Definitions
Key terms and concepts that form the vocabulary of security architecture. Clear definitions enable consistent communication across teams and organizations.
IT Security Architecture
The enterprise discipline that embodies security principles in the design of IT systems.
IT Architecture
Why do we need IT Architecture? Abstract system descriptions are essential to achieve qualities like sustainability, dependability, scalability, and performance -- these don't emerge naturally from simply combining functional components.
IT Risk
Most IT risk discussions focus narrowly on IT Security, yet modern business processes depend heavily on IT and risk management is a critical corporate governance concern that extends much further.
IT Security
Security provided by IT systems can be defined as the system's ability to protect confidentiality and integrity of processed data, and provide availability of the system and data. Together these are the CIA characteristics.
Security Patterns
Design patterns have significantly influenced security pattern development. OSA combines structured NIST 800-53 control mappings with visual architectural diagrams to create reusable solutions for recurring security design problems.
Security Requirements
Security requirements describe functional and non-functional requirements that must be satisfied to achieve the security properties of an IT system.
Glossary
Key terms used throughout OSA.