SecureByDesign-Playbook

The Space in Cyberspace

[To be … well, started really]

What is your space?

Areas of Responsibility; Areas of Interest; Areas of …

Include areas that you don’t control but your assets still exist in or move through.

Levels of Detail

Individual devices vs physical locations (eg ‘office’, ‘home’)

Stores and Connections

Map out the space - the computer networks - where your assets are located and moved through. Include:

• Storage and processing points: phones, laptops, computers, USB sticks, SD cards. What assets are held on these?
• Links between them: how are your assets moved between devices? This should include how users get to access the assets on those devices; how is the information moved from device to user?
• can be a very high level diagram to start with; don’t worry about all the various detailed

technical links.

Include physical as well as virtual computer network locations

Example

(business with teams and large hands network)

(home with individual devices)

Existing Controls

What defences are already in place on each route to prevent unauthorised access?

Automatic Tools

Tools to explore, monitor and alert

This site is open source. Improve this page.