Part of the Defense.tex database ()

Focused On Your Success

The All.Net Security Database

Generated Fri Jun 27 09:58:52 PDT 2003 by fc@red.a.net

Cause/Mechanism: Threat Profiles Attack Methods Defense Methods Process: Prevention Detection Reaction Impact: Integrity Availability Confidential Use Control	Other: Risk Management Database Description Domain: Physical Informational Systemic Sophistication: Theoretical Demonstrated Widespread	Perspectives: Management Policy Standards Procedures Documentation Audit Testing Technical Safeguards Personnel Incident Handling Legal Physical Awareness Training Education Organization
Brekne's Mechanistic: Input Output Storage Processing Transmission	Brekne's Causal: Accidental Malicious	Brekne's Method: Leakage Masquerade Denial Corruption Usage Mental

Defense76:

Name:effective protection mind-set

People's mind-set is oriented toward protection issues. Examples include organizations with effective protection awareness programs, organizations with a strong tradition and culture of protection, and individuals with a passion for information protection. Complexity: Dealing with people is always a complex business, but fostering a protection-oriented attitude is not usually difficult if management is supportive.

fc@red.a.net

Related Database Material

[PDRPrevent - Relates to Prevent]
[PDRDetect - Relates to Detect]
[PDRIntegrity - Relates to Integrity]
[PDRConfidentiality - Relates to Confidentiality]
[PDRTheoretical - Relates to Theoretical]
[PLSLogical - Relates to Logical]
[ManAlManagement - Relates to Management]
[ManAlPersonnel - Relates to Personnel]
[ManAlAwareness - Relates to Awareness]
[ManAlTraining - Relates to Training]
[ManAlEducation - Relates to Education]
[ManAlOrganization - Relates to Organization]
[Attack1 - errors and omissions]
[Attack18 - fictitious people]
[Attack21 - perception management a.k.a. human engineering]
[Attack23 - infrastructure interference]
[Attack30 - bribes and extortion]
[Attack39 - modeling mismatches]
[Attack57 - process bypassing]
[Attack63 - input overflow]
[Attack69 - induced stress failures]
[Attack81 - reflexive control]
[Attack82 - dependency analysis and exploitation]
[Attack86 - inappropriate defaults]
[Attack88 - collaborative misuse]
[Attack90 - strategic or tactical deceptions]
[Attack91 - combinations and sequences]