Good security is goal oriented. A good security architecture is tailored to your situation.
When defining a product or new (IT) service one of the key activities is to define your specific security requirements. Defining requirements is known to be hard, time consuming and complex. Especially when you have an iterative development cycles and you do not have yet a clear defined view of your final product or service to be created. Continue reading “Complex attack vectors”
Do not forget to think of MABA-MABA
Automation brings complexity, but automation can also bring simplifications in a process. This because with automation we need to create a model, write assumptions and exceptions and define of course requirements which are feasibly for implementation. Continue reading “Do not forget to think of MABA-MABA”