the interconnections and trust relationships between the security-relevant elements, and the behavior and interactions between the security-relevant elements. The security architecture, like the system architecture, may be expressed at different levels of abstraction and with different scopes."[2]

References[]

  1. NIST Special Publication 800-160, at B-10.
  2. Id.
Community content is available under CC-BY-SA unless otherwise noted.
Advertisement