Requirements definition

Implementation planning

Project identification

System construction

Senior Management

Seniors security analysts

System auditors

IS security specialists

Provides the timing trigger to activate a malicious program disguised as a legitimate function.

Used by a supervisor to monitor the productivity of a user without their knowledge

Allows one process to signal information to another by modulating its own use of system resources

Modulated to carry an unintended information signal that can only be detected by special, sensitive receivers.

Finger print

Ticket Granting

Password

Token

making the determination to decide what level of classification the information requires

periodically checking the validity and accuracy for all data in the information system

running regular backups

audit the users when they require access to the information

Sendback forward systems

Callback forward systems

Sendback system

Callback systems

Rule-based access control

Non-discretionary Access Control

Mandatory Access Control

Discretionary Access Control