cyber security course, Study notes of Computer science

1. Interactive Cybersecurity Awareness Guide Design a document that includes quizzes, checklists, and real-life scenarios. Add sections like “Can You Spot the Phish?” or “Choose Your Security Adventure.” Include infographics and step-by-step guides for common security tasks.

Typology: Study notes

2024/2025

Available from 07/07/2025

raj-joshi-4
raj-joshi-4 🇮🇳

3 documents

1 / 73

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
1 cyber security
Module 1
learning outcomes
Having completed this module you will be able to:
Define cybersecurity and explain its importance.
Outline types of cybersecurity threats and common attack vectors.
Explain the fundamentals of network security and list its components.
Identify key network protocols and their vulnerabilities.
Explain firewall technologies and intrusion detection systems.
Discuss operating system security principles.
Identify security mechanisms in operating systems.
Describe secure configuration and hardening of operating system
Introduction to Cybersecurity
This topic will introduce you to cybersecurity.
Topics to Be Covered:
Understanding the basics of cybersecurity.
Importance of cybersecurity.
Cybersecurity in the digital age.
Why is cybersecurity important?
Cybersecurity in the digital age: more relevant than ever.
Overview of cyber threats and attack vectors.
Common attack vectors.
Legal and ethical considerations in cybersecurity.
Understanding the Basics of Cybersecurity
Definition of Cybersecurity
Cybersecurity refers to the practice of safeguarding computer systems, networks,
and digital information from any unwarranted access, use, disclosure, disruption, or
destruction.
This involves taking various measures and technologies in place to secure
computers servers mobile devices electronic systems data against cyber threats
such as hacking malware phishing ransomware other forms of attacks such as
ransomware etc.
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25
pf26
pf27
pf28
pf29
pf2a
pf2b
pf2c
pf2d
pf2e
pf2f
pf30
pf31
pf32
pf33
pf34
pf35
pf36
pf37
pf38
pf39
pf3a
pf3b
pf3c
pf3d
pf3e
pf3f
pf40
pf41
pf42
pf43
pf44
pf45
pf46
pf47
pf48
pf49

Partial preview of the text

Download cyber security course and more Study notes Computer science in PDF only on Docsity!

Module 1 learning outcomes Having completed this module you will be able to:  Define cybersecurity and explain its importance.  Outline types of cybersecurity threats and common attack vectors.  Explain the fundamentals of network security and list its components.  Identify key network protocols and their vulnerabilities.  Explain firewall technologies and intrusion detection systems.  Discuss operating system security principles.  Identify security mechanisms in operating systems.  Describe secure configuration and hardening of operating system Introduction to Cybersecurity This topic will introduce you to cybersecurity. Topics to Be Covered:  Understanding the basics of cybersecurity.  Importance of cybersecurity.  Cybersecurity in the digital age.  Why is cybersecurity important?  Cybersecurity in the digital age: more relevant than ever.  Overview of cyber threats and attack vectors.  Common attack vectors.  Legal and ethical considerations in cybersecurity.  Understanding the Basics of Cybersecurity Definition of Cybersecurity  Cybersecurity refers to the practice of safeguarding computer systems, networks, and digital information from any unwarranted access, use, disclosure, disruption, or destruction. This involves taking various measures and technologies in place to secure computers servers mobile devices electronic systems data against cyber threats such as hacking malware phishing ransomware other forms of attacks such as ransomware etc.

Importance of Cybersecurity  At present, cybersecurity holds enormous value as we become ever more dependent on digital technology to perform daily tasks. The greater risks from cyber threats include significant financial loss, damage to an individual or organisation's reputation, loss of sensitive data or threats to national security. Such in breaches in security measures being exploited make fully understanding and implementing the process for cybersecurity measures imperative for today Cybersecurity in the Digital Age  The Digital Age: A New Frontier  The digital or information age is an era in human history defined by an economic shift away from traditional manufacturing towards an economy reliant on information technology. Today we live more connected than ever before as data is produced, stored, shared, and accessed across computers, mobile phones and cloud platforms worldwide. While our connected and data-driven world provides many conveniences and advancements, it also presents numerous risks and vulnerabilities which necessitate the implementation of cybersecurity practices to safeguard us all. Therefore, its significance cannot be underrated. Why is Cybersecurity Important?

  • One of the key functions of cybersecurity is protecting sensitive data - be it personal details of individuals, intellectual property of businesses, or classified government files - which may otherwise be compromised in some manner and lead to serious monetary and reputational loss if breached.
  • Strong cybersecurity measures must be in place in order to keep unauthorised individuals away from systems and networks - including hackers looking for data theft opportunities as well as disgruntled employees with plans of disrupting services.
  • Cyberattacks have the power to severely disrupt digital systems, like websites. An attack like DDoS could render them unavailable causing substantial loss in business revenue and sales.
  • Many regions have laws and regulations in place which mandate businesses to protect customer and employee personal data; failure to do so could incur substantial fines or penalties. More Relevant Than Ever Cybersecurity in today's digital environment continues to rise for multiple reasons:
  1. Increased Cybercrime: As we become increasingly dependent upon technology, so does cybercrime. Cybercriminals have become more sophisticated as has their reward for conducting crime online.
  1. Distributed Denial of Service Attacks When engaged in, DDoS attacks use brute-force traffic attacks against networks or websites in an effort to render it unavailable for user use.
  2. SQL Injection In an SQL Injection attack, attackers take advantage of vulnerabilities in web application's database query software in order to gain unauthorised access to information.
  3. Zero-Day Exploits Zero-day exploits are cyber attacks which strike upon discovering any weakness in software, often on its very first day of discovery. Because most affected parties remain unaware of it until much later, exploits may remain for days, weeks, or even months until being patched by those with the best protection plans in place. What are Attack Vectors? An attack vector is any route through which an attacker gains unauthorised entry to a computer or network with malicious intentions and delivers their payload or payoff. Attack vectors allow hackers to exploit system vulnerabilities - including human ones - by exploiting human vulnerabilities as part of an offensive strategy. Common Attack Vectors
  4. Email and Phishing Email has emerged as a primary attack vector, with phishing being one of the more popular attack techniques used against users. Attackers typically pose as trusted organisations to lure recipients into clicking malicious links or downloading infected attachments from an email sent from them.
  5. Web Attackers may exploit vulnerabilities in web applications to gain unauthorised access or spread malware, either via SQL injection, cross-site scripting (XSS), or simply uploading files with malware onto them.
  6. Social Engineering Social engineering involves deceiving or coercing individuals into divulging confidential information through various techniques like phishing, pretexting, baiting and tailgating.
  7. Physical Media

Attackers often employ physical devices such as USB flash drives to gain entry to systems and compromise them. Leaving such seemingly innocent items lying about makes for easier compromise by attackers who will soon discover it and exploit its vulnerabilities.

  1. Unpatched Software Software with known vulnerabilities that has yet to be patched can provide attackers with easy entry points into networks containing zero-day attacks, making exploitation an attractive prospect. Understanding cyber threats and attack vectors used by cybercriminals is essential for cybersecurity. When exploring this subject further, remember: awareness is power! By becoming better acquainted with potential dangers we will have better chances at protecting ourselves against future attacks. Legal and Ethical Considerations in Cybersecurity So far we've discussed the essentials of cybersecurity - its purpose, importance and the various threats and attack vectors it is vulnerable to - but now let's turn our focus onto legal and ethical considerations surrounding this area of research. Understanding Cybersecurity Laws Cybersecurity laws refer to legislation and statutes related to internet usage by individuals, businesses and governments alike. Their aim is to safeguard users against online crime while outlining legal processes that should be undertaken following any potential cyber breaches or incidents. Ethical Considerations in Cybersecurity Legal requirements aside, ethical considerations also play a pivotal role in cybersecurity. Ethical considerations often revolve around what actions would constitute the "right" or "good" course of action in any particular circumstance. Here are some of the major ethical concerns for cybersecurity:
    1. Privacy: When protecting systems and data, cybersecurity professionals often gain access to sensitive personal or organisational data which should remain private and

 Fundamentals of Network Security  What Is Network Security (NS)?  Network security refers to practices and policies implemented to detect, deter and monitor any unlawful access, misuse, modification, or denial of computer networks and related resources in an effort to safeguard infrastructure as well as data. The goal is securing these vital components of an efficient digital society.  Why Is Network Security Essential?   With organisations becoming ever more interconnected, vulnerabilities within network connections increase exponentially; thus making network security an essential aspect of cybersecurity. Network security protects user data while guaranteeing usability, reliability and integrity within a network infrastructure from threats such as malware, ransomware, phishing or denial-of-service (DoS) attacks.  Components of Network Security  Network security entails multiple layers of defences at both the edge and in the network, each layer implementing policies and controls designed to allow only authorised users access to network resources while keeping malicious actors away. Key elements include:  1. Access Control  This is used to control who can access the network. It effectively keeps unauthorised persons out while granting access to authorised users.  2 Antivirus and Antimalware Software  Antivirus and antimalware software is intended to defend against malware such as viruses, ransomware, worms, trojans and spyware.  3. Firewalls  Firewalls act as barriers between an internal network and external networks (typically the internet) which help block malicious traffic while permitting legitimate traffic through.  4. Virtual Private Networks  VPN enables secure connections over the internet between networks. A VPN provides privacy when browsing over public WiFi networks or public Wi-Fi hotspots - an additional layer of protection.  5. Intrusion Prevention Systems (IPS)  These systems identify fast-spreading threats, such as zero-day or zero-hour attacks.

  1. Security Information and Event Management (SIEM)  These tools allow IT teams to centrally manage and see events related to security, as well as enable incident response and report generation for compliance purposes.  7. Email Security  Given that email is a common attack vector, email security solutions can block incoming attacks and control outbound messages to prevent the loss of sensitive data.  Network security is crucial in today's interconnected world to protect sensitive data and prevent disruptions to service. It involves multiple strategies, policies, and tools working together to provide comprehensive protection. Remember, network security is like a fort. Your defensive walls must be strong, yet have an exit plan if they are breached.  Network Protocols and Their Vulnerabilities  What are Network Protocols?  Network protocols are rules designed to facilitate data communication among computers and devices in a network, and to facilitate its data packet delivery smoothly from source to destination. There are various network protocols, each catering to certain purposes and operating at various layers of a networking model. Some key ones include HTTP(S), FTP, SMTP, DNS and TCP/IP among many more.  Understanding Key Protocols and Their Vulnerabilities  1. HTTP and HTTPS (HyperText Transfer Protocol and HTTP Secure):  These two protocols allow web users to transfer data over an unsecured channel; any information can be intercepted and exploited during transmission. HTTPS offers more protection by using encryption technology to secure its message transmission; however, improper configuration can leave HTTPS vulnerable to attacks such as "SSL stripping", whereby an attacker downgrades communication from HTTPS back down to HTTP in order to intercept information being transferred between hosts.  Network Protocols and Their Vulnerabilities  2. FTP (File Transfer Protocol)  FTP is used for sending files between client and server, but lacks encryption which leaves sensitive data vulnerable to interception. As an alternative, its secure counterpart, SFTP uses SSH-based encryption instead.  3. SMTP (Simple Mail Transfer Protocol)  Used for sending emails, this protocol can easily be compromised to send spam or phishing attacks. Without adequate protections in place, its vulnerability could allow any number of unwanted senders access.  4. DNS (Domain Name System)

 Stateful Inspection Firewall: Also known as dynamic packet filtering, this firewall keeps track of active connections and only allows traffic through if it's part of an already-established connection.  Proxy Firewall: Proxy firewalls operate at the application layer, filtering traffic between two systems by invoking a service request on behalf of one system.  Next-Generation Firewall (NGFW): These firewalls include functions of traditional firewalls plus other network device filtering functionalities, such as intrusion prevention, SSL and SSH inspection, deep-packet inspection, and reputation-based malware detection. What is an IDS? An Intrusion Detection System (IDS) monitors network traffic for any suspicious activities that could indicate potential intrusion attempts and sends alerts when such activity is spotted. While IDS's are highly efficient at spotting anomalies, they cannot prevent intrusion attempts themselves from taking place. Types of Intrusion Detection Systems Intrusion Prevention Systems (IPS)

  1. Network Intrusion Detection Systems (NIDS): These can be strategically installed into networks to monitor all traffic moving in or out, between all devices connected.
  2. Host Intrusion Detection Systems (HIDS): These run on all computers or devices in the network with direct access to both the internet and the enterprise internal network.
  3. Anomaly-Based IDS: This type of IDS uses machine learning to create a trusted baseline and then compares new behaviour against this baseline. If the behaviour deviates significantly, the IDS triggers an alert.
  4. Signature-Based IDS: This type of IDS uses predefined signatures to detect known threats. Intrusion Prevention Systems (IPS) Intrusion Prevention Systems (IPSs) serve as an extension to IDSs by stopping attacks themselves. An active system, an IPS can detect intrusive activity while taking steps to block users or sources. Firewalls and intrusion detection systems play an integral part in an effective network security plan. By understanding their strengths and limitations, firewalls and IDS can better defend against various cyber threats to help defend your network more efficiently from cyber criminals and potential attacks.

Remember, cybersecurity should not be considered an immediate fix but an ongoing process! Virtual Private Networks/Secure Remote Access What is a VPN? Virtual Private Network (VPN) technology creates a secure tunnel between your device and either the network at work or an Internet server, effectively creating an extension of private networks across public ones to allow users to send and receive data as though their computing devices were directly linked into them. Why is VPN Important? VPNs are crucial for preserving privacy and securing data exchange in a world where data breaches and surveillance are significant concerns.  Encryption: VPN provides strong encryption to ensure that even if cybercriminals intercept data they cannot read it.  Anonymity: VPN can mask your IP address, making your online actions virtually untraceable.  Remote Access: VPNs provide a secure way for remote employees to access necessary resources on their company's network Understanding Secure Remote Access Secure remote access refers to any method by which an individual may connect securely with a network from outside its location - this may involve VPNs but could also involve using other strategies and tools. Ensuring secure remote access is crucial in protecting your network. This involves several elements:  Authentication: Ensure only authenticated users can gain entry to a network using passwords or alternative methods like biometric verification and multi-factor authentication.  Authorization: This involves managing user permissions, so users can only access the data and systems they need for their work.  Encryption: As mentioned above, encryption involves encoding data so it cannot be read if intercepted and read by third parties.  Monitoring: Continuously monitoring network activity can help identify any unusual or suspicious behaviour that might signal a security breach

systems and processes alike. Should an attacker gain entry, PoLP limits their potential damage. Principle 2: Principle of Defense in Depth Defence in Depth refers to using multiple security measures to defend one asset; that way if one measure fails, others remain intact - for instance a strong OS security strategy could include firewalls, antivirus software and regular system updates. Principle 3: Fail-Safe Stance The fail-safe stance principle stipulates that should any system or function fail in an unsafe way, its failure should occur in such a way as to minimise possible harm or disruption - for instance if verification function failure were to occur and requests weren't denied by system instead of approved, as per this theory. Principle 4: Separation of Duties Separation of duties (SoD) is a concept that helps prevent fraud and error. This principle asserts that a task typically engaged in fraud should be broken into separate steps, each requiring different individuals. In an OS, key system administrative tasks can be distributed among multiple roles to prevent misuse. Principle 5: Security by Design Security by design refers to incorporating security protocols and tools into an OS during its design phase instead of trying to add them post-buildup. Building security from day one often proves easier and more effective. Security Mechanisms in Operating Systems  Authentication: Identify verification is the process of authenticating users, processes or devices on an operating system, typically through username and password authentication; more advanced systems might also use biometric information or security tokens as methods of confirmation.  Access Control: An access control mechanism within an OS is designed to regulate access to certain resources within it by following certain rules that determine who or what can access which resources.  Encryption: Encryption can protect information stored within an OS as well as data being transmitted into or out of it.  Audit and Logging: Monitoring system activities is important in detecting any irregular or suspicious activities on an operating system (OS), from user log-in/out sessions and file access events to special notifications such as suspicious email communications. OS keeps logs of these and many more activities for your review. Operating system security is at the core of overall cybersecurity, making up one of its three pillars. Understanding its principles is vital in creating and maintaining secure systems; next we'll delve deeper into specific ways we can secure different operating systems like Windows, Linux and MacOS.

Remember, any system is only as safe as its weakest link; even minor breaches in OS security could give cybercriminals an entryway into your OS and provide opportunities for attacks. Therefore, always remain alert and strive to learn. Secure Configuration and Hardening of OS Hardening of an operating system comes into play after installation as many features which, although useful, could create potential vulnerabilities if left unsecured. Hardening provides one way of protecting these features against being misused. What is OS Hardening? OS hardening is the process of securing an operating system by reducing its surface of vulnerability. This is achieved by configuring the OS securely, turning off unnecessary services, deleting unused accounts, keeping the system updated, and applying the necessary security patches. Secure Configuration Step one in hardening an OS is configuring it securely. While the exact process varies based on which OS is being used, here are some general steps:

  1. Removing Unused Software and Services: Every program and service running on an OS represents an entry point for an attacker; to lower this risk, any unnecessary programs and services should be removed to lower the risk.
  2. Managing User Accounts: Be certain all default passwords have been changed with strong, unique ones that limit administrative privileges to only as many accounts.
  3. Install Firewalls and Intrusion Detection Systems: These essential security tools help keep threats awa Hardening Techniques Here are some standard techniques used in hardening an OS:  Regularly applying updates and patches is one of the simplest and most effective ways to secure an OS. These updates often contain fixes for known vulnerabilities.  Operates on the principle of least privilege (PoLP), giving users and processes the minimum levels of access they need to accomplish their tasks.  Implement security policies like password complexity requirements, account lockouts for repeated failed login attempts, and regular password changes.  Regular system monitoring helps identify potential security threats. OS-Specific Hardening  Different operating systems have different security needs and vulnerabilities. Here's a brief overview for the three most common OS:  Windows: Take advantage of features like Windows Defender Firewall and BitLocker drive encryption to safeguard against security misconfigurations, while regularly using Windows Update and the Microsoft Baseline Security Analyzer as updates become available.  MacOS: Use the built-in firewall and FileVault drive encryption. Regularly update the system through the App Store, and consider using the built-in Malware Removal Tool.

 Use Two-Factor Authentication (2FA): 2FA greatly increases account security by requiring a second form of identification.  Regularly Review Accounts and Privileges: Regularly check for outdated or excessive privileges and inactive accounts.  Train Users: Educate users about secure behaviour, such as not sharing passwords, recognizing phishing attempts, and reporting suspected security incidents. User and account administration is essential in developing an effective cybersecurity plan. By carefully controlling access to your systems, user and account administration allows you to greatly decrease both internal and external security incidents. Patch Management and Vulnerability Assessment What is Patch Management? Patch management refers to the practice of disseminating and applying updates, or patches, to software applications and technologies. Patches serve various functions ranging from fixing software bugs and improving functionality to eliminating security vulnerabilities that pose threats against our organisation. Why is Patch Management Important? Maintaining an effective patch management process is vitally important, for various reasons:

  1. Reducing Vulnerabilities: Patches often resolve known security vulnerabilities that could otherwise be exploited by cybercriminals.
  2. Maintaining Compliance: Many regulatory standards require that software be kept up- to-date.
  3. Improving Functionality: Patches often also include enhancements and new features that can improve productivity and the user experience. What is Vulnerability Assessment? Vulnerability assessment refers to identifying, quantifying and prioritising (or ranking) vulnerabilities within an organisational system in order to provide them with all of the knowledge needed to address and mitigate risks more proactively. Why is Vulnerability Assessment Important?
  4. Identification of Weaknesses: Vulnerability Assessments help uncover vulnerabilities within your systems before they can be exploited by attackers.
  5. Prioritising Resources: By ranking vulnerabilities based on severity, assessments help organisations prioritise their remediation efforts.
  6. Maintaining Compliance: Regular vulnerability assessments can be a requirement of regulatory compliance standards. Understanding and following best practices for patch management and vulnerability assessments will significantly lower cybersecurity risks for businesses of all types and sizes. Staying secure shouldn't be treated like a one-time task but as part of an ongoing journey

Patch Management - Best Practices  Keep a comprehensive inventory of all systems and applications which require patching.  Prioritise patches based on the severity of the vulnerabilities they resolve.  Test patches in a controlled environment before deployment to ensure they don't introduce new problems.  Schedule patching during off-peak hours to minimise disruption.  Automate the patch management process as much as possible to ensure patches are applied promptly and consistently. Vulnerability Assessment Best Practices  Conduct vulnerability scans regularly, not just once.  Use automated tools to help identify known vulnerabilities.  After a vulnerability assessment, act promptly to address identified vulnerabilities.  Include hardware, software, and human factors in your vulnerability assessments.  Vulnerability assessment should not be seen as a one-off event but as part of your cybersecurity plan's long-term implementation strategy. Lesson Summary  Cybersecurity refers to the practice of safeguarding computer systems, networks, and digital information from any unwarranted access, use, disclosure, disruption, or destruction. At present, cybersecurity holds enormous value.  Understanding cybersecurity fundamentals is the first step toward protecting yourself or your business against potential cyber threats.  One of the key functions of cybersecurity is protecting sensitive data - be it personal details of individuals, intellectual property of businesses, or classified government files.  As we progress into a digital society, cybersecurity will remain at the centre of discussions.  An attack vector is any route through which an attacker gains unauthorised entry to a computer or network with malicious intentions and delivers their payload or payoff.  Network security refers to practices and policies implemented to detect, deter and monitor any unlawful access, misuse, modification, or denial of computer networks and related resources in an effort to safeguard infrastructure as well as data.  Network security is crucial in today's interconnected world to protect sensitive data and prevent disruptions to service.

  1. Decryption: Decryption refers to the process of turning encrypted text back into plaintext format.
  2. Cryptanalysis: This is the study of analysing and deciphering encrypted data without having prior knowledge of the algorithm or the key used in the encryption.
  3. Types of Cryptographic Algorithm
  4. Cryptography involves various algorithms to perform the encryption and decryption processes. The main types include: 6. Symmetric-Key Cryptography With this approach, both sender and recipient share one secret key used to encrypt and decrypt their message, keeping their identities hidden from third parties. A widely known example is Data Encryption Standard as well as its upgraded variant AES which use this technique Asymmetric-Key Cryptography More commonly referred to as public key cryptography, this approach utilises two keys - one public and the other private. A sender uses their recipient's public key for encryption while their private key decrypts it; an algorithm such as Rivest-Shamir-Adleman can often be seen being utilised within this form.
  5. Hash Functions Hash functions offer another alternative to encryption techniques that doesn't involve keys - instead generating a fixed length hash value from plaintext that makes retrieving its original message nearly impossible. MD5 and SHA-1 are two commonly-used hash functions. Key Terms in Cryptography  Cipher: An algorithm designed for performing encryption or decryption.  Key: Information used by the cipher that only knows by the sender and recipient in order to encrypt and decrypt messages.  Plaintext: The original, readable message.  Ciphertext: The encrypted message which is not readable or understandable until it is decrypted. Cryptography plays an integral part of modern data protection systems. While cryptography studies can be complex, they play an essential part in cybersecurity education and must be included as such in all student curriculums. Public Key Infrastructure and Digital Certificates What is Public Key Infrastructure (PKI)? PKI refers to a set of roles, policies, hardware, software and procedures needed for creating, managing, distributing, using, storing and revoking digital certificates. Asymmetric

cryptography relies on two keys for encryption and decryption - public for public key encryption while private for decryption. PKI provides a framework that facilitates functions like digital signature, encryption and authentication - essential capabilities that verify data integrity and source, providing secure transactions and communications online. Key Components of PKI:  Digital Certificates: These are electronic 'passwords' that allow a party receiving certain information to decode content encrypted by the party who originally sent the info.  Certificate Authorities (CAs): Certificate Authorities provide trusted third-party digital certificates by verifying identity and associating cryptographic keys to users who apply for them.  Certificate Store: This is a storage space for digital certificates.  Key Pair (Public and Private Keys): These mathematically related keys must remain secret, while their public counterpart can be freely made accessible for anyone to use. What are Digital Certificates? Digital certificates are electronic documents created using digital signature technology to link a public key with its identity, providing proof that an individual owns them. Under most PKI schemes, a certificate authority (CA), often an organisation charged by customers to issue them certificates, is the issuer of certificates for them. Digital Certificates typically contain:  Owner's public key.  Owner's name.  Expiration date of the public key.  Name of the issuer.  Serial number of the Digital Certificate.  Digital signature of the issuer. Applications of PKI and Digital Certificates

  1. Secure Email: PKI is used to secure email communication, providing assurance that the message came from a known sender and that it wasn’t tampered with.
  2. Secure Network Access: PKI provides secure remote access to global information over untrusted networks.
  3. Document Signing: Digital signatures use PKI technology to secure and authenticate the data. Public Key Infrastructure and digital certificates play an vital role in secure online communication and transactions, enabling verification of authenticity and integrity for data sent over networks, thus becoming essential components of modern cybersecurity solutions. Cryptographic Protocols