CISSP Made Easy

Understanding the Bell-LaPadula Model for Secure Computing Systems

June 15, 2024

Hello friends, welcome back! In this blog post, we will delve into the March 1976 research paper by Elliott Bell and Leonard LaPadula, commonly referred to as the Bell-LaPadula model. This landmark research paper, titled “Secure Computer System Unified Exposition and Multics Interpretation,” is foundational in the field of computer security. It provides a unified … More Understanding the Bell-LaPadula Model for Secure Computing Systems

Understanding Cryptography: A Comprehensive Overview

June 13, 2024

Cryptography might seem uninteresting or daunting if not properly introduced. For those not involved in networking, network security, or security engineering, this topic can be quite challenging. However, understanding cryptography is crucial in today’s digital world. Drawing from my own experience as an electronics and communication engineering graduate, I know that even with a technical … More Understanding Cryptography: A Comprehensive Overview

Understanding the Fundamentals of Information Security: A Comprehensive Recap

June 13, 2024

Hello friends. In this blog post, we will be doing a quick recap, a sort of revision, of what we have discussed so far about the security framework, information security policy, and the CIA triad—confidentiality, integrity, and availability. This recap is based on Visio drawings I developed while preparing for CISSP some time back. These … More Understanding the Fundamentals of Information Security: A Comprehensive Recap

Understanding CIA and Its Universe: A Deep Dive into Information Security

June 13, 2024

Welcome back! In this blog post, we’ll continue our discussion on the fundamental principles of information security, focusing on the CIA triad—Confidentiality, Integrity, and Availability—and its inverse, DAD (Disclosure, Alteration, and Destruction). We’ll also delve into related concepts like non-repudiation, privacy, and examples that illustrate these terms. The CIA Triad Confidentiality Confidentiality ensures that information … More Understanding CIA and Its Universe: A Deep Dive into Information Security

Understanding Security Governance through Principles and Policies

June 13, 2024

Welcome, friends! We continue our journey through Chapter One of the Sybex Ninth Edition book, which covers security governance through principles and policies. In our previous three videos, we discussed security principles and how we derive security policies. We also explored how security is developed using a security framework and the different steps in conceiving … More Understanding Security Governance through Principles and Policies

The Relevance of Mathematics to the Real World: A Deep Dive into Theory and Practice

June 13, 2024

Hello friends, This is an interesting question that I’ve been asked many times: “How does math relate to the real world?” Recently, while explaining algebra to my kids, this question came up again. It’s fascinating because we constantly use math in the real world, whether in arithmetic or algebra, and there are many engineering marvels … More The Relevance of Mathematics to the Real World: A Deep Dive into Theory and Practice

OTP tools and the risk of DLL Sideloading

June 7, 2024

Recently i was doing some research around OTP softwares much like Google Authenticator or MS Authenticator and came across the topic of DLL Sideloading. Though this topic is quite old, i thought it is good to share me learning outcome. Okay, in simple terms, imagine you have a secret code that can open a magical … More OTP tools and the risk of DLL Sideloading

AI ChatGPT and AI900

June 2, 2024

My journey in exploring AI started with Dhruv Rathee’s course “Master ChatGPT: Transform Your Life With AI Chatbots”, and then with in28minutes‘s Ranga Karanam for his excellent training material to master AI-900. Following handwritten note is a small portion of the learning footprint. Sharing if it can help anyone. Please note that the pdf do … More AI ChatGPT and AI900

How i passed CISSP – A Minimalistic Approach to Success

June 1, 2024

Hey friends! Today, I’m excited to dive into a topic that’s close to my heart: mastering the CISSP exam. Passing this exam was a significant milestone for me, and I want to share the strategy that worked wonders for me. Now, let’s make one thing clear from the start: there’s no one-size-fits-all approach to acing … More How i passed CISSP – A Minimalistic Approach to Success

"I believe that the best way to truly understand something is to explain it clearly enough that someone else can understand it too. Writing has always been, for me, both a learning tool and a giving back." — Rashid Siddiqui