1.3 DEFINITION RELATED TO INFORMATION SECURITY

The information security has three aims i.e., integrity, confidentiality and availability. They have different meaning with respect to data, information and system. They also address different areas of information security systems.

Integrity: Those systems which always provides the correct information about the system.

Confidentiality: Those unauthenticated person or software system can’t be able to go through the systems and cannot read/view any confidential information.

Availability: The system which provides the access on the information stored to its users when they want so.

Generally the terms integrity, confidentiality and availability are loosely construed to be synonymous with security. These however have different connotations with respect to data or information. To understand better the measures and to ensure the protection in those areas, let us define these terms:

Security: “Data or information security is the protection of data against accidental or intentional, destruction, disclosure or modification”. Computer data security refers to the technological safeguards and managerial procedure which can be applied to computer hardware, software and data to ensure that organizational assets and individual privacy are protected.

Privacy: Is a concept applied to an individual. It is the right of an individual to decide what information he/she wishes to share with others or is willing to accept from others.

Comments

Post a Comment

Popular posts from this blog

3.8 SECURE NETWORK DEVICES

 In this unit, we have already learnt that the firewall is only one entry point to your network. Modems, if you allow them to answer incoming calls, can provide an easy means for an attacker to sneak around, your front door (or, firewall). Just as castlesweren't built with moats only in the front, your network needs to be protected at all of its entry points. Secure Modems, DialBack Systems If modem access is to be provided, this should be guarded carefully. The terminal server, or network device that provides dialup access to your network needs to be actively administered, and its logs need to be examined for strange behavior. Its passwords need to be strong not ones that can be guessed. Accounts that aren't actively used should be disabled. In short, it's the easiest way to get into your network from remote: guard it carefully. There are some remote access systems which have the feature of a twopart procedure to establish a connection. The first part is the remote user di...
Read more

3.5 SECURITY ISSUES FOR SMALL AND MEDIUM SIZED BUSINESSES

 Small and medium sized businesses use the Internet and networked applications to reach new customers and serve their existing ones more effectively. At the same time, new security threats and legislation puts increased pressure on business networks to be reliable and secure. Business Challenges According to recent studies, security is the biggest challenge facing small and mediumsized businesses. Everchanging security threats from both inside and outside the business network can wreak havoc on business operations, affecting profitability and customer satisfaction. Small and mediumsized businesses must also comply with new regulations and laws created to protect consumer privacy and secure electronic information. Security issues for small and medium – sized businesses are classified into 5 basic categories: Worms and Viruses As per research, Computer worms and viruses remain the most common security threat, with 75 percent of small and medium businesses affected by it.. Worms and v...
Read more

3.6 TOOLS FOR NETWORK SECURITY

There are many strong tools available for securing a computer network. Tools to protect your enterprise network have been evolving for the last two decades, roughly the same amount of time that people have been trying to break into computer networks. These tools can protect a computer network at many levels, and a wellguarded enterprise deploys many different types of security technologies. The most obvious element of security is often times the most easily overlooked: physical security—namely, controlling access to the most sensitive components in your computer network, such as a network administration station or the server room. No amount of planning or expensive equipment will keep your network secure if unauthorized personnel can have access to central administration consoles. Even if a user does not have evil intent, an untrained user may unknowingly provide unauthorized outside access or override certain protective configurations. Let us briefly discuss few of these network secur...
Read more