Home / Formal Sciences / Computer Science / Security
Gap analysis2

2 gaps · 6/6 lenses authored.

  • !composesStructure

    8 of 11 populated Computer Science notes assert a composes relation, but this note asserts none.

    73% · 8/11
  • +11 isolated conceptsCoherence

    Confidentiality, Integrity, Availability, Non-Repudiation and 7 more participate in no relation within this note.

    11

Security

The principles, mechanisms, and engineering practices for protecting systems, data, and communications against threats — confidentiality, integrity, availability, authentication, and authorization in the presence of adversaries.

Mature 6/6 lenses 100 Schema ✓ Formal Causal Procedural Simulable Measurable
What is its essence? What are the irreducible elements and ideal forms?
latent, essential, uniform — knowledge is the recovery of ideal forms
First Principles · Pythagoras · Plato · Aristotle
What are the axioms and definitions? What can be proven from them?
certain and deducible — knowledge is what follows necessarily from axioms
Formal / Axiomatic · Euclid · the logicians
What can be measured? What causes what? What is the evidence?
sampled from a limitless nature by measurement and cause/effect
Empirical · Bacon · Galileo · the early chemists
What is the procedure? Inputs → steps → outputs?
effective and constructible — knowledge is an executable procedure
Computational · al-Khwarizmi · Turing
What are the stocks, flows, feedback loops, and equilibria?
dynamic — knowledge is flows, feedback, and equilibrium
Cybernetic · Wiener · Bertalanffy · Forrester
How do we control it, optimize it, trade off, and make it robust?
controllable — knowledge is the ability to optimize for a goal under constraints
Control / Design · the optimizers & designers

Subjects, Objects, Policies, and Adversaries

Security is the discipline of protecting systems against threats in the presence of adversaries who are assumed to be clever, persistent, and well-resourced.

The fundamental elements are subjects (principals), objects (resources), policies (what is allowed), mechanisms (how policy is enforced), and threats (what the adversary can do).

Cryptographic primitives, access control models, and security protocols are the higher-order structures that make protection practical at scale.

This note connects deeply to operating systems (the reference monitor and TCB), networking (secure channels and protocols), algorithms (cryptographic primitives and protocols), and the general theory of systems (protection as a control problem).

Core Security Principles

The CIA triad, Kerckhoffs’s principle (security through obscurity is insufficient), the computational hardness assumptions underlying cryptography, and the principle of least privilege and complete mediation form the deductive foundation.

From these follow the design of modern cryptographic protocols, access control systems, and secure system architectures.

Measuring Security in Practice

Attack success rates, time-to-compromise, false positive/negative rates for detection systems, and measurable side-channel leakage are the observables. Implementation details, key sizes, and the accuracy of the threat model have direct causal effects.

The Core Security Procedures

Modern authenticated encryption, key exchange and secure channel establishment (TLS), access control enforcement, and intrusion/anomaly detection are the production-grade algorithms that real systems depend on.

Each has a clear specification, security proof under stated assumptions, and well-understood engineering trade-offs.

Protection Domains and Controlled Information Flow

A secure system can be modeled as a set of protection domains with carefully controlled information flows between them. Threats act as disturbances. Security mechanisms (prevention, detection, response, recovery) form the feedback loops that keep the system in an acceptable security state despite ongoing attacks.

The Eternal Arms Race under Human and Economic Constraints

Security engineering is uniquely difficult because the adversary is intelligent and adaptive, the requirements are often in direct tension with usability and performance, and the economic incentives frequently favor features and speed over hardening. The field is defined by the constant need to raise the cost of attack while keeping the cost of defense manageable.

The substrate here captures the essential objects, flows, and trade-offs that security engineers and researchers work with every day.

Connections

Security is the cross-cutting concern that must be addressed in every other computing system we study — operating systems, networking, embedded devices, machine learning pipelines, and scientific computing. Its primitives and principles appear throughout the atlas whenever data or computation must be protected from unauthorized parties.

This note provides a rich, well-connected node for the entire computer science cluster.

Back to Computer Science Narsil · A Living Encyclopedia