Insights National Cyber Security Centre publishes guidance on design principles for secure systems

The NCSC has added two new items to its collection of security architecture guidance to help designers of computer systems and networks learn from its experiences.

The first is a set of design principles that the NCSC has developed through its security architecture consultancy work.

The NCSC explains that there are now around 40 design principles, broken down into four key areas, which tend to be design objectives for many systems:

  • making compromise difficult;
  • making disruption difficult;
  • making compromise detection easier; and
  • reducing the impact of compromise.

Secondly, the NCSC has published a set of six security architecture “anti-patterns”. The NCSC explains that these are common system design flaws it has seen often over the last decade. To access the guidance, click here.

Expertise