Parkerian Hexad - Wikipedia, the free encyclopedia
The CIA triad in my mind has always been too simplistic and taken without much thought by students and professionals. I mean sure, it's easy to understand and adds a basic structure to decompose problems by, but it is so rudimentary and broken. When you have to tack on authentication, non-repudiation, risk management, and other categories the basics of the CIA approach just break down and make the core model unstable and unusable.
I like that the Parkerian Hexad is different. Sure at the core it has problems with non-overlapping categories and atomicity. What I do like is that it is something different and Parker is at least trying. I get the distinct feeling that everyone else has just given up and accepts CIA as the token system that works alright.
I really only wanted to write about this as a note to myself since I've always had a problem with the CIA-mindset. In school no one -ever- talks about Parker, probably because they don't know or care about his work. I get that a lot of people in the security industry may not like him, and he may or may not be crazy. Who knows. I'm fascinated by the fact that there are other models out there being explored.
Monday, August 31, 2009
Subscribe to:
Post Comments (Atom)
Posts
0 comments:
Post a Comment