Skip to main content

Security Architecture

I am doing a consulting for a company. They want me to create a security architecture for their company. The problem is, there are several meanings to "security architecture".

In one book, "security architecture" means application or software security. In Cisco's and Microsoft's views (at least from their papers), security architecture relates to network security. In CISSP books, security architectures refers to access control (and the different models). From a consulting firm, such as PWC, security architecture means a (security) framework, which is a high level concept. Another consulting firm thinks that security architecture means activities. Confusing.

My take on this? Well, I think security architecture is just like building architecture. It is composed of functional building blocks. In a house (or building), you have a living room, bedroom, kitchen, garage, garden, etc. In security, you'll have the equivalent building blocks, such as identity management system, authentication system, authorization and access control, and so on and so on. Now, all I have to do is arrange these blocks according to a certain engineering standard (and taste to make it elegant). Strangely, nobody has come up with this kind of idea.

What do you think? Pointers, please ...

Comments

kuspoes said…
saya kurang tahu mengenai arsitektur keamanan karena selama ini baru juga belajar tentang komputer .

namun sepertinya ide Anda benar2 di jelaskan dengan sederhana ya, mungkin juga seperti itu . Siapa , dimana , dan kapan seseorang bisa atau boleh masuk ruangan.

ide yg bagus.

kusaeni
Anonymous said…
..definisi yang anda berikan cukup menjelaskan.

BTW salam kenal Bpk Budi.

Popular posts from this blog

Himbauan Kepada Hacker & Cracker Indonesia & Malaysia

Kepada Hacker & Cracker Indonesia & Malaysia, Saya mengharapkan anda tidak melakukan penyerangan atau/dan pengrusakan situs-situs Indonesia dan Malaysia. Saya mengerti bahwa akhir-akhir ini beberapa masalah di dunia nyata membuat kita kesal dan marah. Namun kekesalan tersebut sebaiknya tidak dilimpahkan ke dunia maya (cyberspace). Semestinya sebelum melakukan aksi yang berdampak negatif, kita bisa melakukan langkah-langkah positif seperti melakukan dialog (melalui email, mailing list, bulletin board, blog, dan media elektronik lainnya). Kita harus ingat bahwa kita hidup bertetangga dan bersaudara. Yang namanya hidup bertetangga pasti mengalami perbedaan pendapat. Mari kita belajar bertetangga dengan baik. Saya berharap agar kita yang hidup di dunia maya mencontohkan bagaimana kita menyelesaikan permasalahan dengan kepala dingin dan hati yang lapang, sehingga para pemimpin kita di dunia nyata dapat mencontoh penyelesaian damai. Mudah-mudahan mereka dapat lebih arif dan bijaksana

More bad news with Malaysia - Indonesia

I've got more emails and news about bad news between Indonesia and Malaysia. To be exact, there was a news about RELA (not sure what that is) that goes out after Indonesians in Malaysia. There were incidents where they hit Indonesians, rob, and do horrible things. I cannot even write this is my blog. I am so sad and frustrated. What's going on with Malaysia (and Malaysians)? What did we - Indonesian(s) - do to deserve this? I thought there should be less boundary between Indonesia and Malaysia. But ... What's going on there, bro & sis? You know, more Indonesians now feel that they are offended by Malaysians. I can tell you that this bad feeling is increasing. This is a bad publicity towards Malaysia. People are now creating various calling names, such as "Malingsia" (it's a short of "maling" [thief] "siah" [you, Sundanese]), and worse.

Say NO to APJII!

Prolog At the end of 1997, I went back to Indonesia from my studies and work in Canada. The .ID domain management in Indonesia at that time was in a confusing state. Nobody wanted to manage it. Universitas Indonesia (UI) - the original maintainer - was in a fight with APJII (the Association of Indonesian ISP). In the end, IANA gave me a mandate to manage the .ID domain. Since then, I manage the .ID domain with open management. There are problems, but mostly minors. Until recently, when APJII (again) is trying to take over the .ID domain management from my team. Here's a short info to give you a head start. Short summary APJII (the association of ISP in Indonesia) is trying to takeover the .ID domain management in Indonesia. They have tried and will try everything to take over. Long description I've been managing the .ID domain since the end of 1997. At that time, nobody wanted to run the domain management. First of all, a brief description of how we run things. To run the .ID d