









Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
An introduction to computer security, discussing the concepts of network security and information security, the importance of protecting assets, and various security services such as confidentiality, integrity, availability, authenticity, and access control. It also covers the vulnerability-threat-control paradigm and different types of security attacks, including passive and active attacks, as well as security mechanisms like decipherment, digital signatures, and access control.
Typology: High school final essays
1 / 17
This page cannot be seen from the preview
Don't miss anything!










The terms Computer security, network security and information security are often
used interchangeably.
Network security is generally taken as providing protection at the boundaries of
an organization by keeping out intruders or hackers.
Network security starts from authenticating the user, commonly with a username
and a password.
Once authenticated, a firewall enforces access policies such as what services are
allowed to be accessed by the network users.
Security services are as follow.
Confidentiality:
or systems.
from the buyer to the merchant and from the merchant to a transaction processing network.
Integrity
Availability
security controls used to protect it, and the communication channels used to access it must be
functioning correctly.
due to power outages, hardware failures, and system upgrades.
Authenticity
transactions, communications or documents are genuine.
they are.
o A Vulnerability is a weakness in the system, for example, in procedures, design,
or implementation, that might be exploited to cause loss or harm.
o
For instance, a particular system may be vulnerable to unauthorized data
manipulation because the system does not verify a user’s identity before allowing
data access.
o A threat is a breach of security which can be either natural, physical, or
accidental examples of these include flood, fire, earthquake, electrical spark,
manufacturer error, vandalism and so on.
o A threat is a set of circumstances that could cause harm.
o A threat to a computing system is a set of circumstances that has the potential to
cause loss or harm.
We can classify the security attacks as
but does not affect the system resources. The passive attackers are in the nature of
eavesdropping( secretly listen to a conversation ) on, or monitoring of transmissions with a goal of
obtaining information being transmitted.
Measures are available to prevent their success.
o
Release of message content: The process of preventing an opponent from learning the
contents of transmissions
o Traffic analysis : The process of guessing the information being transmitted by observing
the frequency and length of message being exchanged.
o Active attack : Active attacks attempts to alter system resources or affects their operation. It is
very difficult to prevent active attacks absolutely.
Decipherment : The use of mathematical algorithms to transfer the data into a form
that is not readily intelligible.
Digital signatures : Used to protect the data against forgery. Digital signature
appended to the data unit that allows a recipient of the data unit to prove the source
and integrity of the data unit.
Access Control : These mechanisms enforce access rights to resources.
Data integrity: A variety of mechanisms are used to assure the integrity of data unit.
o Authentication exchange : A mechanism intended to ensure the identity of an entity by
means of information exchange.
o Traffic padding : The insertion of bits into gaps in a data stream to control traffic
analysis attacks
o Notarization: The use of trusted third party to assure certain properties of a data
exchange.
o Routing control : Enables selection of particular physically secure routes for certain
data and allows routing changes.
Designing an algorithm for performing the security related transformation.
Generate the secret information to be used with the algorithm.
Develop a method for distribution and sharing of the secret information
Specify a protocol to be used by the two principals that make use of security
algorithm and the secret information to achieve a particular security service.
17