From the course: Complete Guide to Open Source Security
Join today to access over 24,300 courses taught by industry experts.
Adding security to the model
From the course: Complete Guide to Open Source Security
Adding security to the model
- Let's get back to our example Architecture and add some security elements. We'll add a business actor and call it Customer. And we'll add an application event called Login. And we'll connect them with a flow arrow. We'll add another flow arrow to the Portal. We'll now add a business process and call it Authentication. And we'll just expand our box a little bit to put these in. And we'll add a serving arrow to Login. And we'll add an application component. And we'll call it Identity Server. And we'll use a serving arrow to connect it to the authentication process. We'll then add an assessment and we'll call it Risk Assess. And we'll connect it using an association to Authentication. And we'll add a driver. which we'll call Unauthorized Access. And we'll associate that with Authentication as well. And we'll add a goal. And we'll call it 2FA, two-factor authentication. And we'll associate that with Authentication as well. Okay, we've now represented one aspect of security using our…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
(Locked)
Introduction to GRC1m 13s
-
Architecting with ArchiMate5m 52s
-
(Locked)
Modelling security with Archi2m 22s
-
(Locked)
Adding security to the model3m 27s
-
(Locked)
Security risk management with SimpleRisk3m 9s
-
(Locked)
Taking SimpleRisk for a spin7m 34s
-
(Locked)
Using eramba for GRC4m 18s
-
(Locked)
Configuring the eramba system8m 31s
-
(Locked)
Preparing your risk context9m 11s
-
(Locked)
Setting up your assets3m 15s
-
(Locked)
Entering risks into eramba3m 35s
-
(Locked)
-
-
-
-
-
-
-
-
-
-
-
-