Reading

Sommerville, Sections 13.1 through 13.3

Objectives

  1. Know what security engineering is
  2. Define the security dimensions of confidentiality, availability, and integrity
  3. Understand the security levels of infrastructure, applications, and operational
  4. Understand the aspects of system security management
  5. Know the terms asset, attack, control, exposure, threat, and vulnerability
  6. Apply a security risk management approach to developing security policy and security requirements