© 2006 Prentice-Hall, Inc.Slide 1 Tomorrow's Technology & You.

Slides:



Advertisements
Similar presentations
Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.
Advertisements

Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.
1 MIS 2000 Class 22 System Security Update: Winter 2015.
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,
2 Issues of the information age Computer _______ and mistakes –Preventing computer related waste & mistakes Computer crime –Computer as tool to commit.
Crime and Security in the Networked Economy Part 4.
ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.
Copyright © 2009 Pearson Education, Inc. Publishing as Prentice Hall
Chapter 9 Information Systems Ethics, Computer Crime, and Security.
Chapter 9 Information Systems Ethics, Computer Crime, and Security
Class 11: Information Systems Ethics and Crime MIS 2101: Management Information Systems Based on material from Information Systems Today: Managing in the.
McGraw-Hill/Irwin ©2009 The McGraw-Hill Companies, All Rights Reserved CHAPTER 4 ETHICS AND INFORMATION SECURITY Business Driven Information Systems 2e.
Computer Crime The Internet has opened the door to new kinds of crime and new ways of carrying out traditional crimes. Computer crime is any act that violates.
Computer Security and Risks 11.  2001 Prentice Hall11.2 Chapter Outline On-line Outlaws: Computer Crime Computer Security: Reducing Risks Security, Privacy,
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
Security, Privacy, and Ethics Online Computer Crimes.
Chapter 10 Privacy and Security McGraw-Hill
Computer Security. E-bay Phishing Scam Slide 2 Phishing Scam using Google Chat “LOL – ya gotta see this!!” Read about this scam:
Chapter 9 Information Systems Ethics, Computer Crime, and Security
Computer Security and Risks. Slide 2 Computer Security and Risks Beekman chapter includes: –Computer Crime –Security: Reducing Risks –Privacy, Freedom.
1010 CHAPTER PRIVACY AND SECURITY. © 2005 The McGraw-Hill Companies, Inc. All Rights Reserved Competencies Describe concerns associated with computer.
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall Digital Planet: Tomorrow’s Technology and You George Beekman Ben Beekman Tenth Edition.
Citadel Security Software Presents Are you Vulnerable? Bill Diamond Senior Security Engineer
Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.
Copyright © 2014 Pearson Education, Inc. 1 IS Security is a critical aspect of managing in the digital world Chapter 10 - Securing Information Systems.
Internet Safety Basics Being responsible -- and safer -- online Visit age-appropriate sites Minimize chatting with strangers. Think critically about.
Security. If I get 7.5% interest on $5,349.44, how much do I get in a month? (.075/12) = * 5, = $ What happens to the.004? =
Slide 1 Copyright © 2009 Pearson Education, Inc. Publishing as Prentice Hall Power Point Lectures to accompany Tomorrow’s Technology and You, 9e.
© 2006 Prentice-Hall, Inc.Slide 1 Computer Confluence 7/e.
© 2008 Prentice-Hall, Inc. Slide 1. Chapter 10 Computer Security and Risks © 2008 Prentice-Hall, Inc. Slide 2.
Chapter 11 Security and Privacy: Computers and the Internet.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Basic Security Networking for Home and Small Businesses – Chapter 8.
© Paradigm Publishing Inc. 8-1 Chapter 8 Security Issues and Strategies.
Malware  Viruses  Virus  Worms  Trojan Horses  Spyware –Keystroke Loggers  Adware.
Security Chapter 8 Objectives Societal impact of information and information technology –Explain the meaning of terms related to computer security and.
Chapter 12 Computer Security and Risks.  2002 Prentice Hall 2 Topics “Computers are power, and direct contact with power can bring out the best or worst.
Chapter 12 Computer Security and Risks.  2002 Prentice Hall 2 Topics “Computers are power, and direct contact with power can bring out the best or worst.
BUSINESS B1 Information Security.
Tutorial Chapter 5. 2 Question 1: What are some information technology tools that can affect privacy? How are these tools used to commit computer crimes?
Lesson 2- Protecting Yourself Online. Determine the strength of passwords Evaluate online threats Protect against malware/hacking Protect against identity.
Threat to I.T Security By Otis Powers. Hacking Hacking is a big threat to society because it could expose secrets of the I.T industry that perhaps should.
Security Awareness: Applying Practical Security in Your World Chapter 1: Introduction to Security.
Computing Essentials 2014 Privacy, Security and Ethics © 2014 by McGraw-Hill Education. This proprietary material solely for authorized instructor use.
McGraw-Hill Technology Education © 2006 by the McGraw-Hill Companies, Inc. All rights reserved CHAPTER PRIVACY AND SECURITY.
CHAPTER 7: PRIVACY, CRIME, AND SECURITY. Privacy in Cyberspace  Privacy: an individual’s ability to restrict or eliminate the collection, use and sale.
G061 - Network Security. Learning Objective: explain methods for combating ICT crime and protecting ICT systems.
Physical ways of keeping your system secure. Unit 7 – Assignment 2. (Task1) By, Rachel Fiveash.
Computer Crime crime accomplished through knowledge or use of computer technology. Computers are tools – we choose how to use / apply the technology.
3.05 Protect Your Computer and Information Unit 3 Internet Basics.
What is risk online operation:  massive movement of operation to the internet has attracted hackers who try to interrupt such operation daily.  To unauthorized.
Topic 5: Basic Security.
Chap1: Is there a Security Problem in Computing?.
Module  Introduction Introduction  Techniques and tools used to commit computer crimes Techniques and tools used to commit computer crimes.
Computer Skills and Applications Computer Security.
Privacy, Security and Ethics
Security and Ethics Safeguards and Codes of Conduct.
1 Law, Ethical Impacts, and Internet Security. 2 Legal Issues vs. Ethical Issues Ethics — the branch of philosophy that deals with what is considered.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Basic Security Networking for Home and Small Businesses – Chapter 8.
Issues for Computer Users, Electronic Devices, Computer and Safety.
Unit 1 Understanding computer systems: How legal, ethical, safety and security issues affect how computers should be used OCR Cambridge Nationals in ICT.
© 2006 Prentice-Hall, Inc.Slide 1 Computer Confluence 7/e.
Add video notes to lecture
IT Security  .
Tomorrow’s Technology and You
Protect Your Computer Against Harmful Attacks!
Computer Security and Risks
G061 - Network Security.
Presentation transcript:

© 2006 Prentice-Hall, Inc.Slide 1 Tomorrow's Technology & You

© 2006 Prentice-Hall, Inc.Slide 2 Tomorrow's Technology & You Chapter 10 Computer Security and Risks

© 2006 Prentice-Hall, Inc.Slide 3 Tomorrow's Technology & You Chapter 10 Objectives Describe several types of computer crime and discuss possible crime prevention techniques Describe the major security issues facing computer users, computer system administrators, and law enforcement officials Describe the ways in which computer security relates to personal privacy issues Explain the ways in which security and computer reliability are related

© 2006 Prentice-Hall, Inc.Slide 4 Tomorrow's Technology & You Chapter 10 Online Outlaws: Computer Crime Computers are used to break laws as well as to uphold them Computer crime involves:  Theft by computer  Software piracy and intellectual property laws  Software sabotage  Hacking and electronic trespassing

© 2006 Prentice-Hall, Inc.Slide 5 Tomorrow's Technology & You Chapter 10 Online Outlaws: Computer Crime The Computer Crime Dossier Computer crime: any crime accomplished through knowledge or use of computer technology Businesses and government institutions lose billions of dollars every year to computer criminals The majority of crimes committed by company insiders  Typically covered up or not reported to authorities to avoid embarrassment

© 2006 Prentice-Hall, Inc.Slide 6 Tomorrow's Technology & You Chapter 10 Online Outlaws: Computer Crime According to a 2001 survey of over 500 companies and government agencies:  85% detected computer security breaches in the preceding 12 months  Financial losses due to security breaches topped $377 million  70% reported that Internet connections were frequent points of attack  Only 31% said that internal systems were frequent points of attack

© 2006 Prentice-Hall, Inc.Slide 7 Tomorrow's Technology & You Chapter 10 Online Outlaws: Computer Crime Theft by Computer Theft is the most common form of computer crime Computers are used to steal:  Money  Goods  Information  Computer resources

© 2006 Prentice-Hall, Inc.Slide 8 Tomorrow's Technology & You Chapter 10 Online Outlaws: Computer Crime Common types of computer crime:  Spoofing: the use of a computer for stealing passwords  Identity theft: the use of computers and other tools to steal whole identities  Involves social engineering: slang for the use of deception to get individuals to reveal sensitive information  Online fraud  87% related to online auctions  Average cost per victim: $600

© 2006 Prentice-Hall, Inc.Slide 9 Tomorrow's Technology & You Chapter 10 Online Outlaws: Computer Crime Protect Yourself from Identity Theft:  Make all your online purchases using a credit card  Get a separate credit card with low credit limit for your online transactions  Make sure a secure Web site is managing your transaction  Don’t disclose personal information over the phone  Don’t give social security or driver’s license numbers over the phone, don’t print it on checks, use encryption when sending it in  Shred sensitive information

© 2006 Prentice-Hall, Inc.Slide 10 Tomorrow's Technology & You Chapter 10 Software Sabotage: Viruses and Other Malware Sabotage of software can include:  Trojan horse: performs a useful task while also being secretly destructive  Examples: Logic and time bombs  Virus: spreads by making copies of itself from program to program or disk to disk  Examples: Macro viruses and viruses

© 2006 Prentice-Hall, Inc.Slide 11 Tomorrow's Technology & You Chapter 10 Software Sabotage: Viruses and Other Malware How a Virus Works

© 2006 Prentice-Hall, Inc.Slide 12 Tomorrow's Technology & You Chapter 10 Software Sabotage: Viruses and Other Malware Worm: program that travels independently over computer networks, seeking uninfected sites  The first headline-making worm was created as an experiment by a Cornell graduate student in 1988  In the summer of 2001, a worm called Code Red made worldwide headlines Virus War  Researchers have identified more than 18,000 virus strains, with 200 new strains appearing each month  At any given time, about 250 virus strains are in circulation

© 2006 Prentice-Hall, Inc.Slide 13 Tomorrow's Technology & You Chapter 10 Software Sabotage: Viruses and Other Malware Antivirus programs are designed to search for viruses, notify users when they’re found, and remove them from infected disks or files  Continually monitor system activity, watching for and reporting suspicious virus-like actions  Programs need to be frequently revised to combat new viruses as they appear  Most can automatically download new virus-fighting code from the Web as new virus strains appear  It can take several days for develop and distribute patches for new viruses

© 2006 Prentice-Hall, Inc.Slide 14 Tomorrow's Technology & You Chapter 10 Software Sabotage: Viruses and Other Malware Spyware is technology that collects information from computer users without their knowledge or consent  Also called: Tracking software or Spybot  Information is gathered and shared with outsiders via Internet  Your keystrokes could be monitored  Web sites which you visit are recorded  Snapshots of your screen are taken  Cause pop-ups to appear  91% of PC users have spyware on their computers  In drive-by downloads just visiting a Web site can cause a download

© 2006 Prentice-Hall, Inc.Slide 15 Tomorrow's Technology & You Chapter 10 Software Sabotage: Viruses and Other Malware Norton Antivirus Software’s Interface

© 2006 Prentice-Hall, Inc.Slide 16 Tomorrow's Technology & You Chapter 10 Software Sabotage: Viruses and Other Malware Hacking and Electronic Trespassing Hacker (or cracker) refers to people who break into computer systems Webjackers hijack Web pages and redirect users to other sites Denial of Service (DOS) attacks bombard servers and Web sites with traffic that shuts down networks

© 2006 Prentice-Hall, Inc.Slide 17 Tomorrow's Technology & You Chapter 10 Software Sabotage: Viruses and Other Malware Breaking into other computer systems is called electronic trespassing Electronic crime rings focus on stealing credit card numbers and other valuable information Cliff Stoll discovered an international computer espionage ring because of a $.75 accounting error.

© 2006 Prentice-Hall, Inc.Slide 18 Tomorrow's Technology & You Chapter 10 Computer Security: Reducing Risks Physical Access Restrictions Computer crime has led to a need to protect computer systems Computer security attempts to protect computers and the information they contain Computer security protects against unwanted access, damage, modification, or destruction

© 2006 Prentice-Hall, Inc.Slide 19 Tomorrow's Technology & You Chapter 10 Computer Security: Reducing Risks Depending on the security system, you might be granted access to a computer based on:  Something you have  A key, an ID card with a photo, or a smart card containing digitally encoded identification in a built-in memory chip  Something you know  A password, an ID number, a lock combination, or a piece of personal history, such as your mother’s maiden name  Something you do  Your signature or your typing speed and error patterns  Something about you  A voice print, fingerprint, retinal scan, facial feature scan, or other measurement of individual body characteristics; these measurements are collectively called biometrics

© 2006 Prentice-Hall, Inc.Slide 20 Tomorrow's Technology & You Chapter 10 Computer Security: Reducing Risks Passwords Passwords are the most common tool for restricting access to a computer system Effective passwords are:  Not real words  Not names  Changed frequently  Kept secret  A combination of letters and numbers

© 2006 Prentice-Hall, Inc.Slide 21 Tomorrow's Technology & You Chapter 10 Computer Security: Reducing Risks Firewalls, Encryption, and Audits These security systems reduce or prohibit the interception of messages between computers  A firewall is like a gateway with a lock  Codes protect transmitted information and need a special key to decode  Shields are specially developed machines that prevent unwanted interception

© 2006 Prentice-Hall, Inc.Slide 22 Tomorrow's Technology & You Chapter 10 Computer Security: Reducing Risks Software and Hardware Firewalls

© 2006 Prentice-Hall, Inc.Slide 23 Tomorrow's Technology & You Chapter 10 Computer Security: Reducing Risks Making a message secure from outsiders requires encryption software  Encryption software scrambles the sent message using a key  A different key is needed to unscramble the received message

© 2006 Prentice-Hall, Inc.Slide 24 Tomorrow's Technology & You Chapter 10 Computer Security: Reducing Risks Audit-control software monitors and records computer activity  Effective audit-control software forces every user to leave a trail of electronic footprints Cryptography

© 2006 Prentice-Hall, Inc.Slide 25 Tomorrow's Technology & You Chapter 10 Computer Security: Reducing Risks Backups and Other Precautions Uninterruptible power supply (UPS) can protect computers from data loss during power failures Surge protectors shield electronic equipment from power spikes Have a routine for making regular backups  Many systems are backed up at the end of each work day

© 2006 Prentice-Hall, Inc.Slide 26 Tomorrow's Technology & You Chapter 10 Computer Security: Reducing Risks Human Security Controls: Law, Management, and Ethics Security measures prevent crime, but can also pose threats to personal privacy Managers must make employees aware of security issues and risks Systems Administrators play a key role in security and back-up In 2003, Microsoft launched a "Trustworthy Computing" initiative:  Long-term goal: to make its software as secure as possible when released  Will lessen the need for security patches

© 2006 Prentice-Hall, Inc.Slide 27 Tomorrow's Technology & You Chapter 10 Security, Privacy, Freedom, and Ethics: The Delicate Balance When Security Threatens Privacy Active badges can simultaneously improve security and threaten privacy by:  Identifying who enters a door or logs onto a machine  Finding an employee’s current or earlier location  Remembering: at the end of the day, an active-badge wearer can get a minute-by-minute printout listing exactly where and with he’s been “In this age of advanced technology, thick walls and locked doors cannot guard our privacy or safeguard our personal freedom.” — Lyndon B. Johnson.

© 2006 Prentice-Hall, Inc.Slide 28 Tomorrow's Technology & You Chapter 10 Rules of Thumb: Safe Computing Share with care Beware of BBS risks Don’t pirate software Disinfect regularly Treat diskettes with care Take your password seriously Lock sensitive data Use backup systems Consider encryption for Internet activities Prepare for the worst

© 2006 Prentice-Hall, Inc.Slide 29 Tomorrow's Technology & You Chapter 10 Security, Privacy, Freedom, and Ethics: The Delicate Balance Justice on the Electronic Frontier Dozens of hackers have been arrested for unauthorized entry into computer systems and for the release of destructive viruses and worms Through our scientific genius, we have made this world a neighborhood; now through our moral and spiritual development, we must make of it a brotherhood. —The Rev. Martin Luther King, Jr.

© 2006 Prentice-Hall, Inc.Slide 30 Tomorrow's Technology & You Chapter 10 Security, Privacy, Freedom, and Ethics: The Delicate Balance Federal and state governments have responded to the growing computer crime problem by creating new laws against electronic trespassing and by escalating enforcement efforts:  Telecommunications Act of 1996  Digital Millennium Copyright Act of 1998  Each of these laws introduced new problems by threatening rights of citizens—problems that have to be solved by courts and by future lawmakers

© 2006 Prentice-Hall, Inc.Slide 31 Tomorrow's Technology & You Chapter 10 Rules of Thumb: Computer Ethics Ethics is moral philosophy—philosophical thinking about right and wrong The Association for Computing Machinery Code of Ethics is the most widely known code of conduct specifically for computer professionals

© 2006 Prentice-Hall, Inc.Slide 32 Tomorrow's Technology & You Chapter 10 Rules of Thumb: Computer Ethics Guidelines that might help you to decide how to “do the right thing” when faced with ethical dilemmas:  Know the rules and the law  Don’t assume that it’s okay if it’s legal  Think scenarios  When in doubt, talk it out  Make yourself proud  Remember the golden rule: Do unto others as you would have them do unto you  Take the long view

© 2006 Prentice-Hall, Inc.Slide 33 Tomorrow's Technology & You Chapter 10 Security and Reliability Computer security involves more than protection from trespassing, sabotage, and other crimes Software errors and hardware glitches account for some of the most important security issues, such as: Bugs and Breakdowns Software bugs do more damage than viruses and computer burglars combined

© 2006 Prentice-Hall, Inc.Slide 34 Tomorrow's Technology & You Chapter 10 Security and Reliability Facts about software engineering:  It is impossible to eliminate all bugs  Even programs that appear to work can contain dangerous bugs  The bigger the system, the bigger the problem  Computer breakdowns pose a risk to the public and the incidence rate doubles every two years  Hardware problems are rare when compared with software failures

© 2006 Prentice-Hall, Inc.Slide 35 Tomorrow's Technology & You Chapter 10 Security and Reliability Computers at War Smart weapons are missiles that use computerized guidance systems to locate their targets An autonomous system is a complex system that can assume almost complete responsibility for a task without human input

© 2006 Prentice-Hall, Inc.Slide 36 Tomorrow's Technology & You Chapter 10 Security and Reliability Warfare in the Digital Domain The front lines of the future may be in cyberspace By attacking computer networks an enemy could conceivably cripple:  Telecommunications systems  Power grids  Banking and financial systems  Hospitals and medical systems  Water and gas supplies  Oil pipelines  Emergency government services

© 2006 Prentice-Hall, Inc.Slide 37 Tomorrow's Technology & You Chapter 10 Human Questions for a Computer Age Will Computers Be Democratic?  “The higher the technology, the higher the freedom. Technology enforces certain solutions: satellite dishes, computers, videos, international telephone lines force pluralism and freedom onto a society.”—Lech Walesa  “When machines and computers, profit motives, and property rights are considered more important than people, the giant triplets of racism, materialism, and militarism are incapable of being conquered.” — Rev. Martin Luther King, Jr.

© 2006 Prentice-Hall, Inc.Slide 38 Tomorrow's Technology & You Chapter 10 Human Questions for a Computer Age Will the Global Village Be a Community?  “Progress in commercial information technologies will improve productivity, bring the world closer together, and enhance the quality of life.” —Stan Davis and Bill Davidson, in 2020 Vision  “The real question before us lies here: do these instruments further life and its values or not?”—Lewis Mumford

© 2006 Prentice-Hall, Inc.Slide 39 Tomorrow's Technology & You Chapter 10 Human Questions for a Computer Age Will We Become Information Slaves?  “Our inventions are wont to be pretty toys which distract our attention from serious things. They are but improved means to an unimproved end.”—Henry David Thoreau  “Computers are useless. They can only give you answers.” —Pablo Picasso Standing on the Shoulders of Giants  “If I have seen farther than other men, it is because I stood on the shoulders of giants.”—Isaac Newton

© 2006 Prentice-Hall, Inc.Slide 40 Tomorrow's Technology & You Chapter 10 Inventing the Future: The Future of Internet Security Layered Defenses  Place sophisticated pattern-recognition software and special hardware on the perimeter of the network  Special-purpose hardware, called security processors will allow every message to be encrypted The People Problem  This is the weak link in the system How Open?  Will the onslaught of malware and spam place the openness of the Internet in peril?

© 2006 Prentice-Hall, Inc.Slide 41 Tomorrow's Technology & You Chapter 10 Lesson Summary Computers play an ever-increasing role in fighting crime At the same time, law enforcement organizations are facing an increase in computer crime—crimes accomplished through special knowledge of computer technology Some computer criminals use computers, modems, and other equipment to steal goods, money, information, software, and services Because of rising computer crime and other risks, organizations have developed a number of computer security techniques to protect their systems and data

© 2006 Prentice-Hall, Inc.Slide 42 Tomorrow's Technology & You Chapter 10 Lesson Summary (continued) Normally, security measures serve to protect our privacy and other individual rights, but occasionally security procedures threaten those rights The trade-offs between computer security and freedom raise important legal and ethical questions Computer systems aren’t just threatened by people, they’re also threatened by software bugs and hardware glitches An important part of security is protecting systems—and the people affected by those systems—from the consequences of those bugs and glitches