The latest articles on Forem by Jegan (@jegan). https://forem.com/jegan https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3641614%2F65ca44c1-d856-4148-aa62-d1ccfef69890.jpg https://forem.com/jegan en Jegan Fri, 19 Dec 2025 11:32:12 +0000 https://forem.com/jegan/computer-systems-security-an-introduction-part-1-4bbi https://forem.com/jegan/computer-systems-security-an-introduction-part-1-4bbi <h2> What is Security </h2> <p>Security is the ability of systems to achieve their intended goals even in the presence of an adversary.</p> <p><strong>The Castle Analogy</strong></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fg1lqxyi529lcdhyiluno.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fg1lqxyi529lcdhyiluno.png" alt=" " width="800" height="436"></a></p> <p>A castle is secure if the treasure remains protected even when enemies are actively trying to attack it.</p> <ul> <li> <strong>Goal</strong>: Keep the treasure safe</li> <li> <strong>Adversary</strong>: Bad guys (hackers) trying to steal it</li> <li> <strong>Security</strong>: Making sure the treasure stays safe even though attackers are trying to break in</li> </ul> <p>So, in computer systems:</p> <p><strong>Goal</strong>:</p> <ul> <li>Keep data <em>confidential</em> </li> <li>Ensure data is <em>not changed</em> </li> <li>Keep systems <em>available</em> for users</li> </ul> <p><strong>Adversary</strong>:</p> <ul> <li>Hackers, malware, unauthorized users</li> </ul> <p><strong>Security</strong>:</p> <ul> <li>Using logins, guards, walls, and alarms to still achieve the goal despite attacks</li> </ul> <h2> The Three Building Blocks of Security </h2> <h3> Goal </h3> <p>Before you can protect something, you need to know <em>WHAT</em> you're protecting and <em>WHY</em>.</p> <p>The three types of goals:</p> <h4> 1. Confidentiality </h4> <ul> <li>Keep secrets <strong>SECRET</strong> </li> <li>Like keeping your diary locked</li> <li>Only you should read your file</li> <li>Your bank password should stay secret</li> </ul> <h4> 2. Integrity </h4> <ul> <li>Keep things <strong>CORRECT</strong> </li> <li>Like making sure nobody changes your homework</li> <li>Your grade file shouldn't be changed by students</li> <li>Your bank balance shouldn't be changed by hackers</li> </ul> <h4> 3. Availability </h4> <ul> <li>Keep it <strong>WORKING</strong> </li> <li>Like making sure the library is open when you need it</li> <li>Netflix should work when you want to watch</li> <li>Your email should always be accessible</li> </ul> <h3> Threat Model </h3> <p>You can't protect against <em>EVERYTHING</em>! You need to decide who you're protecting against.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fu4kqmdfgmd1gupop8dmq.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fu4kqmdfgmd1gupop8dmq.png" alt=" " width="800" height="446"></a></p> <p>Think of it like this:</p> <ul> <li>Against a thief? You need locks and maybe an alarm</li> <li>Against a fire? You need smoke detectors and sprinklers</li> <li>Against rain? A good roof is enough</li> <li>Against a tank? Well, your house won't help much</li> </ul> <p><strong>In computers</strong>:</p> <ul> <li>Are you protecting against random hackers on the internet?</li> <li>Or against a government with unlimited money?</li> <li>These need VERY different protections</li> </ul> <h3> Mechanism </h3> <p>How do you actually protect it?</p> <ul> <li>This is like the actual locks and walls you use</li> </ul> <p><strong>Policy</strong></p> <ul> <li> <p>The rules</p> <ul> <li>Only teachers can change grades</li> <li>Only you can read your email</li> </ul> </li> </ul> <p><strong>Mechanism</strong></p> <ul> <li> <p>The tools</p> <ul> <li>Username and password</li> <li>Encryption</li> <li>Firewalls</li> </ul> </li> </ul> <h2> Why Security Is So Hard? </h2> <p>The big problem:</p> <p><code>Security is negative — you have to defend against EVERYTHING</code></p> <p>Imagine you own a toy store.</p> <p>Making the door work is easy:</p> <ul> <li>Put a lock on it</li> <li>Give keys to employees</li> <li>Open it during business hours</li> </ul> <p><strong>But keeping thieves out is HARD because they might:</strong></p> <ul> <li>Break a window</li> <li>Dig under the floor</li> <li>Come through the roof</li> <li>Pretend to be an employee</li> <li>Steal an employee's key</li> <li>Break the lock</li> <li>Come in during business hours disguised as a customer</li> <li>Bribe an employee</li> </ul> <p>You have to think of ALL possible ways in.</p> <h3> The Asymmetry Problem </h3> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fcbifnovrss9haygt3xkx.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fcbifnovrss9haygt3xkx.png" alt=" " width="800" height="800"></a></p> cybersecurity beginners security tutorial