Security mechanisms

Security Mechanisms—these are the tools, methods, or techniques used to enforce the security policies and principles you've been learning about (like the CIA Triad or security design principles).

---

🛡️ Security Mechanisms

Security mechanisms are practical implementations used to protect data, systems, and networks. They help ensure confidentiality, integrity, and availability (CIA), and they support various security services like authentication, access control, and auditing.

---

🔑 1. Authentication

Confirms the identity of a user or system.

✅ Makes sure that someone (or something) is who they claim to be.
🛠 Examples:

• Passwords, PINs
• Biometrics (fingerprints, face scan)
• Two-Factor Authentication (2FA)
• Digital certificates

---

🧾 2. Authorization

Determines what actions or resources a user is allowed to access after authentication.

🛠 Examples:

• Access Control Lists (ACLs)
• Role-Based Access Control (RBAC)
• Permissions set on files or databases

---

🔒 3. Encryption

Transforms data into a format that can only be understood with a decryption key.

✅ Protects confidentiality of data at rest or in transit.
🛠 Examples:

• AES, RSA, TLS/SSL
• Disk encryption, VPN tunnels

---

🧮 4. Hashing

Converts data into a fixed-length string (a "digest").

✅ Ensures integrity—detects if data has been altered.
🛠 Examples:

• SHA-256, MD5 (not recommended now)
• File verification tools (checksums)

---

🚪 5. Access Control

Controls who can access what, and what actions they can perform.

🛠 Types:

• Mandatory Access Control (MAC) – strict policies (e.g., military)
• Discretionary Access Control (DAC) – resource owners decide
• Role-Based Access Control (RBAC) – based on user’s role

---

📜 6. Auditing & Logging

Tracks activities on a system or network for accountability and forensic analysis.

🛠 Examples:

• System logs, login records
• Security Information and Event Management (SIEM) tools

---

🧱 7. Firewalls

Filters incoming and outgoing traffic based on security rules.

✅ Helps protect networks from unauthorized access.
🛠 Types:

• Network firewalls (hardware/software)
• Host-based firewalls (on individual devices)

---

🧬 8. Intrusion Detection and Prevention Systems (IDPS)

Detects (and possibly blocks) suspicious activities or attacks.

🛠 Examples:

• Signature-based detection (known attack patterns)
• Anomaly-based detection (detects unusual behavior)

---

🕸️ 9. Sandboxing & Isolation

Runs applications or processes in a restricted environment to prevent damage.

✅ Useful for testing untrusted code or emails.
🛠 Examples:

• Browser sandbox
• Virtual machines

---

📶 10. Physical Security Mechanisms

Protects the physical infrastructure (servers, cables, devices).

🛠 Examples:

• Locked server rooms
• Surveillance cameras
• Biometric access to data centers

---

Summary Table:

Mechanism	Purpose	Example Tools/Methods
Authentication	Verify identity	Passwords, biometrics, 2FA
Authorization	Control access rights	ACLs, RBAC
Encryption	Ensure confidentiality	AES, TLS, VPN
Hashing	Ensure integrity	SHA-256, file checksums
Access Control	Manage permissions	MAC, DAC, RBAC
Auditing & Logging	Track activity for analysis	SIEM, system logs
Firewalls	Filter network traffic	pfSense, Windows Firewall
IDPS	Detect/prevent attacks	Snort, Suricata
Sandboxing	Isolate risky processes	VM, Docker, browser sandbox
Physical Security	Protect hardware	Locks, CCTV, biometric scanners

---