Security Design Principles for Digital Services

Created:  13 Mar 2016
Updated:  08 Aug 2016
Design Principles

These principles are intended to inform systems architecture design where there is no precedent or architectural pattern to follow.

They are aimed at developers, technical architects and security architects.

Security Design Principles for Digital Services

  1. Design Principles: Introduction

    Some background on digital services and advice on how to get the most from our Design Principles

  2. Design Principles: Understanding your service

    To securely design a service, there are a number of areas you need to have a good understanding of

  3. Design Principles: Making services hard to compromise

    Designing with security in mind means using concepts and techniques which make it harder for attackers to compromise your service using commodity techniques

  4. Design Principles: Reducing the impact of compromise

    Creating services which naturally minimise the degree of any compromise

  5. Design Principles: Designing to avoid disruption

    When high-value services rely on digital delivery it becomes essential that they are always available. For the credibility of the service and the users’ convenience, the acceptable percentage of ‘down time’ is effectively zero.

  6. Design Principles: Making compromise easy to detect

    Even if you take all available precautions, there’s a chance your system will be compromised by a new or unknown attack. If this happens you want to be well positioned to detect the compromise

Was this guidance helpful?

We need your feedback to improve this content.

Yes No