IJISC
  • Indexed in

  • Latest News

    July 1, 2024
    Volume 13, Issue 1 of the International Journal of Information Security and Cybercrime was published
    December 27, 2023
    Volume 12, Issue 2 of the International Journal of Information Security and Cybercrime was published
    June 28, 2023
    Volume 12, Issue 1 of the International Journal of Information Security and Cybercrime was published
  • --- More News ---
  • Popular Articles

  • Defense in Depth Principle to Ensure Information Security


    Author(s): BARBU, Ionuț-Daniel; PETRICĂ, Gabriel

    Quick view | Full article | Citations | Views: 1,868


    Author(s) keywords: , ,


    Reference keywords: ,


    Abstract:

    The primary scope of the principle of layered security is to achieve a multi-level protection on the data in both at rest or in transit states. A successful approach implies inserting several security barriers to defend against various types of threats. This article presents an overview of Defense in Depth technique applied according to risk analysis performed to ensure data security. Throughout it, several examples of "layers" of protection are detailed and information security is analyzed in the case of three types of cyber-attacks.



    References:

    [1]. O. Santos, End-to-End Network Security. Defense in Depth, Cisco Press, 2008.

    [2]. M. Rosenquist, Defense in Depth Strategy Optimizes Security, Intel Corporation White Paper, 2008.

    [3]. National Security Agency, Defense in Depth. A practical strategy for achieving Information Assurance in today’s highly networked environments, [Online] Available: https://www.nsa.gov/ia/_files/support/ defenseindepth.pdf

    [4]. Defense in depth, (2015, Mar. 08) [Online] Available: https://www.owasp.org/ index.php/Defense_in_depth

    [5]. T. McGuiness, Defense In Depth, White Paper, SANS Institute Reading Room, [Online] Available: http://www.sans.org/reading-room/whitepapers/basics/defense -in-depth-525

    [6]. Defense in depth – Computing, (2015, Mar. 22) [Online] Available: http://en.wikipedia.org/wiki/Defense_in_depth_(computing)



    Additional Information

    Article Title: Defense in Depth Principle to Ensure Information Security
    Author(s): BARBU, Ionuț-Daniel; PETRICĂ, Gabriel
    Date of Publication: 2015-06-29
    Publication: International Journal of Information Security and Cybercrime
    ISSN: 2285-9225 e-ISSN: 2286-0096
    Digital Object Identifier: 10.19107/IJISC.2015.01.06
    Issue: Volume 4, Issue 1, Year 2015
    Section: Studies and Analysis of Cybercrime Phenomenon
    Page Range: 41-46 (6 pages)



    Copyright ©2012-2024
    The International Journal of Information Security and Cybercrime (IJISC)

    All rights reserved
    The International Journal of Information Security and Cybercrime is a trademark of the Romanian Association for Information Security Assurance (RAISA).
    No part of this publication may be reproduced, stored in a retrieval system, photocopied, recorded or archived, without the written permission from RAISA. When authors submit their papers for publication, they agree that the copyright for their article be transferred to the Romanian Association for Information Security Assurance, if the articles are accepted for publication. The copyright covers the exclusive rights to reproduce and distribute the article, including reprints and translations.