Seonglae ChoSecurity is a process, not a product (No perfect security)
Statement of what is and what is not allowed
You can design a policy depending on your need
Security of the design and implementation of software and hardware
Security Policy Notion
www.cs.cmu.edu
https://www.cs.cmu.edu/~rdriley/487/papers/Thompson_1984_ReflectionsonTrustingTrust.pdf
css.csail.mit.edu
https://css.csail.mit.edu/6.858/2015/lec/lampson.pdf