In Baltimore, Maryland, US, on February 22 local time, csec2017 was officially released at ACM sigcse 2018 International Conference. So far, the most widely representative and authoritative knowledge system of Cyberspace Security discipline in the world, after more than two years, has finally made a brilliant debut under the call. What does this knowledge system look like? Let's unveil it together.

1、 Knowledge framework of Cyberspace Security

The knowledge system of Cyberspace Security presented by csec2017 includes 8 knowledge fields, including data security, software security, component security, connection security, system security, personnel security, organization security and social security. First of all, let me draw a sketch, as shown below. I think this sketch can better show the knowledge structure of Cyberspace Security discipline composed of eight knowledge fields.

I think that the eight knowledge areas defined by csec2017 can be roughly (not strictly) examined from four levels, from low to high. The first level includes data security, software security and component security, the second level includes connection security, the third level includes system security, and the fourth level includes personnel security, organization security and social security. The lower the base, the higher the level, the closer to the real world. In particular, social security is the most realistic knowledge field, which is the most basic knowledge field of data security.

It is worth mentioning that, intuitively, of the eight knowledge fields of Cyberspace Security, three are those with strong humanities and Social Sciences color, accounting for 37.5% of the total number of knowledge fields, and the other five are those with strong taste of science and engineering, accounting for 62.5%. It can be seen that the multi-faceted characteristics of Cyberspace Security discipline are very distinct. In addition, the above figure reflects that the system security knowledge field also has the role of bridge connecting science and engineering and Humanities and social sciences.

In csec2017's concept of Cyberspace Security, secure computer system is the core. It emphasizes the establishment of system security from the perspective of production, use, analysis and testing, requires the establishment of system use guarantee by means of technology, personnel, information and process, and advocates the establishment of laws, policies, ethics, human factors and risk management for the presence of adversaries Study the problem.

Therefore, combined with the above diagram, system safety is in a key position. The system is used by people, people work in the organization, and the organization constitutes the society. Therefore, the safety of personnel, organization and society should be considered above the safety of the system. The system is composed of components. Software is the soul of components. Therefore, software security, component security and connection security are the important supports of system security. Cryptography and cryptanalysis are the basic theories of Cyberspace Security, and they are regarded as the core knowledge unit in the field of data security knowledge, which determines the basic position of data security in the whole knowledge framework of Cyberspace Security.

2、 A brief interpretation of the field of subject knowledge

With the overall background of the subject knowledge architecture of Cyberspace Security analyzed above, the following is a brief introduction to the eight knowledge fields of data security, software security, component security, connection security, system security, personnel security, organization security and social security.

The field of data security knowledge focuses on the protection of data, including the protection of data in storage and transmission, involving the basic theory on which data protection relies. The key knowledge includes the basic idea of cryptography, end-to-end secure communication, digital forensics, data integrity and authentication, and information storage security.

The domain of software security knowledge focuses on ensuring the security of information and systems protected by software from the perspective of software development and use. Key knowledge includes basic design principles, security requirements and their roles in design, implementation issues, static and dynamic analysis, configuration and patching, ethics (especially in development, testing and vulnerability disclosure).

The domain of component security knowledge focuses on the security problems of the components integrated into the system in the aspects of design, manufacturing, procurement, testing, analysis and maintenance. The key knowledge includes the vulnerabilities of system components, component life cycle, security component design principles, supply chain management, security testing, reverse engineering.

The domain of connection security knowledge focuses on the security problems when connecting components, including the security problems of physical and logical connection of components. The key knowledge includes system and architecture, model and standard, physical component interface, software component interface, connection attack and transmission attack.

The domain of system security knowledge focuses on the security problems of the system composed of components through connection. It emphasizes that the problems should not only be viewed from the perspective of component collection, but also from the perspective of the system as a whole. The key knowledge includes the overall methodology, security policy, identity authentication, access control, system monitoring, system recovery, system testing, and document support.

The field of personal security knowledge focuses on user's personal data protection, personal privacy protection and security threat resolution, as well as the impact of user's behavior, knowledge and privacy on Cyberspace Security. The key knowledge includes identity management, social engineering, awareness and common sense, privacy and security of social behavior, and privacy and security related to personal data.

The domain of organizational security knowledge focuses on the protection of various organizations in front of cyberspace security threats, and on the risk management needed to successfully complete the organization's mission. The key knowledge includes risk management, security governance and strategy, law and ethics and compliance, security strategy and planning.

The field of social security knowledge focuses on the wide impact of Cyberspace Security Issues on society as a whole. The key knowledge includes network crime, network law, network ethics, network policy, privacy.

3、 Representation and authority of knowledge system

Csec2017 is a set of knowledge system of Cyberspace Security subject for undergraduate education, which is developed by a representative international joint working group after more than two years of efforts. The members of the joint working group include the American Computer Society (ACM), the association of electronic and electrical engineers Computer Society (IEEE-CS), the information System Association security professional working group (AIS) Sigsec), information security education technology committee of international information processing Federation (IFIP WG 11.8). More than 300 people from 35 countries in the world have contributed to the development of csec2017. The geographical distribution of the contributors is shown below.

In August 2015, ACM formed a motion to establish a csec2017 joint working group, which was formally established in September 2015. The csec2017 project was funded by the National Science Foundation of the United States, Intel Corporation (Intel) and corresponding member organizations.

The draft versions v.0.5, v.0.75 and v.0.95 of csec2017 were released in January, June and November 2017, respectively. The formal version of v.1.0 of csec2017 was originally planned to be released in December 2017, and later planned to be delayed to January 2018. In fact, it was finally released in February. The difficulty of the task can be seen.

The origin of csec2017 can be traced back to cs1968, the knowledge system of computer science discipline issued by ACM in 1968. Later, the system has evolved into the knowledge system of five disciplines of computer science, computer engineering, information system, information technology and software engineering, such as cs2013, ce2016, is2010, it2008 and se2014. Csec2017 is a new member on these bases.

It can be seen that csec2017 has a long history and wide representativeness. It is a highly authoritative knowledge system of Cyberspace Security discipline in the world.