Presentation is loading. Please wait.

Presentation is loading. Please wait.

C OMPUTER S ECURITY C ONCEPTS By: Qubilah D’souza 411109 TE computer.

Published byArline Fields Modified over 8 years ago

Similar presentations

Presentation on theme: "C OMPUTER S ECURITY C ONCEPTS By: Qubilah D’souza 411109 TE computer."— Presentation transcript:

1 C OMPUTER S ECURITY C ONCEPTS By: Qubilah D’souza 411109 TE computer

2 R EFERENCE : Operating Systems – By W Stallings(page number 636-637).

3 S UMMARY : Computer security. Three key objectives. Three objectives in terms of requirements and the definition of loss of security in each category.

4 COMPUTER SECURITY: The protection afforded to an automated information system in order to attain the applicable objectives of preserving the integrity,availability and confidentiality of information system resources(includes hardware,software,firmware,informa tion/data)

5 T HIS DEFINITION INTRODUCES 3 KEY OBJECTIVES : 1. CONFIDENTIALITY DATA CONFIDENTIALITY: assures that private or confidential information is not made available or disclosed to unauthorised individuals, PRIVACY: assures that individuals control or influence what information related to them may be collected and stored and by whom and to whom that information may be disclosed

6 2. INTEGRITY DATA INTEGRITY: Assures that information and programs are changed only in specific and authorized manner SYSTEM INTEGRITY: Assures that a system performs its intended function in an unimpaired manner, free from deliberate or inadvertent unauthorized manipulation of system

7 3.AVAILABILITY Assures that systems work promptly and services is not denied to authorized users THESE THREE CONCEPTS FORM IS OFTEN REFFERED TO AS THE CIA TRIAD CONFIDENTIALITY,INTEGRITY AND AVAILABILITY ARE LISTED AS THE THREE SECURITY OBJECTIVES FOR INFORMATION AND FOR INFORMATION SYSTEMS

8 THESE THREE CONCEPTS FORM IS OFTEN REFFERED TO AS THE CIA TRIAD CONFIDENTIALITY,INTEGRITY AND AVAILABILITY ARE LISTED AS THE THREE SECURITY OBJECTIVES FOR INFORMATION AND FOR INFORMATION SYSTEMS

9 FIPS PUB 199 (STANDARDS FOR SECURITY CATEGORIZATION OF FEDRAL INFORMATION AND INFORMATION SYSTEM) provides useful categorization of these three objectives in terms of requirements and the definition of loss of security in each category.

10 1.CONFIDENTIALITY Preserving authorized restrictions on information access and disclosure,including means for protecting personal privacy and proprietary information. Loss of confidentiality is the unauthorized disclosure of information

11 2.INTEGRITY Guarding against improper information modification or destruction. A loss of integrity is the unauthorized modification or destruction of. information

12 3.AVAILABILITY Ensuring timely and reliable access to and use of information. A loss of availability is the disruption of access to or use of information or an information system.

13 CIA triad is well established still there are two additional concepts are needed to present the complete picture 1.Authenticity 2.Accountability

14 1.Authenticity The property of being genuine and being able to be verified and trusted; confidence in the validity of transmission, a message, or message originator. This means verifying that the user are who they say the are and that each input arriving at the system came from a trusted source

15 2.Accountability The security goal that generates the requirement for action of an entity to be traced uniquely to that entity. This supports non repudiation, fault isolation, intrusion detection and prevention, and after action recovery and legal action. This helps to trace a security breach to a responsible party

16

Download ppt "C OMPUTER S ECURITY C ONCEPTS By: Qubilah D’souza 411109 TE computer."

Similar presentations

Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.

Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.
Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
1 NIST, FIPS, and you... Bob Grill Medi-Cal ISO July 16, 2009.

1 NIST, FIPS, and you... Bob Grill Medi-Cal ISO July 16, 2009.
Cryptography and Network Security Sixth Edition by William Stallings.

Cryptography and Network Security Sixth Edition by William Stallings.
Cryptography and Network Security Chapter 1

Cryptography and Network Security Chapter 1
Chapter 1 This book focuses on two broad areas: cryptographic algorithms and protocols, which have a broad range of applications; and network and Internet.

Chapter 1 This book focuses on two broad areas: cryptographic algorithms and protocols, which have a broad range of applications; and network and Internet.
Lecture 1: Overview modified from slides of Lawrie Brown.

Lecture 1: Overview modified from slides of Lawrie Brown.
Stephen S. Yau CSE465 & CSE591, Fall 2006 1 Information Assurance (IA) & Security Overview Concepts Security principles & strategies Techniques Guidelines,

Stephen S. Yau CSE465 & CSE591, Fall Information Assurance (IA) & Security Overview Concepts Security principles & strategies Techniques Guidelines,
Applied Cryptography for Network Security

Applied Cryptography for Network Security
Cryptography and Network Security Chapter 1. Chapter 1 – Introduction The art of war teaches us to rely not on the likelihood of the enemy's not coming,

Cryptography and Network Security Chapter 1. Chapter 1 – Introduction The art of war teaches us to rely not on the likelihood of the enemy's not coming,
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
1 Network Management and SNMP  What is Network Management?  ISO Network Management Model (FCAPS)  Network Management Architecture  SNMPv1 and SNMPv2.

1 Network Management and SNMP  What is Network Management?  ISO Network Management Model (FCAPS)  Network Management Architecture  SNMPv1 and SNMPv2.
CS 432 Computer and Network Security Spring 2015

CS 432 Computer and Network Security Spring 2015
Review security basic concepts IT 352 : Lecture 2- part1 Najwa AlGhamdi, MSc – 2012 /1433.

Review security basic concepts IT 352 : Lecture 2- part1 Najwa AlGhamdi, MSc – 2012 /1433.
Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 1 “Overview”.

Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 1 “Overview”.
Dr. Lo’ai Tawalbeh 2007 INCS 741: Cryptography Chapter 1:Introduction Dr. Lo’ai Tawalbeh New York Institute of Technology (NYIT) Jordan’s Campus - 2007.

Dr. Lo’ai Tawalbeh 2007 INCS 741: Cryptography Chapter 1:Introduction Dr. Lo’ai Tawalbeh New York Institute of Technology (NYIT) Jordan’s Campus
Cryptography and Network Security

Cryptography and Network Security
Eng. Wafaa Kanakri Second Semester 1435 CRYPTOGRAPHY & NETWORK SECURITY Chapter 1:Introduction Eng. Wafaa Kanakri UMM AL-QURA UNIVERSITY

Eng. Wafaa Kanakri Second Semester 1435 CRYPTOGRAPHY & NETWORK SECURITY Chapter 1:Introduction Eng. Wafaa Kanakri UMM AL-QURA UNIVERSITY
1 Advanced Database Course (ESED5204) Eng. Hanan Alyazji University of Palestine Software Engineering Department.

1 Advanced Database Course (ESED5204) Eng. Hanan Alyazji University of Palestine Software Engineering Department.
Lecture 1: Overview modified from slides of Lawrie Brown.

Lecture 1: Overview modified from slides of Lawrie Brown.

Similar presentations

Ads by Google