Sybex Chapter 8
I've been slowly making my way through the Sybex 8th book and just smacked into Chapter 8, "Principles of Security Models, Design, and Capabilities". My eyes glazed over and brain started drifting off to happier places. I finished it and got 18/20 on the end of chapter questions, but I felt like the chapter content went a lot deeper than the review questions.
Going to need to spend some more time here. Any advice for this topic?
Comments
-
JDMurray
Admin Posts: 13,094 Admin
Security models are architectural/philosophical/academic concepts. It really helps to translate the concepts to some sort of real-world situation of organization involving security.
You must have picked up some understanding if you got most of the chapter quiz questions correct (not counting the ones that you guessed right
). I recommend running through the related study aides on sites like Quizlet to check your understanding. -
medic
Member Posts: 116 ■■■□□□□□□□
The understanding of the general idea I basically have, and I felt that is what the end of chapter questions were based on. It was the details in the chapter that were rough, like the levels of TCSEC vs ITSEC vs Common Criteria and the like...This will be an area that I will need to spend more time on. That Quizlet link will be helpful. Thanks! -
JDMurray
Admin Posts: 13,094 Admin
For each term that I am researching (TCSEC, ITSEC, Common Criteria, etc.), I usually hit Wikipedia first to see what's written there and to look through the article's external references. Knowing the history of how and why these models/frameworks were developed is useful too.