Académique Documents
Professionnel Documents
Culture Documents
What is Security
Dictionary.com says:
1. Freedom from risk or danger; safety.
2. Freedom from doubt, anxiety, or fear; confidence.
3. Something that gives or assures safety, as:
1. A group or department of private guards: Call building security if a visitor acts suspicious.
2. Measures adopted by a government to prevent espionage, sabotage, or attack.
3. Measures adopted, as by a business or homeowner, to prevent a crime such as burglary
or assault: Security was lax at the firm's smaller plant.
etc.
What is Security
Dictionary.com says:
1. Freedom from risk or danger; safety.
2. Freedom from doubt, anxiety, or fear; confidence.
3. Something that gives or assures safety, as:
1. A group or department of private guards: Call building security if a visitor acts suspicious.
2. Measures adopted by a government to prevent espionage, sabotage, or attack.
3. Measures adopted, as by a business or homeowner, to prevent a crime such as burglary
or assault: Security was lax at the firm's smaller plant.
etc.
What is Security
Dictionary.com says:
1. Freedom from risk or danger; safety.
2. Freedom from doubt, anxiety, or fear; confidence.
3. Something that gives or assures safety, as:
1. A group or department of private guards: Call building security if a visitor acts suspicious.
2. Measures adopted by a government to prevent espionage, sabotage, or attack.
3. Measures adopted, as by a business or homeowner, to prevent a crime such as burglary
or assault: Security was lax at the firm's smaller plant.
etc.
What is Security
Dictionary.com says:
1. Freedom from risk or danger; safety.
2. Freedom from doubt, anxiety, or fear; confidence.
3. Something that gives or assures safety, as:
1. A group or department of private guards: Call building security if a visitor acts suspicious.
2. Measures adopted by a government to prevent espionage, sabotage, or attack.
3. Measures adopted, as by a business or homeowner, to prevent a crime such as burglary
or assault: Security was lax at the firm's smaller plant.
etc.
Provide
Ex: AFS
Guarantee
availability of resources
Who is vulnerable?
Financial
Security Goals
Generally there a three security goals: confidentiality,
integrity and availability
Confidentiality
Confidentiality,
keeping
information
secret
from
unauthorized access, is probably the most common aspect of
information security: we need to protect confidential
information. An organization needs to guard against those
malicious actions that endanger the confidentiality of its
information.
Integrity
Information needs to be changed constantly. In a bank, when
a customer deposits or withdraws money, the balance of their
account needs to be changed. Integrity means that changes
should be done only by authorized users and through
authorized mechanisms.
Availability
The third component of information security is availability.
The information created and stored by an organization needs
to be available to authorized users and applications.
Information is useless if it is not available. Information needs
to be changed constantly, which means that it must be
accessible to those authorized to access it. Unavailability of
information is just as harmful to an organization as a lack of
confidentiality or integrity. Imagine what would happen to a
bank if the customers could not access their accounts for
transactions.
Attacks
Security services
Standards have been defined for security services to achieve
security goals and prevent security attacks. Figure shows the
taxonomy of the five common services.
Security services
Techniques
The actual implementation of security goals needs some help
from mathematics. Two techniques are prevalent today: one
is very generalcryptographyand one is specific
steganography.
Cryptography
Some security services can be implemented using
cryptography. Cryptography, a word with Greek origins,
means secret writing.
Steganography
The word steganography, with its origin in Greek, means
covered writing, in contrast to cryptography, which means
secret writing.