Presentation is loading. Please wait.

Presentation is loading. Please wait.

Session 1 – Introduction to Information Security

Published byCorey Adams Modified over 5 years ago

Similar presentations

Presentation on theme: "Session 1 – Introduction to Information Security"— Presentation transcript:

1 Session 1 – Introduction to Information Security
CSE 4482, Fall 2012, D Chan

2 Security Objectives Confidentiality (includes privacy) Integrity
Availability CSE 4482, Fall 2012, D Chan

3 Information Security Framework
Information security policy (what is important, who are accountable and responsible?) Information security standards (acceptable levels of security in systems development and operation. Information security procedures (how to protect?) CSE 4482, Fall 2012, D Chan

4 Information Security Framework
Information security infrastructure, firewalls, virtual private network etc. Information security software, anti-virus software, access control software, application security etc. Chief information security officer, information security staff. CSE 4482, Fall 2012, D Chan

5 Information Security Framework
Information classification based on sensitivity. Keep in mind the objectives of confidentiality, integrity and availability. Information ownership. CSE 4482, Fall 2012, D Chan

6 Security Processes Identification Authentication Authorization Logging
Monitoring CSE 4482, Fall 2012, D Chan

7 Common Security Measures
Password Two-factor authentication Biometrics Access control lists for granting authorization to information Locks Encryption Anti-virus Usage and rejection reports CSE 4482, Fall 2012, D Chan

8 Passwords Should not be shared Should be changed by user
Should be changed frequently and upon compromise (suspected unauthorized disclosure) CSE 4482, Fall 2012, D Chan

9 Passwords Long, at least 8 characters Alphanumeric
Hashed (one-way scrambling) System should allow only a few attempts before locking out account CSE 4482, Fall 2012, D Chan

10 Passwords An 8-letter password is 676 times stronger than a 6-letter password. A 6-character alphanumeric password is 6 times stronger than a 6-letter password. Strength should depend on user’s privilege and locality of system. CSE 4482, Fall 2012, D Chan

Download ppt "Session 1 – Introduction to Information Security"

Similar presentations

Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.

Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.
CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.

CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.
Woodland Hills School District Computer Network Acceptable Use Policy.

Woodland Hills School District Computer Network Acceptable Use Policy.
CREATED BY: HMIS Security Awareness Approved 1/10/2012 Revised 1/29/2013 Revised 3/15/2013.

CREATED BY: HMIS Security Awareness Approved 1/10/2012 Revised 1/29/2013 Revised 3/15/2013.
BP5- METHODS BY WHICH PERSONAL DATA CAN BE PROTECTED Data Protection.

BP5- METHODS BY WHICH PERSONAL DATA CAN BE PROTECTED Data Protection.
Protection of personal mobile computer devices Information Security Isaac Fernandes, mci12009 Sofia Nunes, mci12014.

Protection of personal mobile computer devices Information Security Isaac Fernandes, mci12009 Sofia Nunes, mci12014.
Access Control Methodologies

Access Control Methodologies
Security Controls – What Works

Security Controls – What Works
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
SECURITY What does this word mean to you? The sum of all measures taken to prevent loss of any kind.

SECURITY What does this word mean to you? The sum of all measures taken to prevent loss of any kind.
6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.

6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.
© 2008 Prentice Hall Business Publishing Accounting Information Systems, 11/e Romney/Steinbart1 of 222 C HAPTER 7 Information Systems Controls for Systems.

© 2008 Prentice Hall Business Publishing Accounting Information Systems, 11/e Romney/Steinbart1 of 222 C HAPTER 7 Information Systems Controls for Systems.
 Controls that provide security against internal and external threats  2 Types of access controls: › Physical controls › Logical controls.

 Controls that provide security against internal and external threats  2 Types of access controls: › Physical controls › Logical controls.
MJ10/07041 Session 10 Accounting, Security Management Adapted from Network Management: Principles and Practice © Mani Subramanian 2000 and solely used.

MJ10/07041 Session 10 Accounting, Security Management Adapted from Network Management: Principles and Practice © Mani Subramanian 2000 and solely used.
CSE 4482, 2009 Session 21 Personal Information Protection and Electronic Documents Act Payment Card Industry standard Web Trust Sys Trust.

CSE 4482, 2009 Session 21 Personal Information Protection and Electronic Documents Act Payment Card Industry standard Web Trust Sys Trust.
Chapter 9 Information Systems Controls for System Reliability— Part 2: Confidentiality and Privacy Copyright © 2012 Pearson Education, Inc. publishing.

Chapter 9 Information Systems Controls for System Reliability— Part 2: Confidentiality and Privacy Copyright © 2012 Pearson Education, Inc. publishing.
Controls for Information Security

Controls for Information Security
Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.

Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.
Copyright © 2015 Pearson Education, Inc. Confidentiality and Privacy Controls Chapter 9 9-1.

Copyright © 2015 Pearson Education, Inc. Confidentiality and Privacy Controls Chapter
Privilege Levels Cisco IOS provides for 16 different privilege levels ranging from 0 to 15. Cisco IOS comes with 2 predefined user levels. User mode.

Privilege Levels Cisco IOS provides for 16 different privilege levels ranging from 0 to 15. Cisco IOS comes with 2 predefined user levels. User mode.

Similar presentations

Ads by Google