Introduction to Information Security

Posted by ardidudidam Saturday, July 18, 2009

Information security

Image Hosted by UploadHouse.com
What is security?? Security is state of being secure from any danger and protected from those whom would do harm. Information security mean that information is being protected and also the system and hardware for transmit the information being protected. There are 3 step for being secure: 1. Detection Detect any danger that may harm your system by using scanner such as virus scanner, internet scanner, and Web server scanner. 2. Prevention By setting your proxy and turn on your firewall, you already prevent your system from any danger such as virus. 3. Recovery Recover your system when it being infected by virus or anything that would damage your system. you can use cryptography technique. Security principles : Confidentiality is prevention of unauthorized disclosure of information. Integrity is prevention of unauthorized modification of information. Availability is prevention of unauthorized withholding of information. Security attack is classified into 2 types, passive attack and active attack. Passive attacks is monitoring the transmission. Usually used to obtain the information that is being transmitted. Passive attacks divide into 2 types, release of message content and traffic analysis. Active attacks is involve some modification of data stream or creation of false stream to obtain an authorization of the data. Types of active attacks are masquerade, replay, modification of messages, and denial of services.
Passive attacks vs. Active attacks
  • Passive attacks

o Very difficult to detect

o Feasible to prevent the success of this attack

o Prevention rather than detection

  • · Active attacks

o Difficult to prevent

o Instead, the goal is to detect active attacks and to recover from any disruption or delays caused by them

o If the detection has a deterrent effect, it may also contribute to prevention.

There are several ways to deal with harm that occurs when a threat is realized against a vulnerability.
  • Prevent it, by blocking the attack or closing the vulnerability.
  • Deter it, by making the attack harder, but not impossible.
  • Detect it, either as it happens or some time after the fact.
  • Deflect it, by making another target more attractive.
  • Recover from its effect.
Encryption is making the interpretation is meaningless by scrambling the data without the intruder's knowing how the scrambling was done. Encryption enable us to provide security while accomplishing an important system or network task. Security services:
  • Authentication is assurance that the communicating entity is the one claimed or assurance that the source of received data is as claimed.
  • Access control is prevention of unauthorized use of resource.
  • Data confidentiality is protect data from unauthorized disclosure.
  • Data integrity is assurance that the data received is as sent by authorized entity.
  • Non repudiation is to proof that the data sent by specified party and received by specified party.
Security mechanism is any process that is designed to detect, prevent, or recover from any security attack. Security mechanism divided into 2 classes, and Specific Security Mechanisms and Pervasive Security Mechanisms.
Image Hosted by UploadHouse.com Image Hosted by UploadHouse.com

TOP

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)