Presentation is loading. Please wait.

Presentation is loading. Please wait.

ISNE101 Dr. Ken Cosh Week 14. This Week  Challenges (still) facing Modern IS  Reliability  Security.

Published byErika Gibson Modified over 9 years ago

Similar presentations

Presentation on theme: "ISNE101 Dr. Ken Cosh Week 14. This Week  Challenges (still) facing Modern IS  Reliability  Security."— Presentation transcript:

1 ISNE101 Dr. Ken Cosh Week 14

2 This Week  Challenges (still) facing Modern IS  Reliability  Security

3 Reliability  Redundancy is the Key!  Spare components  Components running in parallel  Triple Modular Redundancy  Identify unreliable components and arrange back ups.  UPS  Multiple ISPs

4 Security  Data stored digitally & transmitted through networks == Greater security threats.  After all digital data can be copied more easily

5 Security Threats Unauthorised Access Errors Viruses/Worms Spyware Tapping Sniffing Message Alteration Theft/Fraud Hacking Vandalism DoS attacks Theft/Copy Data Hardware/Software Failure

6 Malware (Malicious Software): Viruses / Worms / Trojans / Spyware  Virus  Display message -> destroying data  Spread by human action;  i.e. sending infected email, or copying a file  Worms  Don’t need human action;  Copy themselves across network on their own.  Destroy data / Disrupt network

7 Malware (Malicious Software): Viruses / Worms / Trojans / Spyware  Trojan Horses  Software appears benign, but then does something unexpected  Doesn’t replicate (so not a virus), but may facilitate viruses  Spyware  Program installs itself and then serves up advertising  Keyloggers record all keystrokes – including passwords / CC numbers etc.  Some spyware uses up memory / redirect search requests / reset browser home page

8 Hackers & Computer Crime  Objective: to gain unauthorised access  Steal information  System damage  Cybervandalism  Defacing websites

9 Spoofing / Sniffing  Spoofing  Masquerade as someone else  drkencossh@gmail.com drkencossh@gmail.com  Redirect you to similar webpage  www.hsbc.net www.hsbc.net  Sniffing  Eavesdropping on data passed through a network  Legitimately to identify trouble spots / criminal activity  But also to steal information  V. difficult to detect

10 DoS Attacks  Denial of Service  DDoS – Distributed Denial of Service  Fake communications / requests submitted simultaneously through network to slow it down and prevent legitimate usages.

11 Identity Theft  Perhaps by Phishing  Asking users for confidential data through fake emails/websites  “Please update your records…”  Or Evil Twins  I could set up a “trustworthy” wifi network connection in a hotel lobby

12 Countering the Threats  Tight Security Policies  Access Control  Authentication  Password  Biometrics  Firewalls  Anti Virus  Encryption

13 Security Policies  Access Control Lists (ACL)  Limit which users can do what (e.g. update websites)  Signed agreements for service  When allowing users onto a network, normally they sign an agreement, regarding terms of use.  Noticeably none at Payap / CMU?  Policies could include,  Regular password changes  Whether personal use of service is permitted  Antivirus updates  Can help against, external attacks, intrusion, virus / worms

14 Encryption  Encoding the contents of a transmission so it can’t be decrypted on route.  Symmetric-key encryption  Public / Private key encryption  Helps prevent interception.

15 Symmetric Key Encryption  Both sender and receiver use the same ‘code’ to encrypt and then decrypt a message.  If I tell you to move each character back two in the alphabet, and then send you this message;  Jgnnq Encuu  Anyone who intercepts the message gets nothing, but you are able to decrypt it.  More interesting patterns can be created to increase security.  Substitution  Transposition Key: FANCY Message: eatitnihmexnetmgmedt

16 Decoding

Download ppt "ISNE101 Dr. Ken Cosh Week 14. This Week  Challenges (still) facing Modern IS  Reliability  Security."

Similar presentations

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.
Thank you to IT Training at Indiana University Computer Malware.

Thank you to IT Training at Indiana University Computer Malware.
What are computer viruses and its types? Computer Viruses are malicious software programs that damage computer program entering into the computer without.

What are computer viruses and its types? Computer Viruses are malicious software programs that damage computer program entering into the computer without.
Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.

Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.
1 MIS 2000 Class 22 System Security Update: Winter 2015.

1 MIS 2000 Class 22 System Security Update: Winter 2015.
Mod H-1 Examples of Computer Crimes. Mod H-2 Stuxnet.

Mod H-1 Examples of Computer Crimes. Mod H-2 Stuxnet.
7.1 Copyright © 2011 Pearson Education, Inc. 7 Chapter Securing Information Systems.

7.1 Copyright © 2011 Pearson Education, Inc. 7 Chapter Securing Information Systems.
The Ecommerce Security Environment For most law-abiding citizens, the internet holds the promise of a global marketplace, providing access to people and.

The Ecommerce Security Environment For most law-abiding citizens, the internet holds the promise of a global marketplace, providing access to people and.
James Tam Computer Security Concepts covered Malicious computer programs Malicious computer use Security measures.

James Tam Computer Security Concepts covered Malicious computer programs Malicious computer use Security measures.
Malicious Attacks By: Albert, Alex, Andon, Ben, Robert.

Malicious Attacks By: Albert, Alex, Andon, Ben, Robert.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Copyright © 2002 Pearson Education, Inc. Slide 5-1 PERTEMUAN 8.

Copyright © 2002 Pearson Education, Inc. Slide 5-1 PERTEMUAN 8.
Lecture 11 Reliability and Security in IT infrastructure.

Lecture 11 Reliability and Security in IT infrastructure.
Quiz Review.

Quiz Review.
Dr. Ken Cosh.  Outsourcing  Managing Information Systems  Dependency  Reliability  Security  Ethics.

Dr. Ken Cosh.  Outsourcing  Managing Information Systems  Dependency  Reliability  Security  Ethics.
Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.

Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.
Internet Safety CSA 105 1.0 September 21, 2010. Internet Threats Malware (viruses) Spyware Spam Hackers Cyber-criminals.

Internet Safety CSA September 21, Internet Threats Malware (viruses) Spyware Spam Hackers Cyber-criminals.
Video Following is a video of what can happen if you don’t update your security settings! security.

Video Following is a video of what can happen if you don’t update your security settings! security.
Viruses & Security Threats Unit 1 – Understanding Computer Systems JMW 2012.

Viruses & Security Threats Unit 1 – Understanding Computer Systems JMW 2012.

Similar presentations

Ads by Google