1 Computer Security and Privacy

2 Terms Computer security risk Computer crime Cybercrime Hacker Cracker Script kiddie Corporate spy Unethical employee Cyberextortionist Cyberterrorist Back doors spoofing Virus Worm Trojan horse Malware Payload Virus signature/virus definition Quarantine Virus hoax Botnets Denial of service attacks

3 Computer Security Risks Computer security risk – any event or action that could cause a loss of or damage to computer hardware, software, data, information, or processing. Computer crime – any illegal act involving a computer. Cybercrime – online or Internet-based illegal acts

4 Cyber Crime Categories Hacker – someone who accesses a computer or network illegally. Claims intent is to improve security Cracker – someone who accesses a computer or network illegally but has the intent of destroying data, stealing information, or other malicious action.

5  Script kiddie –Often are teenagers that use prewritten hacking and cracking programs to break into computers has the same intent as a cracker does not have the technical skills and background. Corporate spies – are hired to break into a specific computer and steal its proprietary data and information Have excellent computer and network skills Cyber Crime Categories

6 Unethical employees – break into their employers ‘ computers for a variety of reasons 1) To exploit a security weakness; 2) seek financial gains from selling confidential information; 3) disgruntled employees seek revenge Cyberextortionist – someone who uses as a vehicle for extortion. Send a company a threatening message indicating they will expose confidential information, exploit a security flaw, or launch an attack that will compromise the company’s network—if they are not paid a sum of money Cyber Crime Categories

7 Cyberterrorist – uses the Internet or network to destroy or damage computers for political reasons. Usually require a team of highly skilled individuals, millions of dollars, and several years of planning Cyber Crime Categories

8 Internet and Network Attacks Attacks that jeopardize security include computer viruses, worms, and Trojan horses; botnets; denial of service attacks; back doors; and spoofing. Virus – a potentially damaging computer program that affects, or infects, a computer negatively by altering the way the computer works without the user’s knowledge or permission Worm –a program that copies itself repeatedly Trojan horse – a program that hides within or looks like a legitimate program.

9 Virus, worms, Trojan horse are classified as malware. Malware (malicious software) – program that act without a user’s knowledge and deliberately alter the computer’s operation Payload – the destructive event or prank the program is intended to deliver. Internet and Network Attacks

10 Symptoms of a computer affected by virus, worm or Trojan horse Screen displays unusual message or image Available memory is less than expected Files become corrupted Unknown programs or files mysteriously appear Music or unusual sound plays randomly Existing programs and files disappear Programs or files do not work properly System properties change

11 Safeguards against viruses, worms, and Trojan horses Don’t start with removable media CDs, DVDs, and USB flash drives Never open an from an unknown source Never open an attachment unless you are expecting the attachment Set macro security level to medium Stay informed about new virus alerts and virus hoaxes.

12 Install antivirus program and update it frequently How antivirus programs work Look for virus signatures/virus definitions—a known specific pattern of virus code. Quarantine infected file Safeguards against viruses, worms, and Trojan horses

13 Network and Internet Security Risks Denial of service attack (DoS) hackers run multiple copies of a program to flood it and shut it down.

14 Back Doors A program or set of instructions in a program that allows users to bypass security controls when accessing a program, computer, or network. Spoofing fooling another computer by pretending to send packets from a legitimate source Network and Internet Security Risks

15 Safeguards against DoS Attacks, Back Doors, and IP Spoofing Firewalls allows normal Web browser operations but prevents other types of communication checks incoming data against a list of known sources data rejected if it does not fit a preset profile

16 Intrusion Detection Software Automatically analyzes all network traffic, assesses system vulnerabilities Identifies any unauthorized access (intrusions) Notifies network administrators of suspicious behavior patterns or system breaches Safeguards against DoS Attacks, Back Doors, and IP Spoofing

17 Safeguards Against Unauthorized Access And Use Access control A security measure that defines who can access a computer, when they can access it, and what actions they can take while accessing the computer. Audit trail Records in a file both successful and unsuccessful access attempts. User Name and passwords Longer passwords provide better security

18 Number of Characters Possible CombinationsHumanComputer 1363 minutes seconds 21,3002 hours seconds 347,0003 days.02 seconds 41,700,0003 months1 second 560,000,00010 years30 seconds 103,700,000,000,000, million years59 years Password Protections Average Time to Discover

19 Possessed Objects Any item that you must carry to gain access to a computer or computer facility. (Examples: badges, cards, smart cards & key) Often are used in combination with personal identification numbers. Biometric Devices Authenticates a person’s identify by translating a personal characteristics, such as a fingerprint, into a digital code that is then compared with a digital code stored in the computer to verify a physical or behavioral characteristic Safeguards Against Unauthorized Access And Use

20 Lets Review 1. A back door attack is an assault whose purpose is to disrupt computer access to an Internet service such as the Web or . Answer Denial of service

21 Lets Review 2.All networked and online computer users should implement a firewall solution. Answer Yes, because a firewall protects a network’s resources from intrusion (software or hardware) by users on another network.

22 Lets Review 3.Computer viruses, worms, and Trojan horses are malware that act with a user’s knowledge. Answer Are classified as malware, but acts without a user’s knowledge and deliberately alters the computer’s operations.

23 Lets Review 4.Shorter passwords provide greater security than longer ones. Answer The longer the password, the more effort required to discover it.

24 Lets Review 5.Updating an antivirus program’s quarantine protects a computer against viruses written since the antivirus program was released. Answer Updating an antivirus program’s signature files protects a computer against viruses written since the antivirus program was release.

25 Theft and Vandalism Hardware Locking doors/windows Install alarm systems Using cables to lock computers to stationary object Install a mini-security system Software piracy —unauthorized and illegal duplication of copyrighted software. License agreement

26 License Agreement Are permitted to Install on only one computer Make one copy of the software as a backup Give or sell the software to another individual, but only is the software is removed from the user’s computer first. Not allowed to: Install the software on a network, such as a school computer lab Give copies to friends and colleagues, while continuing to use the software Export the software Rent or lease the software

27 Theft Information – occurs when someone steals personal or confidential information. Encryption—the process of converting readable data into unreadable characters to prevent unauthorized access. Plaintext--Unencrypted, readable data Ciphertext—is the scrambled (encrypted) data Encryption key—a programmed formula that the recipient of the data uses to decrypt ciphertext.

28 Security Risk System failure – the prolonged malfunction of a computer Safeguards Surge protectors Uninterruptible power supply (UPS) Backup files

29 Let’s Review 1. True or False. An end-user license agreement (EULA) permits users to give copies to friends and colleagues, while continuing to use the software. Answer False, Does not permit users to give copies to friends and colleagues, while continuing to use the software.

30 True or False. Encryption is a process of converting ciphertext into plaintext to prevent authorized access. Let’s Review Answer False. Converting plaintext into ciphertext

31 3. True or False. Mobile users are not susceptible to hardware theft. Let’s Review Answer False. They are susceptible

32 4. True or False. To prevent against data loss caused by a system failure, computer users should restore files regularly. Let’s Review Answer Backup files regularly

33 Did You Know? The penalty for copying software can be up to $250,000, five years in prison, or both?

34 Security Strategies for Protecting Computer Systems and Data Network Sniffer displays network traffic data shows which resources employees use and Web sites they visit can be used to troubleshoot network connections and improve system performance