* [Blog](https://www.paloaltonetworks.com.au/blog)
* [Palo Alto Networks](https://www.paloaltonetworks.com.au/blog/corporate/)
* [Cybersecurity Canon](https://www.paloaltonetworks.com.au/blog/category/canon/)
* Cyber Canon Book Review: ...

# Cyber Canon Book Review: Engineering Trustworthy Systems: Get Cybersecurity Design Right the First Time

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww.paloaltonetworks.com.au%2Fblog%2F2019%2F09%2Fcyber-canon-engineering-trustworthy-systems%2F)  
[](https://twitter.com/share?text=Cyber+Canon+Book+Review%3A+Engineering+Trustworthy+Systems%3A+Get+Cybersecurity+Design+Right+the+First+Time&url=https%3A%2F%2Fwww.paloaltonetworks.com.au%2Fblog%2F2019%2F09%2Fcyber-canon-engineering-trustworthy-systems%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Fwww.paloaltonetworks.com.au%2Fblog%2F2019%2F09%2Fcyber-canon-engineering-trustworthy-systems%2F&title=Cyber+Canon+Book+Review%3A+Engineering+Trustworthy+Systems%3A+Get+Cybersecurity+Design+Right+the+First+Time&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://www.paloaltonetworks.com.au/blog/2019/09/cyber-canon-engineering-trustworthy-systems/&ts=markdown)  
\[\](mailto:?subject=Cyber Canon Book Review: Engineering Trustworthy Systems: Get Cybersecurity Design Right the First Time)  
Link copied  
By [Ben Rothke](https://www.paloaltonetworks.com/blog/author/ben-rothke/?ts=markdown "Posts by Ben Rothke")  
Sep 16, 2019  
5 minutes  
[Cybersecurity Canon](https://www.paloaltonetworks.com/blog/category/canon/?ts=markdown)  
[Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown)  
[Cybersecurity Canon Review](https://www.paloaltonetworks.com/blog/tag/cybersecurity-canon-review/?ts=markdown)

This post is also available in: [日本語 (Japanese)](https://www.paloaltonetworks.com.au/blog/2019/10/%e3%82%b5%e3%82%a4%e3%83%90%e3%83%bc%e3%82%ab%e3%83%8e%e3%83%b3%e3%83%96%e3%83%83%e3%82%af%e3%83%ac%e3%83%93%e3%83%a5%e3%83%bc%e3%82%a8%e3%83%b3%e3%82%b8%e3%83%8b%e3%82%a2%e3%83%aa%e3%83%b3%e3%82%b0/?lang=ja "Switch to Japanese(日本語)")

**Cyber Canon Book Review: "Engineering Trustworthy Systems: Get Cybersecurity Design Right the First Time," 2018, by O. Sami Saydjari**

**Book Reviewed by: Ben Rothke**

**Bottom Line: *I recommend this book for the Cybersecurity Canon Hall of Fame.***

**Review:**

Imagine a 100-story building designed with a few clicks and plug-ins, with no oversight, no safety review, being built in an unregulated industrial zone. Imagine both the designers and builders, who likewise really didn't have any significant expertise in their respective fields. Most people would never step into the building due to safety concerns. Companies would never entertain the ludicrous notion of moving their employees into such a building.

Yet when it comes to IT systems, many of which are mission critical and operating in a crucial infrastructure, they are similarly built without any information security or privacy review. The ease of use of which insecure systems, networks and applications can be built, often under the radar of IT, is a cause for concern.

In "[Engineering Trustworthy Systems: Get Cybersecurity Design Right the First Time](https://www.amazon.com/Engineering-Trustworthy-Systems-Cybersecurity-Design/dp/1260118177/ref=sr_1_1?crid=3O77T71UIGQ4R&keywords=engineering+trustworthy+systems&qid=1568337583&sprefix=engineering+trust%2Caps%2C187&sr=8-1)," author O. Sami Saydjari has written a fantastic guide on how to design highly secure systems that can ensure the effective security and privacy of personal information.

New Yorkers know the radio station 1010 WINS tagline: "You give us 22 minutes, we'll give you the world." It's no exaggeration to claim that one could create a significantly sized, cloud-based IT infrastructure in AWS in 22 minutes. It's also no exaggeration to claim that such an infrastructure would be seriously lacking in security and privacy controls. That is where "Engineering Trustworthy Systems" comes into play as a fantastic guide on how to design highly secure systems.

The first guide to really detail how to do that was Ross Anderson's classic reference, "[Security Engineering: A Guide to Building Dependable Distributed Systems](https://www.amazon.com/gp/product/0470068523/ref=as_li_tl?ie=UTF8&tag=benrothkswebp-20&camp=1789&creative=9325&linkCode=as2&creativeASIN=0470068523&linkId=5f551b7da296bed311d7dcefcdc32cd2)." Written in 2001 and updated in 2008, the world of information security has since changed and transformed radically. "Engineering Trustworthy Systems\*"\* fills in a lot of those gaps. Somewhat surprisingly, Saydjari doesn't reference Anderson's book.

*"* Engineering Trustworthy Systems\*"\* is quite valuable for a wide range of readers: from those looking to get a detailed understanding of information security to those looking to use it as a college text for a multi-semester course.

An interesting observation Saydjari makes at the beginning is that those designing secure systems must approach cybersecurity design as an immune system, not as a single white blood cell. Too many security administrators think a border firewall and a DMZ are enough to secure their infrastructure. Anyone using such an approach will be sorely disappointed. Breaches are likely in a matter of hours.

Saydjari packs a huge amount of material into this nearly 500-page work. The 25 chapters are written in a procedural manner. They walk the reader through the core areas of information security and cover all of the fundamentals. He also makes able use of charts and diagrams to provide a detailed understanding of the topic at hand.

The message the book conveys is that information security requires a rigorous and disciplined approach via formal engineering methods. Getting that large IT infrastructure up and running in AWS is the easy part. Ensuring it is engineered securely, and stays secure, is an entirely different matter. The book takes this orderly, holistic approach to the topic, and guides the reader through the various layers of information security that need to be built into systems.

What one gets from reading this book is the breadth of details that encompass a secure system. For too many people, it's about firewalls, Active Directory GPO or AWS security policies. Since attackers take a very broad approach, those creating a defensible network must take a similarly broad approach. Saydjari details the importance of not just security in depth but also security in breadth.

The book emphasizes that the trustworthiness of a system is so essential that it must be designed into systems from the very beginning. Lack of such an approach is what has led to many systematic security failures and huge data breaches.

Another theme of the book is risk quantification. An effective CISO must possess data and communication skills to explain risks to the board. The best guide to do that is "[Measuring and Managing Information Risk: A FAIR Approach](https://www.rsaconference.com/blogs/measuring-and-managing-information-risk-a-fair-approach)" by Dr. Jack Freund and Jack Jones. While Saydjari doesn't quote from the book, he does provide methods on how one can communicate those ideas to senior management, a surefire technique for a corporate board to gain confidence in the information security team.

For those looking to understand both the importance of designing information security into systems, and a detailed method by which to do that, "Engineering Trustworthy Systems\*"\* will be a most welcome and invaluable reference.

*We modeled the* [*Cybersecurity Canon*](https://cybercanon.paloaltonetworks.com/)*after the Baseball Hall of Fame and the Rock \& Roll Hall of Fame, except for cybersecurity books. We have more than 25 books on the initial candidate list, but we are soliciting help from the cybersecurity community to increase the number. Please write a review and nominate your favorite.*

*The Cybersecurity Canon is a real thing for our community. We have designed it so that you can* [*directly participate in the process*](https://cybercanon.paloaltonetworks.com/nominate-a-book/)*. Please do so!*

*** ** * ** ***

## Related Blogs

### [Cybersecurity Canon](https://www.paloaltonetworks.com/blog/category/canon/?ts=markdown), [Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown)

[#### Book Review: "Black Box Thinking"](https://www.paloaltonetworks.com.au/blog/2020/04/cyber-canon-black-box-thinking/)

### [Cybersecurity Canon](https://www.paloaltonetworks.com/blog/category/canon/?ts=markdown), [Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown)

[#### Book Review: "The Cyber Conundrum"](https://www.paloaltonetworks.com.au/blog/2020/04/cyber-canon-cyber-conundrum/)

### [Cybersecurity Canon](https://www.paloaltonetworks.com/blog/category/canon/?ts=markdown), [Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown)

[#### Book Review: "Design for How People Think"](https://www.paloaltonetworks.com.au/blog/2020/04/cyber-canon-design-for-how-people-think/)

### [Cybersecurity Canon](https://www.paloaltonetworks.com/blog/category/canon/?ts=markdown), [Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown)

[#### Book Review: "InSecurity"](https://www.paloaltonetworks.com.au/blog/2020/03/cyber-canon-insecurity/)

### [Cybersecurity Canon](https://www.paloaltonetworks.com/blog/category/canon/?ts=markdown), [Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown)

[#### Book Review: How America Lost Its Secrets](https://www.paloaltonetworks.com.au/blog/2020/03/book-review-how-america-lost-its-secrets/)

### [Cybersecurity Canon](https://www.paloaltonetworks.com/blog/category/canon/?ts=markdown), [Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown)

[#### Book Review: "The Perfect Weapon"](https://www.paloaltonetworks.com.au/blog/2020/03/cyber-canon-the-perfect-weapon/)

### Subscribe to the Blog!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://www.paloaltonetworks.com.au/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language