We are independent & ad-supported. We may earn a commission for purchases made through our links.
Advertiser Disclosure
Our website is an independent, advertising-supported platform. We provide our content free of charge to our readers, and to keep it that way, we rely on revenue generated through advertisements and affiliate partnerships. This means that when you click on certain links on our site and make a purchase, we may earn a commission. Learn more.
How We Make Money
We sustain our operations through affiliate commissions and advertising. If you click on an affiliate link and make a purchase, we may receive a commission from the merchant at no additional cost to you. We also display advertisements on our website, which help generate revenue to support our work and keep our content free for readers. Our editorial team operates independently of our advertising and affiliate partnerships to ensure that our content remains unbiased and focused on providing you with the best information and recommendations based on thorough research and honest evaluations. To remain transparent, we’ve provided a list of our current affiliate partners here.
Security

Our Promise to you

Founded in 2002, our company has been a trusted resource for readers seeking informative and engaging content. Our dedication to quality remains unwavering—and will never change. We follow a strict editorial policy, ensuring that our content is authored by highly qualified professionals and edited by subject matter experts. This guarantees that everything we publish is objective, accurate, and trustworthy.

Over the years, we've refined our approach to cover a wide range of topics, providing readers with reliable and practical advice to enhance their knowledge and skills. That's why millions of readers turn to us each year. Join us in celebrating the joy of learning, guided by standards you can trust.

What Is Defense in Depth?

By G. Wiesen
Updated: May 16, 2024
Views: 6,771
Share

Defense in depth is a concept in information technology (IT) security that involves the use of multiple layers of security to keep information safe. This does not refer to the use of particular software programs, but is a “best practices” methodology that can be used as a guideline for securing a system. There are three basic components to using this approach — people, technology, and operations — and securing all three components creates a strong overlap in security. Defense in depth is based on a military concept in which staggered layers of defense can be used to slow down advancing opposition.

The basic idea behind a defense in depth approach to IT security is that multiple layers of protection should be used to secure data. This means that while a virus scanner may be one effective way to keep out malicious software, it should also be paired with a firewall program, sensitive data should be encrypted and password protected, and users should be instructed in best practices. The “defense in depth” practices were established by the US National Security Agency (NSA) to protect computer systems from possible attacks.

There are three primary components in creating a defense in depth system, which are the people who have access to the system, the technology used, and the operations or management of that system. People include not only the employees of a company, who may be authorized to access sensitive data, but also those who may want to attack a company and access information illegally. Employees should be taught best practices, and a noticeable security presence should be seen to reinforce the importance of people as a component of IT security.

The actual technology used in a system is also vital to creating a defense in depth approach to security. This means that software should be reliable and verified by trusted third-parties that have tested the software. Layers of technological security should be established, including encryption, firewalls, systems for monitoring access to data, and password protection of computer terminals. The operations involved in this type of project is also vital, as effective management of people and technology is the only way to ensure these systems are in place and properly utilized.

Defense in depth is designed to not only better protect information, but to slow down and detect attacks on a company or agency. This approach acknowledges that an attack is a matter of “when” and not “if,” and so the system is designed to create a layered defense to slow down an attack. Since an attack then takes longer to complete, other systems can be utilized to detect it. This allows a company or agency to not only secure data, but also identify and act against attackers who try to access that data illegally.

Share
EasyTechJunkie is dedicated to providing accurate and trustworthy information. We carefully select reputable sources and employ a rigorous fact-checking process to maintain the highest standards. To learn more about our commitment to accuracy, read our editorial process.
Discussion Comments
Share
https://www.easytechjunkie.com/what-is-defense-in-depth.htm
Copy this link
EasyTechJunkie, in your inbox

Our latest articles, guides, and more, delivered daily.

EasyTechJunkie, in your inbox

Our latest articles, guides, and more, delivered daily.