intro.md (596B)
1 +++ 2 title = 'Intro' 3 +++ 4 # Intro 5 - _error_: made by human 6 - _bug/vulnerability_: consequence of error 7 - when the bug is triggered/exploited, generates security _failure_ 8 9 security is intersection of: 10 - availability: can be ensure that services can stay available and not be take down by attackers 11 - confidentiality: can we keep info secret 12 - integrity: can we keep data from being modified by attackers 13 14 Some applications work but have vulnerabilities: 15 - insecure configs 16 - systems have a conflicting security policy 17 - side channels -- e.g. indirect observation of data 18 - hardware vulnerabilities