A new Security-Model
According to observations by Dave Piscitello and Bruce Schneier, that the traditional 4-fold model (authentication, authorization, availability, authenticity) is becoming inadequate, and as proposed by Dave Piscitello here is the new one:
Admissibility (what may connect)
Authentication (who are you)
Authorization (what are you allowed to do)
Availability (is the data accessible)
Authenticity (is the data intact)
I consider the adding of admissibility an extremly important change, given the large numbers of people who increasingly are not anymore in control of their own machines due to viruses, worms and digital restriction management (DRM). This is why I repeat this here.