CyBOK Version 1.0

CyBOK Version 1.0

We would like to understand how the CyBOK is being used and its uptake. We request that organisations using, or intending to use, CyBOK for the purpose of education, training, course development, professional development get in touch to let us know.

Contact us at

Relationships between KAs

The different KAs in CyBOK are not orthogonal and relate to each other in many ways. The key relationships are captured in the table and diagram here. These are not exhaustive but indicate main connection points between the KAs

Dependencies on external knowledge

CyBOK KAs are written to be largely self- contained. However, there is basic knowledge and understanding of concepts that is required in several cases to fully engage with and understand the content of the KA. These external dependencies are noted in the table here. Where possible, we refer to relevant knowledge in the IEEE Software Engineering Body of Knowledge Version 3.0 (SWEBOK) and the ACM Computer Science Curriculum 2013.

Knowledge Areas

Authentication, Authorisation & Accountability KA

Authentication, Authorisation & Accountability Issue 1.0

Web & Mobile Security KA

Web & Mobile Security KA - Issue 1.0

Hardware Security KA

Hardware Security - Issue 1.0

Forensics KA

Forensics KA - Issue 1.0

Distributed Systems Security KA

Distributed Systems Security KA - Issue 1.0

Risk Management & Governance KA

Risk Management & Governance KA

Cyber Physical Systems KA

Cyber Physical Systems KA - Issue 1.0

Law & Regulation KA

Law & Regulation KA - Issue 1.0

Physical Layer and Telecommunications Security

Physical Layer and Telecommunications Security KA

Human Factors KA

Knowledge Area Issue 1.0

Secure Software Lifecycle

Knowledge Area Issue 1.0

Privacy & Online Rights

Knowledge Area Issue 1.0

Operating Systems & Virtualisation Security

Knowledge Area Issue 1.0

Adversarial Behaviours KA

Knowledge Area Issue 1.0


Malware Knowledge Area Issue 1.0

Network Security

Knowledge Area Issue 1.0

Security Operations & Incident Management

Knowledge Area Issue 1.0


Knowledge Area Issue 1.0

Software Security

Knowledge Area Issue 1.0