1 / 19

Information System Security

Information System Security. Information Security. E-business automatically creates tremendous information security risks for organizations Two Lines of Defense: People Technology. THE FIRST LINE OF DEFENSE - PEOPLE. What percentage of security incidents originate within organizations?

paley
Download Presentation

Information System Security

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Information System Security

  2. Information Security E-business automatically creates tremendous information security risks for organizations Two Lines of Defense: People Technology

  3. THE FIRST LINE OF DEFENSE - PEOPLE What percentage of security incidents originate within organizations? 33% of security incidents originate within the organization • Insiders – legitimate users who purposely or accidentally misuse their access to the environment and cause some kind of business-affecting incident

  4. THE SECOND LINE OF DEFENSE - TECHNOLOGY There are three primary information technology security areas • Authentication and authorization (proactive) • Prevention and resistance (proactive) • Detection and response (reactive)

  5. Authentication and Authorization Authentication– a method for confirming users’ identities Authorization – the process of giving someone permission to do or have something The most secure type of authentication involves: • Something the user knows such as a user ID and password • Something the user has such as a smart card or token • Something that is part of the user such as a fingerprint or voice signature

  6. Something That Is Part Of The User Such As a Fingerprint or Voice Signature This is by far the best and most effective way to manage authentication • Biometrics– the identification of a user based on a physical characteristic, such as a fingerprint, iris, face, voice, or handwriting Unfortunately, this method can be costly and intrusive

  7. Prevention and Resistance Downtime can cost an organization anywhere from $100 to $1 million per hour Technologies available to help prevent and build resistance to attacks include: • Content filtering • Encryption • Firewalls

  8. Content Filtering Organizations can use content filtering technologies to filter e-mail and prevent e-mails containing sensitive information from transmitting and stop spam and viruses from spreading. • Content filtering– occurs when organizations use software that filters content to prevent the transmission of unauthorized information • Spam – a form of unsolicited e-mail • Corporate losses caused by Spam

  9. Encryption - scrambles the contents of a file so that you can’t read it without having the right decryption key.

  10. Firewalls Sample firewall architecture connecting systems located in Chicago, New York, and Boston

  11. Detection and Response If prevention and resistance strategies fail and there is a security breach, an organization can use detection and response technologies to mitigate the damage Antivirus software is the most common type of detection and response technology

  12. Detection and Response Hacker- people very knowledgeable about computers who use their knowledge to invade other people’s computers • White-hat hacker (Steve Wozniak: Co-founder of Apple) • Black-hat hacker (Jonathan James: At 16 broke into Pentagon Computers – stole the International Space Station’s source code)

  13. Detection and Response • Script kiddies or script bunnies (Michael Calce: DOS to Yahoo, eBay, CNN, etc.) • Cracker (Kevin Poulson: hacked Into FBI) • Cyberterrorist (YounisTsouli: plotted terrorist attack using Internet Sites)

  14. Detection and Response Virus: software written with malicious intent to cause annoyance or damage BOTS: • Worm(A computer worm is a self-replicating computer program. It uses a network to send copies of itself to other nodes (computers on the network) and it may do so without any user intervention) • Denial-of-service attack (DoS) • Distributed denial-of-service attack (DDoS) • Trojan-horse virus (A term used to describe malware that appears to the user to perform a desirable function but, in fact, facilitates unauthorized access to the user's computer system) • Backdoor program (method of bypassing normal authentication, securing remote access to a computer, obtaining access to plaintext, and so on, while attempting to remain undetected)

  15. What does a Bot do? Bots can remain dormant for weeks or months at a time 60% of bots are used to send spam The other 40% for more destructive reasons: including phishing, pharming, click fraud, distributing adware or malware, denial-of-service attacks, data theft, and temporarily storing illegal malicious, or stolen files

  16. How do you get a Bot? Most bots are installed due to Human Error. • Through Operating system or application vulnerabilities from not updating security. • Dictionary attacks that guess passwords • Files downloaded via Email • Instant Messaging • Peer-to-Peer applications for downloading • Pre-existing back doors created by viruses • Exploit code aimed at specific networks like: • PC’s • Cell Phones • Ipods • Once bots are installed they can update themselves or install other malicious software.

  17. Thinking of Making Money Using Bots? Think Again Jeanson James Ancheta Downey, California 20 years old Made a worm that let him turn computers into bots for profit ($60,00) Bot infected China Lake Naval Air Weapons Station in California Now faces 25 years in prison and a $1 Million dollar fine Do the math: $1,000,000 > $60,000

  18. People Who Didn’t Do the Math? Anthony Scott Clark (21 years old from Beaverton, Oregon): Attacked eBay (DOS) - 10 Years in Prison and $250,00 in fines SaadEchouafni (head of a satellite communications company): Disrupted Homeland Security • Fugitive since 2004 and on FBI’s Most Wanted Jefferey Lee Parson (18 years old): Infected 48,000 home PC’s • 14 – 18 month sentence

  19. White Collar Criminals: FBI’s 10 Most Wanted • http://www.cnbc.com/id/44991262

More Related