What
Computer Security?
Computer Security is the process of detecting and preventing any
unauthorized use of your laptop/computer. It involves the process of
safeguarding against trespassers from using your personal or office based
computer resources with malicious intent or for their own gains, or even for
gaining any access to them accidentally.
we will treat the
concept of computer security which can be a laptop, a workstation, a server or
even a network device. This is an introductory tutorial that covers the basics
of Computer Security and how to deal with its various components and
sub-components.
Why
Security?
Cyberspace
(internet, work environment, intranet) is becoming a dangerous place for all
organizations and individuals to protect their sensitive data or reputation.
This is because of the numerous people and machines accessing it. It is
important to mention that the recent studies have shown a big danger is coming
from internal threats or from disappointed employees like the Edward Snowden
case, another internal threat is that information material can be easy
accessible over the intranet.
One important indicator is the IT skills of a
person that wants to hack or to breach your security has decreased but the
success rate of it has increased, this is because of three main factors −
·
Hacking tools that can
be found very easily by everyone just by googling and they are endless.
·
Technology with the
end-users has increased rapidly within these years, like internet bandwidth and
computer processing speeds.
·
Access to hacking
information manuals.
All this can make even a school boy with the
curiosity, a potential hacker for your organization.
Since locking down all networks is not an
available option, the only response the security managers can give is to harden
their networks, applications and operating systems to a reasonable level of
safety, and conducting a business disaster recovery plant.
What
to Secure?
Let’s see this
case, you are an IT administrator in a small company having two small servers
staying in a corner and you are very good at your job. You are doing updates
regularly, setting up firewalls, antiviruses, etc. One day, you see that the
organization employees are not accessing the systems anymore. When you go and
check, you see the cleaning lady doing her job and by mistake, she had removed
the power cable and unplugged the server.
What I mean by
this case is that even physical security is important in computer security, as
most of us think it is the last thing to take care of.
Benefits
of Computer Security Awareness
Do you know in
all this digital world, what is the biggest hole or the weakest point of the
security?
Answer. It is
us, humans.
Most of the
security breaches come from uninformed and untrained persons which give
information to a third party or publish data in Internet without knowing the
consequences.
See the following
scenario which tells us what employees might end up doing without computer
security awareness. So the benefits of computer
security awareness are obvious as it directly minimizes the potential of you
being hacked off your identity, your computer, your organization.
Different
Elements in Computer Security:
In order to
fulfil these requirements, we come to the three main elements which are confidentiality,
integrity, and availability and the recently added authenticity
and utility.
Confidentiality:
Confidentiality
is the concealment of information or resources. Also, there is a need to keep
information secret from other third parties that want to have access to it, so
just the right people can access it.
Example in
real life −
Let’s say there are two people communicating via an encrypted email they know
the decryption keys of each other and they read the email by entering these
keys into the email program. If someone else can read these decryption keys
when they are entered into the program, then the confidentiality of that email
is compromised.
Integrity:
Integrity is the
trustworthiness of data in the systems or resources by the point of view of
preventing unauthorized and improper changes. Generally, Integrity is composed
of two sub-elements – data-integrity, which it has to do with the content of
the data and authentication which has to do with the origin of the data as such
information has values only if it is correct.
Example in
real life −
let’s say you are doing an online payment of 5 USD, but your information is
tampered without your knowledge in a way by sending to the seller 500 USD, this
would cost you too much.
In this case
cryptography plays a very major role in ensuring data integrity. Commonly used
methods to protect data integrity includes hashing the data you receive and
comparing it with the hash of the original message. However, this means that
the hash of the original data must be provided in a secure way.
Availability:
Availability
refers to the ability to access data of a resource when it is needed, as such
the information has value only if the authorized people can access at right
time. Denying access to data nowadays has become a common attack. Imagine a
downtime of a live server how costly it can be.
Example in
real life −
let’s say a hacker has compromised a webserver of a bank and put it down. You
as an authenticated user want to do an e-banking transfer but it is impossible
to access it, the undone transfer is a money lost for the bank.
Computer
Security terminology:
·
Unauthorized access − An unauthorized access is when someone gains access to a
server, website, or other sensitive data using someone else's account details.
·
Hacker − Is a Person who tries and exploits a computer system for a
reason which can be money, a social cause, fun etc.
·
Threat − Is an action or event that might compromise the security.
·
Vulnerability − It is a weakness, a design problem or implementation error
in a system that can lead to an unexpected and undesirable event regarding
security system.
·
Attack − Is an assault on the system security that is delivered by
a person or a machine to a system. It violates security.
·
Antivirus or Antimalware − Is a software that operates on different OS which is used
to prevent from malicious software.
·
Social Engineering − Is a technique that a hacker uses to stole data by a
person for different for purposes by psychological manipulation combined with
social scenes.
·
Virus − It is a malicious software that installs on your computer
without your consent for a bad purpose.
·
Firewall − It is a software or hardware which is used to filter
network traffic based on rules.
No comments:
Post a Comment