An investigation into the application of defence in depth theory to electronic information protection
Faculty of Computing, Health and Science
School of Engineering and Mathematics
This paper discusses an investigation into the application of traditional Defence in Depth theory to digital electronic information protection. Defence in Depth is firstly discussed in a physical security context, where deterrence, detection, delay and response are shown to be achieved by psychological, electronic, physical and procedural barriers. The Electronic Information Attack Model is then proposed, which comprises a hierarchical structure defining different aspects of electronic information and ways of attacking its confidentiality, integrity and availability. The final component then proposes that the four Defence in Depth functions can provide electronic information protection by layering barriers at various levels in the Electronic Information Attack Model.