CSI-604 - Information Security

ArfanShahzad.com
Course Outline

ArfanShahzad.com
 Classification and Trust Modelling

• Classification and trust modeling play crucial roles in information

security, helping organizations make informed decisions about access
control, threat detection, and overall security posture.

• Let's explore how these concepts are applied in information security:

ArfanShahzad.com
 Classification and Trust Modelling cont…
Classification in Information Security
• Access Control: Classification is often used to categorize users, devices, or
processes into different security clearance levels or roles.

• This allows organizations to control access to sensitive resources based on

the classification of entities.

• For example, in military or government contexts, information is often

classified as "Top Secret," "Secret," or "Unclassified," and access is
restricted accordingly.

ArfanShahzad.com
 Classification and Trust Modelling cont…
Classification in Information Security
• Data Protection: Data classification helps organizations identify and
protect their most sensitive information.

• Data can be categorized into different classes based on its sensitivity,

and security measures are then applied accordingly.

• For instance, medical records might be classified as “Highly Sensitive”

while publicly available product information is “Public”.

ArfanShahzad.com
 Classification and Trust Modelling cont…
Classification in Information Security
• Threat Detection: Classification models are used to identify and
categorize potential security threats and incidents.

• Different algorithms can classify network traffic, log data, or user

behavior as normal or suspicious, enabling rapid threat detection and
response.

ArfanShahzad.com
 Classification and Trust Modelling cont…
Trust Modelling in Information Security
• User Authentication: Trust models are employed in user
authentication systems to assess the trustworthiness of users based
on their credentials, behavior, and past interactions with the system.

• Users with high trust scores may be granted privileged access.

ArfanShahzad.com
 Classification and Trust Modelling cont…
Trust Modelling in Information Security
• Device Trustworthiness: In the context of the Internet of Things (IoT)
and device security, trust models are used to evaluate the
trustworthiness of IoT devices.

• Suspicious or compromised devices can be isolated or denied access

to the network.

ArfanShahzad.com
 Classification and Trust Modelling cont…
Trust Modelling in Information Security
• Software and Application Trust: Trust models can assess the
trustworthiness of software applications and updates.

• For example, digital signatures and reputation systems are used to

determine whether software updates or downloads are from trusted
sources.

ArfanShahzad.com
 Classification and Trust Modelling cont…
Trust Modelling in Information Security
• Access Control: Trust models are often integrated into access control
mechanisms.

• Access decisions can be based not only on user credentials but also
on the trust level assigned to a user or device.

• Users with higher trust may be granted more extensive access

privileges.

ArfanShahzad.com
 Classification and Trust Modelling cont…
Trust Modelling in Information Security
• Behavior-Based Trust: Behavioral analysis models assess the
trustworthiness of users based on their behavior within the system.

• Suspicious activities or deviations from normal behavior can trigger

alerts or security actions.

ArfanShahzad.com
 Classification and Trust Modelling cont…

• The interconnection between classification and trust modeling in

information security is evident in scenarios where entities are
categorized based on their attributes and behavior:

ArfanShahzad.com
 Classification and Trust Modelling cont…

• User and Entity Behavior Analytics (UEBA): UEBA solutions combine

classification techniques with trust modeling to identify abnormal
user and entity behavior.

• For example, UEBA systems classify user activities as normal or

suspicious based on historical data and trust scores, allowing for real-
time threat detection.

ArfanShahzad.com
 Classification and Trust Modelling cont…

• Data Loss Prevention (DLP): In DLP solutions, data is classified based

on its sensitivity.

• Trust models are then applied to users or processes accessing this

data, considering their trustworthiness.

• For instance, sensitive data may only be accessible by highly trusted

users.

ArfanShahzad.com
 Classification and Trust Modelling cont…

• Access Control Policies: Access control policies often take into

account the classification of users and resources.

• Trust models inform these policies, helping organizations enforce fine-

grained access control.

ArfanShahzad.com