Information Assurance 정보 보증
Originated in the US military agencies
IA is more than just IS(Information Security)!
Also includes reliability and emphasizes strategic risk manaement over tools and tactics.
In short words one may say that IA is a comprehensive and systematic management of IS.
Security Engineering 보안 공학
Security engineering is a specialized field of engineering that focuses on the security
aspects in the design of systems that need to be able to deal robustly with possible
sources of disruption, ranging from natural disasters to malicious acts.
It is similar to other systems engieering activities in that its primary motivation is to
support the delivery of engineering solutions that satisfy pre-defined functional and user
requirments, but with the added dimension of preventing miuse and malicious behavior.
These constraints and restrictions are often asserted as a security policy.
보안의 관점으로 Dependable System을 만드는 일련의 과정
(요구사항 분석 – 설계 – 제작 – 테스트 – 릴리즈)
목표 : 가능한 많은 보안 취약점을 찾아 제거하는 것