Englisch 
Chinesisch 
Deutsch 
Koreanisch 
Japanisch 
Farsi 
Portuguese 
Russian 
Spanisch 
What is computer security?
To understand computer security in general, it is necessary to consider what security means in everyday life.As we will see, the general security rules of everyday life apply to computer security as well.
Is there such a thing as absolute computer security?In a word, there is no such thing.The term security system is an inappropriate name because it implies that the system is either secure or insecure.Security is actually a balance.Any form of security can be compromised if the resources provided are unlimited.Despite the increasing number of resources available to attackers, these resources are still limited in the real world.With that in mind, we should design all systems in such a way that attackers will pay far more to break them than they will gain from breaking them.
End-to-end security what is end-to-end security?In a multi-tier system, each layer should have its own security and be coordinated with other layers.Designing security for the disparate systems and middleware that come together is a considerable challenge.Simply put, the system is only as secure as the weakest link;Unless you think about security from an end-to-end perspective, security can be compromised at any time.
Simplicity does a complex security design work?At first glance, it may seem that the best way to stop unauthorized users from accessing a system is to design a very sophisticated security scheme, but this is not the case.Not only is the cost of designing a complex security system prohibitive, but it is too complex for legitimate users to get in.On the other hand, simple systems are easier to understand and easier to analyze.
Good system design requires security is it possible to retrofit security?The answer is that it is almost impossible.In many cases, it may not be practical to retrofit security without having to redesign substantial parts of the system.In almost all cases, retrofitting is expensive.Therefore, security should never be an afterthought -- it must be an integral part of system design from the start.
