SlideShare uma empresa Scribd logo

Basic concepts in computer security

Transferir como PPTX, PDF
Arzath Areeff
Arzath Areeff

Basic concepts in computer security

Tecnologia
1 de 35
BASIC CONCEPTS IN COMPUTER SECURITY ARZATH AREEFF
WHAT IS COMPUTER SECURITY? •Computer security is refers to techniques for ensuring that data stored in a computer cannot be read or compromised by any individuals without authorization. •Most computer security measures involve data encryption and passwords. •The purpose of computer security is to device ways to prevent the weaknesses from being
WHAT IS COMPUTER SECURITY? •We are addressing three important aspects of any computer-related system such as confidentiality, integrity, and availability.
WHAT IS COMPUTER SECURITY? •These are the three goals in computing Security. 1.Confidentiality 2.Integrity 3.Availability
THREE GOALS IN COMPUTING SECURITY •Confidentiality: ensures that computer-related assets are accessed only by authorized parties. Confidentiality is sometimes called secrecy or privacy. •Integrity: it means that assets can be modified only by authorized parties or only in authorized ways. •Availability: it means that assets are accessible
THREE GOALS IN COMPUTING SECURITY •One of the challenges in building a secure system is finding the right balance among the goals, which often conflict.
VULNERABILITY •Vulnerability is a weakness in the security system. •Weaknesses can appear in any element of a computer, both in the hardware, operating system, and the software. The types of vulnerabilities we might find as they apply to the assets of hardware, software, and data. •These three assets and the connections among
HARDWARE VULNERABILITY •Hardware is more visible than software, largely because it is composed of physical objects. •it is rather simple to attack by adding devices, changing them, removing them, intercepting the traffic to them, or flooding them with traffic until they can no longer function.
HARDWARE VULNERABILITY •other ways that computer hardware can be attacked physically. •Computers have been drenched with water, burned, frozen, gassed, and electrocuted with power surges.
SOFTWARE VULNERABILITIES •Software can be replaced, changed, or destroyed maliciously, or it can be modified, deleted, or misplaced accidentally. Whether intentional or not, these attacks exploit the software’s vulnerabilities.
SOFTWARE VULNERABILITIES •Sometimes, the attacks are obvious, as when the software no longer runs. More subtle are attacks in which the software has been altered but seems to run normally.
DATA VULNERABILITY •a data attack is a more widespread and serious problem than either a hardware or software attack. •data items have greater public value than hardware and software because more people know how to use or interpret data.
THREATS •A threat to a computing system is a set of circumstances that has the potential to cause loss or harm. •There are many threats to a computer system, including human-initiated and computer- initiated ones. •A threat is blocked by control of a vulnerability. •We can view any threat as being one of four
THREATS •An interception means that some unauthorized party has gained access to an asset. The outside party can be a person, a program, or a computing system.
THREATS •In an interruption is an asset of the system becomes lost, unavailable, or unusable.
THREATS •If an unauthorized party not only accesses but tampers with an asset, is called as a modification.
THREATS •An unauthorized party might create a fabrication of counterfeit objects on a computing system. •The intruder may insert spurious transactions to a network communication system or add records to an existing database.
ATTACKS •A human who exploits a vulnerability perpetrates an attack on the system. An attack can also be launched by another system, as when one •system sends an overwhelming set of messages to another, virtually shutting down the second system's ability to function.
ATTACKS •Unfortunately, we have seen this type of attack frequently, as denial-of-service attacks flood servers with more messages than they can handle.
CONTROL •The control is an action, device, procedure or technique that removes or reduces a vulnerability. •We use a control as a protective measure. •There are so many ways to controle.
HOW TO SECURE THE COMPUTER •There are two ways 1.Physical secure 2.Other secure methods
PHYSICALLY SECURE COMPUTERS •Obtain physical computer locks for all your computers
PHYSICALLY SECURE COMPUTERS •Attach mobile proximity alarms to your computers.
PHYSICALLY SECURE COMPUTERS •Store computers in an area with secure access. •Or place the computers in a locked room
PHYSICALLY SECURE COMPUTERS IN YOUR COLLEGE •Station security guards at entry points to the college building.
PHYSICALLY SECURE COMPUTERS IN YOUR COLLEGE •Verify windows and doors are properly locked after office hours.
SECURE THE COMPUTER •Choose a good secured operating system
SECURE THE COMPUTER •Choose a web browser based on its security and vulnerabilities because most malware will come through via your web browser
SECURE THE COMPUTER •When setting up, use strong passwords in your user account, router account etc. Hackers may use dictionary attacks and brute force attacks.
SECURE THE COMPUTER •When downloading software (including antivirus software), get it from a trusted source
SECURE THE COMPUTER •Install good antivirus software because Antivirus software is designed to deal with modern malware including viruses, Trojans, key loggers, rootkits, and worms.
SECURE THE COMPUTER •Download and install a firewall
SECURE THE COMPUTER •Close all ports. Hackers use port scanning (Ubuntu Linux has all ports closed by default)
SOURCES AND CITATIONS • Security in Computing, Fourth EditionBy Charles P. Pfleeger • http://lifehacker.com/5848296/how-do-i-keep-my-computer-secure-at-the-office • http://it.ojp.gov/documents/asp/disciplines/section1-2.htm • http://www.pcpro.co.uk/blogs/2011/01/21/how-to-physically-secure-your-business- hardware/ • http://www.us-cert.gov/nav/nt01/ • http://blog.chromium.org/2008/10/new-approach-to-browser-security-google.html • http://www.avast.com • http://www.trendsecure.com • http://www.lavasoft.com • http://www.zonealarm.com • http://www.personalfirewall.comodo.com/ • http://www.remote-exploit.org/backtrack.html • http://www.grc.com/securitynow.htm • http://www.hackerhighschool.org/ • http://www.symantec.com/norton/products/library/article.jsp?aid=internet_iq
THANK YOU HAVE A SECURED WORLD 

Recomendados

Computer security overview
Computer security overviewComputer security overview
Computer security overviewCAS
 
Computer Security Threats
Computer Security ThreatsComputer Security Threats
Computer Security ThreatsQuick Heal Technologies Ltd.
 
Introduction to cyber security
Introduction to cyber securityIntroduction to cyber security
Introduction to cyber securitySelf-employed
 
Network Security Threats and Solutions
Network Security Threats and SolutionsNetwork Security Threats and Solutions
Network Security Threats and SolutionsColin058
 
Computer security
Computer securityComputer security
Computer securityfiza1975
 
Computer Security Presentation
Computer Security PresentationComputer Security Presentation
Computer Security PresentationPraphullaShrestha1
 
Network security
Network securityNetwork security
Network securityGichelle Amon
 
Computer Security risks Shelly
Computer Security risks ShellyComputer Security risks Shelly
Computer Security risks ShellyAdeel Khurram
 

Recomendados

Computer security overview
Computer security overviewComputer security overview
Computer security overviewCAS
 
Computer Security Threats
Computer Security ThreatsComputer Security Threats
Computer Security ThreatsQuick Heal Technologies Ltd.
 
Introduction to cyber security
Introduction to cyber securityIntroduction to cyber security
Introduction to cyber securitySelf-employed
 
Network Security Threats and Solutions
Network Security Threats and SolutionsNetwork Security Threats and Solutions
Network Security Threats and SolutionsColin058
 
Computer security
Computer securityComputer security
Computer securityfiza1975
 
Computer Security Presentation
Computer Security PresentationComputer Security Presentation
Computer Security PresentationPraphullaShrestha1
 
Network security
Network securityNetwork security
Network securityGichelle Amon
 
Computer Security risks Shelly
Computer Security risks ShellyComputer Security risks Shelly
Computer Security risks ShellyAdeel Khurram
 
Network security (vulnerabilities, threats, and attacks)
Network security (vulnerabilities, threats, and attacks)Network security (vulnerabilities, threats, and attacks)
Network security (vulnerabilities, threats, and attacks)Fabiha Shahzad
 
Network security ppt
Network security pptNetwork security ppt
Network security pptOECLIB Odisha Electronics Control Library
 
Network security
Network securityNetwork security
Network securityquest university nawabshah
 
Computer Security Chapter 1
Computer Security Chapter 1Computer Security Chapter 1
Computer Security Chapter 1Temesgen Berhanu
 
Introduction To Computer Security
Introduction To Computer SecurityIntroduction To Computer Security
Introduction To Computer SecurityVibrant Event
 
Malware ppt
Malware pptMalware ppt
Malware pptFaiz Khan
 
IT Security Presentation
IT Security PresentationIT Security Presentation
IT Security Presentationelihuwalker
 
Computer security
Computer securityComputer security
Computer securityEktaVaswani2
 
Information Security
Information SecurityInformation Security
Information SecurityDhilsath Fathima
 
Information Privacy
Information PrivacyInformation Privacy
Information Privacyimehreenx
 
Ppt
PptPpt
PptGeetu Khanna
 
Security management concepts and principles
Security management concepts and principlesSecurity management concepts and principles
Security management concepts and principlesDivya Tiwari
 
Computer security concepts
Computer security conceptsComputer security concepts
Computer security conceptsG Prachi
 
Information security and Attacks
Information security and AttacksInformation security and Attacks
Information security and AttacksSachin Darekar
 
Computer security
Computer securityComputer security
Computer securityAyesha Arshad
 
Cyber crime and security
Cyber crime and securityCyber crime and security
Cyber crime and securitySharath Raj
 
Network security
Network securityNetwork security
Network securityNkosinathi Lungu
 
Introduction to cyber security amos
Introduction to cyber security amosIntroduction to cyber security amos
Introduction to cyber security amosAmos Oyoo
 
Computer security risks
Computer security risksComputer security risks
Computer security risksAasim Mushtaq
 
Introduction to Information Security
Introduction to Information Security Introduction to Information Security
Introduction to Information Security Shreedevi Tharanidharan
 
OPERATING SYSTEM SECURITY
OPERATING SYSTEM SECURITYOPERATING SYSTEM SECURITY
OPERATING SYSTEM SECURITYRohitK71
 
Chapter Last.ppt
Chapter Last.pptChapter Last.ppt
Chapter Last.pptmiki304759
 

Mais conteúdo relacionado

Mais procurados

Network security (vulnerabilities, threats, and attacks)
Network security (vulnerabilities, threats, and attacks)Network security (vulnerabilities, threats, and attacks)
Network security (vulnerabilities, threats, and attacks)Fabiha Shahzad
 
Computer Security Chapter 1
Computer Security Chapter 1Computer Security Chapter 1
Computer Security Chapter 1Temesgen Berhanu
 
Introduction To Computer Security
Introduction To Computer SecurityIntroduction To Computer Security
Introduction To Computer SecurityVibrant Event
 
IT Security Presentation
IT Security PresentationIT Security Presentation
IT Security Presentationelihuwalker
 
Information Privacy
Information PrivacyInformation Privacy
Information Privacyimehreenx
 
Security management concepts and principles
Security management concepts and principlesSecurity management concepts and principles
Security management concepts and principlesDivya Tiwari
 
Computer security concepts
Computer security conceptsComputer security concepts
Computer security conceptsG Prachi
 
Information security and Attacks
Information security and AttacksInformation security and Attacks
Information security and AttacksSachin Darekar
 
Cyber crime and security
Cyber crime and securityCyber crime and security
Cyber crime and securitySharath Raj
 
Introduction to cyber security amos
Introduction to cyber security amosIntroduction to cyber security amos
Introduction to cyber security amosAmos Oyoo
 
Computer security risks
Computer security risksComputer security risks
Computer security risksAasim Mushtaq
 

Mais procurados (20)

Network security (vulnerabilities, threats, and attacks)
Network security (vulnerabilities, threats, and attacks)Network security (vulnerabilities, threats, and attacks)
Network security (vulnerabilities, threats, and attacks)
 
Network security ppt
Network security pptNetwork security ppt
Network security ppt
 
Network security
Network securityNetwork security
Network security
 
Computer Security Chapter 1
Computer Security Chapter 1Computer Security Chapter 1
Computer Security Chapter 1
 
Introduction To Computer Security
Introduction To Computer SecurityIntroduction To Computer Security
Introduction To Computer Security
 
Malware ppt
Malware pptMalware ppt
Malware ppt
 
IT Security Presentation
IT Security PresentationIT Security Presentation
IT Security Presentation
 
Computer security
Computer securityComputer security
Computer security
 
Information Security
Information SecurityInformation Security
Information Security
 
Information Privacy
Information PrivacyInformation Privacy
Information Privacy
 
Ppt
PptPpt
Ppt
 
Security management concepts and principles
Security management concepts and principlesSecurity management concepts and principles
Security management concepts and principles
 
Computer security concepts
Computer security conceptsComputer security concepts
Computer security concepts
 
Information security and Attacks
Information security and AttacksInformation security and Attacks
Information security and Attacks
 
Computer security
Computer securityComputer security
Computer security
 
Cyber crime and security
Cyber crime and securityCyber crime and security
Cyber crime and security
 
Network security
Network securityNetwork security
Network security
 
Introduction to cyber security amos
Introduction to cyber security amosIntroduction to cyber security amos
Introduction to cyber security amos
 
Computer security risks
Computer security risksComputer security risks
Computer security risks
 
Introduction to Information Security
Introduction to Information Security Introduction to Information Security
Introduction to Information Security
 

Semelhante a Basic concepts in computer security

OPERATING SYSTEM SECURITY
OPERATING SYSTEM SECURITYOPERATING SYSTEM SECURITY
OPERATING SYSTEM SECURITYRohitK71
 
Chapter Last.ppt
Chapter Last.pptChapter Last.ppt
Chapter Last.pptmiki304759
 
Threats to information security
Threats to information securityThreats to information security
Threats to information securityswapneel07
 
security introduction and overview lecture1 .pptx
security introduction and overview lecture1 .pptxsecurity introduction and overview lecture1 .pptx
security introduction and overview lecture1 .pptxnagwaAboElenein
 
System Security Sem 2(Module 1).pptx
System Security Sem 2(Module 1).pptxSystem Security Sem 2(Module 1).pptx
System Security Sem 2(Module 1).pptxrahulkumarcscsf21
 
information security (network security methods)
information security (network security methods)information security (network security methods)
information security (network security methods)Zara Nawaz
 
Information security ist lecture
Information security ist lectureInformation security ist lecture
Information security ist lectureZara Nawaz
 
Computer Security update and virus .pptx
Computer Security update and virus .pptxComputer Security update and virus .pptx
Computer Security update and virus .pptxlnatanzenebe21
 
BAIT1103 Chapter 1
BAIT1103 Chapter 1BAIT1103 Chapter 1
BAIT1103 Chapter 1limsh
 
Lecture 2 using an operating system
Lecture 2 using an operating systemLecture 2 using an operating system
Lecture 2 using an operating systemMaxwell Musonda
 
Chapter1 intro network_security_sunorganised
Chapter1 intro network_security_sunorganisedChapter1 intro network_security_sunorganised
Chapter1 intro network_security_sunorganisedBule Hora University
 
attack vectors by chimwemwe.pptx
attack vectors by chimwemwe.pptxattack vectors by chimwemwe.pptx
attack vectors by chimwemwe.pptxJenetSilence
 
Computer Security
Computer SecurityComputer Security
Computer SecurityAkNirojan
 
11 Computer Privacy
11 Computer Privacy11 Computer Privacy
11 Computer PrivacySaqib Raza
 
E sec chaptr-1
E sec chaptr-1E sec chaptr-1
E sec chaptr-1123aleena
 
Application of security computer
Application of security computerApplication of security computer
Application of security computeribrahimzubairu2003
 
Data Network Security
Data Network SecurityData Network Security
Data Network SecurityAtif Rehmat
 

Semelhante a Basic concepts in computer security (20)

OPERATING SYSTEM SECURITY
OPERATING SYSTEM SECURITYOPERATING SYSTEM SECURITY
OPERATING SYSTEM SECURITY
 
Chapter Last.ppt
Chapter Last.pptChapter Last.ppt
Chapter Last.ppt
 
Threats to information security
Threats to information securityThreats to information security
Threats to information security
 
security introduction and overview lecture1 .pptx
security introduction and overview lecture1 .pptxsecurity introduction and overview lecture1 .pptx
security introduction and overview lecture1 .pptx
 
System Security Sem 2(Module 1).pptx
System Security Sem 2(Module 1).pptxSystem Security Sem 2(Module 1).pptx
System Security Sem 2(Module 1).pptx
 
information security (network security methods)
information security (network security methods)information security (network security methods)
information security (network security methods)
 
Information security ist lecture
Information security ist lectureInformation security ist lecture
Information security ist lecture
 
Computer Security update and virus .pptx
Computer Security update and virus .pptxComputer Security update and virus .pptx
Computer Security update and virus .pptx
 
BAIT1103 Chapter 1
BAIT1103 Chapter 1BAIT1103 Chapter 1
BAIT1103 Chapter 1
 
Lecture 2 using an operating system
Lecture 2 using an operating systemLecture 2 using an operating system
Lecture 2 using an operating system
 
Chapter1 intro network_security_sunorganised
Chapter1 intro network_security_sunorganisedChapter1 intro network_security_sunorganised
Chapter1 intro network_security_sunorganised
 
attack vectors by chimwemwe.pptx
attack vectors by chimwemwe.pptxattack vectors by chimwemwe.pptx
attack vectors by chimwemwe.pptx
 
203135 Muhammad Usama.pptx
203135 Muhammad Usama.pptx203135 Muhammad Usama.pptx
203135 Muhammad Usama.pptx
 
Computer Security
Computer SecurityComputer Security
Computer Security
 
11 Computer Privacy
11 Computer Privacy11 Computer Privacy
11 Computer Privacy
 
security in is.pptx
security in is.pptxsecurity in is.pptx
security in is.pptx
 
E sec chaptr-1
E sec chaptr-1E sec chaptr-1
E sec chaptr-1
 
Security.pdf
Security.pdfSecurity.pdf
Security.pdf
 
Application of security computer
Application of security computerApplication of security computer
Application of security computer
 
Data Network Security
Data Network SecurityData Network Security
Data Network Security
 

Último

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Zilliz
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024The Digital Insurer
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoffsammart93
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAndrey Devyatkin
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MIND CTI
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDropbox
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWERMadyBayot
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyKhushali Kathiriya
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...Zilliz
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processorsdebabhi2
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Jeffrey Haguewood
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...apidays
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...apidays
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...apidays
 
Manulife - Insurer Transformation Award 2024
Manulife - Insurer Transformation Award 2024Manulife - Insurer Transformation Award 2024
Manulife - Insurer Transformation Award 2024The Digital Insurer
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobeapidays
 

Último (20)

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
Manulife - Insurer Transformation Award 2024
Manulife - Insurer Transformation Award 2024Manulife - Insurer Transformation Award 2024
Manulife - Insurer Transformation Award 2024
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 

Basic concepts in computer security

  • 1. BASIC CONCEPTS IN COMPUTER SECURITY ARZATH AREEFF
  • 2. WHAT IS COMPUTER SECURITY? •Computer security is refers to techniques for ensuring that data stored in a computer cannot be read or compromised by any individuals without authorization. •Most computer security measures involve data encryption and passwords. •The purpose of computer security is to device ways to prevent the weaknesses from being
  • 3. WHAT IS COMPUTER SECURITY? •We are addressing three important aspects of any computer-related system such as confidentiality, integrity, and availability.
  • 4. WHAT IS COMPUTER SECURITY? •These are the three goals in computing Security. 1.Confidentiality 2.Integrity 3.Availability
  • 5. THREE GOALS IN COMPUTING SECURITY •Confidentiality: ensures that computer-related assets are accessed only by authorized parties. Confidentiality is sometimes called secrecy or privacy. •Integrity: it means that assets can be modified only by authorized parties or only in authorized ways. •Availability: it means that assets are accessible
  • 6. THREE GOALS IN COMPUTING SECURITY •One of the challenges in building a secure system is finding the right balance among the goals, which often conflict.
  • 7. VULNERABILITY •Vulnerability is a weakness in the security system. •Weaknesses can appear in any element of a computer, both in the hardware, operating system, and the software. The types of vulnerabilities we might find as they apply to the assets of hardware, software, and data. •These three assets and the connections among
  • 8. HARDWARE VULNERABILITY •Hardware is more visible than software, largely because it is composed of physical objects. •it is rather simple to attack by adding devices, changing them, removing them, intercepting the traffic to them, or flooding them with traffic until they can no longer function.
  • 9. HARDWARE VULNERABILITY •other ways that computer hardware can be attacked physically. •Computers have been drenched with water, burned, frozen, gassed, and electrocuted with power surges.
  • 10. SOFTWARE VULNERABILITIES •Software can be replaced, changed, or destroyed maliciously, or it can be modified, deleted, or misplaced accidentally. Whether intentional or not, these attacks exploit the software’s vulnerabilities.
  • 11. SOFTWARE VULNERABILITIES •Sometimes, the attacks are obvious, as when the software no longer runs. More subtle are attacks in which the software has been altered but seems to run normally.
  • 12. DATA VULNERABILITY •a data attack is a more widespread and serious problem than either a hardware or software attack. •data items have greater public value than hardware and software because more people know how to use or interpret data.
  • 13. THREATS •A threat to a computing system is a set of circumstances that has the potential to cause loss or harm. •There are many threats to a computer system, including human-initiated and computer- initiated ones. •A threat is blocked by control of a vulnerability. •We can view any threat as being one of four
  • 14. THREATS •An interception means that some unauthorized party has gained access to an asset. The outside party can be a person, a program, or a computing system.
  • 15. THREATS •In an interruption is an asset of the system becomes lost, unavailable, or unusable.
  • 16. THREATS •If an unauthorized party not only accesses but tampers with an asset, is called as a modification.
  • 17. THREATS •An unauthorized party might create a fabrication of counterfeit objects on a computing system. •The intruder may insert spurious transactions to a network communication system or add records to an existing database.
  • 18. ATTACKS •A human who exploits a vulnerability perpetrates an attack on the system. An attack can also be launched by another system, as when one •system sends an overwhelming set of messages to another, virtually shutting down the second system's ability to function.
  • 19. ATTACKS •Unfortunately, we have seen this type of attack frequently, as denial-of-service attacks flood servers with more messages than they can handle.
  • 20. CONTROL •The control is an action, device, procedure or technique that removes or reduces a vulnerability. •We use a control as a protective measure. •There are so many ways to controle.
  • 21. HOW TO SECURE THE COMPUTER •There are two ways 1.Physical secure 2.Other secure methods
  • 22. PHYSICALLY SECURE COMPUTERS •Obtain physical computer locks for all your computers
  • 23. PHYSICALLY SECURE COMPUTERS •Attach mobile proximity alarms to your computers.
  • 24. PHYSICALLY SECURE COMPUTERS •Store computers in an area with secure access. •Or place the computers in a locked room
  • 25. PHYSICALLY SECURE COMPUTERS IN YOUR COLLEGE •Station security guards at entry points to the college building.
  • 26. PHYSICALLY SECURE COMPUTERS IN YOUR COLLEGE •Verify windows and doors are properly locked after office hours.
  • 27. SECURE THE COMPUTER •Choose a good secured operating system
  • 28. SECURE THE COMPUTER •Choose a web browser based on its security and vulnerabilities because most malware will come through via your web browser
  • 29. SECURE THE COMPUTER •When setting up, use strong passwords in your user account, router account etc. Hackers may use dictionary attacks and brute force attacks.
  • 30. SECURE THE COMPUTER •When downloading software (including antivirus software), get it from a trusted source
  • 31. SECURE THE COMPUTER •Install good antivirus software because Antivirus software is designed to deal with modern malware including viruses, Trojans, key loggers, rootkits, and worms.
  • 32. SECURE THE COMPUTER •Download and install a firewall
  • 33. SECURE THE COMPUTER •Close all ports. Hackers use port scanning (Ubuntu Linux has all ports closed by default)
  • 34. SOURCES AND CITATIONS • Security in Computing, Fourth EditionBy Charles P. Pfleeger • http://lifehacker.com/5848296/how-do-i-keep-my-computer-secure-at-the-office • http://it.ojp.gov/documents/asp/disciplines/section1-2.htm • http://www.pcpro.co.uk/blogs/2011/01/21/how-to-physically-secure-your-business- hardware/ • http://www.us-cert.gov/nav/nt01/ • http://blog.chromium.org/2008/10/new-approach-to-browser-security-google.html • http://www.avast.com • http://www.trendsecure.com • http://www.lavasoft.com • http://www.zonealarm.com • http://www.personalfirewall.comodo.com/ • http://www.remote-exploit.org/backtrack.html • http://www.grc.com/securitynow.htm • http://www.hackerhighschool.org/ • http://www.symantec.com/norton/products/library/article.jsp?aid=internet_iq
  • 35. THANK YOU HAVE A SECURED WORLD 

Notas do Editor

  1. keep laptop and desktop computers properly secured to desks.
  2. Proximity alarms will alert you when equipment is removed outside of a specific radius.
  3. This may prevent unauthorized persons or visitors from stealing computers and other equipment.
  4. Enforce a rule that requires all visitors to remain in the lobby or to sign a visitor log that requires them to provide identification.
  5. This can help prevent theft or burglary from occurring.