Impact Of A Security Breach

Slides:



Advertisements
Similar presentations
Data Ownership Responsibilities & Procedures
Advertisements

Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 1: Overview.
Peter Brudenall & Caroline Evans- Simmons & Simmons Marsh Technology Conference 2005 Zurich, Switzerland. Managing the Security Landscape – Legal and Risk.
Distance Education Team 2 Security Architectures and Analysis.
Information Security and Risk Management A Plan for Success.
Cryptography and Network Security Overview & Chapter 1 Fifth Edition by William Stallings Lecture slides by Lawrie Brown Editied by R. Newman.
“Network Security” Introduction. My Introduction Obaid Ullah Owais Khan Obaid Ullah Owais Khan B.E (I.T) – Hamdard University(2003), Karachi B.E (I.T)
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.
©Ian Sommerville 2006Critical Systems Slide 1 Critical Systems Engineering l Processes and techniques for developing critical systems.
 What are some of the important benefits that Mountain View Community Hospital should seek in using databases? As much as possible, relate your response.
Software Dependability CIS 376 Bruce R. Maxim UM-Dearborn.
Cryptography and Network Security Overview & Chapter 1 Fifth Edition by William Stallings.
Network Security Essentials Chapter 1
Data Security and Encryption (CSE348) 1. Dr. Basit Raza Assistant Professor Comsats Institute of Information Technology, Islamabad 2.
Risk Assessment and Management. Objective To enable an organisation mission accomplishment, by better securing the IT systems that store, process, or.
1 Chapter 5 Project management. 2 Project management : Is Organizing, planning and scheduling software projects.
MODULE 12 Control Audit And Security Of Information System 12.1 Controls in Information systems 12.2 Need and methods of auditing Information systems 12.3.
Data Security and Encryption (CSE348) 1. Lecture # 2 2.
E.Soundararajan R.Baskaran & M.Sai Baba Indira Gandhi Centre for Atomic Research, Kalpakkam.
Csci5233 computer security & integrity 1 An Overview of Computer Security.
Copyright © 2007 Pearson Education Canada 23-1 Chapter 23: Using Advanced Skills.
 Tim : Project Manager  Rhifa: Risk Manager  Tak: Quality Manager  Titto: Finance Manager.
Using Technology to Manage Information Chapter 13.
Copyright © 2013 – Curt Hill Computer Security An Overview.
Lecture1.1(Chapter 1) Prepared by Dr. Lamiaa M. Elshenawy 1.
E-Commerce E-Commerce Security?? Instructor: Safaa S.Y. Dalloul E-Business Level Try to be the Best.
CATASTROPHIC (I) Loss of ability to accomplish the mission or mission failure. Death or permanent total disability (accident risk). Loss of major or mission-critical.
COMPUTER SECURITY COMP424 1 ST LECTURE OVERVIEW AND TERMINOLOGIES Dr. Sarah Mustafa Eljack
Network Security Overview
Welcome to the ICT Department Unit 3_5 Security Policies.
Denise Chrysler, JD Director, Mid-States Region
Database Security and Encryption
Computer Security Introduction
CS457 Introduction to Information Security Systems
CompSci 280 S Introduction to Software Development
Presented by : - Ankit kumar Mishra Rohit gir
Lesson 3: Cyberbullying
Network Security Essentials
Introduction The combination of space, time, and strength that must be considered as the basic elements of this theory of defense makes this a fairly complicated.
Data & Network Security
Network Security Overview
Security Engineering.
Cryptography and Network Security
Network Security Essentials
CSE506 NETWORK SECURITY AND CRYPTOGRAPHY
Cryptography and Network Security Overview & Chapter 1
Data Privacy and Breaches
ITIL: Why Your IT Organization Should Care Service Support
ITIL: Why Your IT Organization Should Care Service Support
Case Study Walk In Clinic
Management. Management What is a risk? A risk is simply a probability that some adverse circumstance will actually occur.
Cryptography and Network Security Overview & Chapter 1
CSC348 – Data Security and Encryption
Database Security &Threats
Criticality – Mil-Std-1629 Approach
Introduction to Health Privacy
IEEE MEDIA INDEPENDENT HANDOVER DCN: MuGM Title: Availability Requirement Discussion Date Submitted: Presented at IEEE d TG.
ITIL: Why Your IT Organization Should Care Service Support
Cybersecurity Threat Assessment
Best Practices On-Line Analysis Tools
Introduction to Cryptography
Risk Articulation Articulation Translation to Risk Register
RISK RATING GUIDE APPENDIX C LIKELIHOOD RATING Rating Description
A Model For Network Security
Key Exchange, Man-in-the-Middle Attack
Definition Of Computer Security
SELDOM (D) Remotely possible; could occur at some time
OU BATTLECARD: Oracle Identity Management Training
Presentation transcript:

Impact Of A Security Breach Network Security

Impact Of A Security Breach Objectives of the Topic After completing this topic, a student will be able to describe levels of impact of a security breach on the system.

Impact Of A Security Breach Figures and material in this topic have been adapted from “Network Security Essentials: Applications and Standards”, 2014, by William Stallings.

Impact Of A Security Breach In case, there be a breach of security (i.e., a loss of confidentiality, integrity, or availability), three levels of impact on organizations or individuals can be considered.

Impact Of A Security Breach Low The loss could be expected to have a limited adverse effect on organizational operations, organizational assets, or individuals. A limited adverse effect means that, a security breach might

Impact Of A Security Breach (i) cause a degradation in mission capability to an extent and duration that the organization is able to perform its primary functions, but the effectiveness of the functions is noticeably reduced

Impact Of A Security Breach (ii) result in minor damage to organizational assets (iii) result in minor financial loss or (iv) result in minor harm to individuals.

Impact Of A Security Breach Moderate The loss could be expected to have a serious adverse effect on organizational operations, organizational assets, or individuals. A serious adverse effect means that the loss might

Impact Of A Security Breach (i) cause a significant degradation in mission capability to an extent and duration that the organization is able to perform its primary functions, but the effectiveness of the functions is significantly reduced.

Impact Of A Security Breach (ii) result in significant damage to organizational assets (iii) result in significant financial loss or (iv) result in significant harm to individuals that does not involve loss of life or serious, life-threatening injuries.

Impact Of A Security Breach High The loss could be expected to have a severe or catastrophic adverse effect on organizational operations, organizational assets, or individuals. A catastrophic adverse effect means that,

Impact Of A Security Breach (i) cause a severe degradation in or loss of mission capability to an extent and duration that the organization is not able to perform one or more of its primary functions

Impact Of A Security Breach (ii) result in major damage to organizational assets (iii) result in major financial loss or (iv) result in severe or catastrophic harm to individuals involving loss of life or serious, life-threatening injuries

Impact Of A Security Breach Examples of Security Requirements a) Confidentiality: Student grade information is an asset whose confidentiality is considered to be highly important by students.

Impact Of A Security Breach Grade information should only be available to students, their parents, and employees that require the information to do their job. Student enrollment information may have a moderate confidentiality rating.

Impact Of A Security Breach Student enrollment information is seen by more people on a daily basis, is less likely to be targeted than grade information and results in less damage if disclosed.

Impact Of A Security Breach Directory Information such as lists of students or faculty may be assigned a low or no confidentiality rating.

Impact Of A Security Breach b) Integrity: Assume a hospital patient’s allergy information to be stored in a database. The doctor should be able to trust that the information is correct and current.

Impact Of A Security Breach Suppose a nurse who is authorized to update this info deliberately falsifies the data to cause harm to the hospital. Restore to a trusted basis quickly and to trace the error back to the person responsible.

Impact Of A Security Breach Patient allergy information requires high integrity. Inaccurate information could result in serious harm or death to a patient and expose the hospital to massive liability.

Impact Of A Security Breach A Web site that offers a forum to registered users to discuss some specific topic would be assigned a moderate level of integrity. An example of a low-integrity requirement is an anonymous online poll.

Impact Of A Security Breach Availability The more critical a component or service, the higher the level of availability required.

Impact Of A Security Breach A system that provides authentication services. An interruption results in inability for customers to access computing resources and for staff to access resources to perform critical tasks.

Impact Of A Security Breach A moderate availability requirement is a public Web site for a university. An online telephone directory lookup application would be classified as a low-availability requirement. End

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.