Security presentation


Published on

Computer Apps Security Presentation

Published in: Education, Technology
1 Like
  • Be the first to comment

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide

Security presentation

  1. 1. Computer Security Risks What is a computer security risk?  Event or action that causes loss of or damage to computer systemClick to view WebLink, click Chapter 11, ClickWeb Link from leftnavigation, then clickComputer EmergencyResponse Team CoordinationCenter below Chapter 11 p. 556 - 558 Fig. 11-1 Next
  2. 2. Internet and Network Attacks What are viruses, worms, and Trojan horses? Virus is a Worm copies Trojan horse hides Payload potentially itself repeatedly, within (destructive damaging using up or looks like event) that is computer resources legitimate delivered when and possibly program shutting down program until you open file, run computer or triggered infected program, network or boot computer Does not with infected disk Can spread in disk drive replicate and itself on damage other files computersp. 558 Next
  3. 3. Internet and Network Attacks How can a virus spread through an e-mail message? Step 1. Unscrupulous Step 2. They use programmers create a virus the Internet to send program. They hide the the e-mail message virus in a Word document to thousands of and attach the Word users around the document to an e-mail world. message. Step 3b. Other users do not recognize the name of the Step 3a. Some sender of the e-mail message. users open the These users do not open the attachment and e-mail message. Instead they their computers delete the e-mail message. become infected These users’ computers are not with the virus. infected with the virus.p. 559 Fig. 11-2 Next
  4. 4. Internet and Network Attacks Video: Free Online Malware CLICK TO START Next
  5. 5. Internet and Network Attacks How can you protect your system from a macro virus?  Set macro security level in applications that allow you to write macros  Set security level so that warning displays that document contains macro  Macros are instructions saved in an application, such as word processing or spreadsheet programp. 560 Fig. 11-3 Next
  6. 6. Internet and Network Attacks What is an antivirus program?  Identifies and removes computer viruses  Most also protect against worms and Trojan horsesp. 560 - 561 Fig. 11-4 Next
  7. 7. Internet and Network Attacks What is a virus signature?  Specific pattern of virus code  Also called virus definition  Antivirus programs look for virus signaturesp. 561 Fig. 11-5 Next
  8. 8. Internet and Network Attacks How does an antivirus program inoculate a program file? Records information about program such as file size and Uses creation information date Attempts to detect if to remove virus tampers any detected with file virus Quarantines infected files that it Keeps file cannot in separate remove area of hard diskp. 561 Next
  9. 9. Internet and Network Attacks What are a denial of service attack, back door and spoofing? A denial of service attack is an assault which disrupts computer access to an Internet service such as the Web or e-mail A back door is a program or set of instructions in a program that allow users to bypass security controls when accessing a computer resource Spoofing is a technique intruders use to make their network or Internet transmission appear legitimate to a victim computer or networkp. 562 and 563 Next
  10. 10. Internet and Network Attacks What is a firewall?  Security system consisting of hardware and/or software that prevents unauthorized intrusionp. 563 Fig. 11-7 Next
  11. 11. Internet and Network Attacks What is a personal firewall?  Program that protects personal computer and its data from unauthorized intrusions  Monitors transmissions to and from computer  Informs you of attempted intrusionClick to view WebLink, click Chapter 11, ClickWeb Link from leftnavigation, then clickPersonal Firewall Softwarebelow Chapter 11 p. 564 Fig. 11-8 Next
  12. 12. Unauthorized Access and Use How can companies protect against hackers? Intrusion detection software analyzes network traffic, assesses Access control defines who system vulnerabilities, and identifies can access computer and intrusions and suspicious behavior what actions they can take Audit trail records access attemptsp. 564 - 565 Next
  13. 13. Unauthorized Access and Use What are other ways to protect your personal computer?  Disable file and printer sharing on Internet connectionp. 565 Fig. 11-9 Next
  14. 14. Unauthorized Access and Use How can you make your password more secure?  Longer passwords provide greater securityp. 567 Fig. 11-11 Next
  15. 15. Unauthorized Access and Use What is a possessed object?  Item that you must carry to gain access to computer or facility  Often used with numeric password called personal identification number (PIN)p. 567 Fig. 11-12 Next
  16. 16. Unauthorized Access and Use What is a biometric device?  Authenticates person’s identity using personal characteristic  Fingerprint, hand geometry, voice, signature, and irisp. 567 - 568 Fig. 11-13 Next
  17. 17. Hardware Theft and Vandalism What are hardware theft and hardware vandalism?  Hardware theft is act of stealing computer equipment  Cables sometimes used to lock equipment  Some notebook computers use passwords, possessed objects, and biometrics as security methods  For PDAs and smart phones, you can password-protect the device  Hardware vandalism is act of defacing or destroying computer equipmentp. 569 - 570 Fig. 11-14 Next
  18. 18. Software Theft What is software theft? Act of stealing or Software piracy illegally stealing is illegal software, copying duplication software or of copyrighted intentionally software erasing programsClick to view WebLink, click Chapter 11, ClickWeb Link from leftnavigation, then clickSoftware Piracybelow Chapter 11 p. 570 Next
  19. 19. Software Theft What is a license agreement?  Right to use software  Single-user license agreement allows user to install software on one computer, make backup copy, and sell software after removing from computerp. 570 Fig. 11-15 Next
  20. 20. Software Theft What are some other safeguards against software theft? Product activation allows user to input product identification number online or by phone and receive unique installation identification number Business Software Alliance (BSA) promotes better understanding of software piracy problemsClick to view WebLink, click Chapter 11, ClickWeb Link from leftnavigation, then clickBusiness Software Alliancebelow Chapter 11 p. 571 Next
  21. 21. Information Theft What is encryption?  Safeguards against information theft  Process of converting plaintext (readable data) into ciphertext (unreadable characters)  Encryption key (formula) often uses more than one method  To read the data, the recipient must decrypt, or decipher, the datap. 572 Fig. 11-16 Next
  22. 22. Information Theft How do Web browsers provide secure data transmission? Secure site Many Web browsers is Web site that uses use encryption encryption to secure data Digital certificate is notice that guarantees Web site is legitimateClick to view WebLink, click Chapter 11, ClickWeb Link from leftnavigation, then clickDigital Certificates belowChapter 11 p. 573 Next
  23. 23. Information Theft What is Secure Sockets Layer (SSL)?  Provides encryption of all data that passes between client and Internet server  Web addresses beginning with “https” indicate secure connectionsp. 574 Fig. 11-19 Next
  24. 24. System Failure What is a system failure? Prolonged malfunction Can cause loss of hardware, of computer software, or data Caused by aging hardware, natural disasters, or electrical power disturbances Overvoltage or Noise—unwanted power surge— electrical signal significant increase in electrical power Undervoltage—drop in electrical supplyp. 574 Next
  25. 25. System Failure What is a surge protector?  Protects computer and equipment from electrical power disturbances  Uninterruptible power supply (UPS) is surge protector that provides power during power lossClick to view WebLink, click Chapter 11, ClickWeb Link from leftnavigation, then clickUninterruptible Power Supplybelow Chapter 11 p. 574 - 575 Figs. 11-20–11-21 Next
  26. 26. Backing Up — The Ultimate Safeguard What is a backup? Duplicate of file, program, or disk Three-generation Full backup Selective backup backup all files in select which files preserves computer to back up three copies of important files In case of system failure or corrupted files, restore files by copying to original locationp. 576 Next
  27. 27. Information Privacy What is a cookie? Set browser to Some Web sites User Small file on accept cookies, sell or trade preferences your computer prompt you to information that contains accept cookies, stored in your data about you or disable cookies cookies How regularly you visit Interests Web sites and browsing habitsp. 582 Next
  28. 28. Information Privacy How do cookies work?p. 583 Fig. 11-28 Next
  29. 29. Information Privacy What is phishing? Scam in which a perpetrator sends an official looking e-mail that attempts to obtain your personal and financial informationp. 584 Next
  30. 30. Information Privacy What is computer forensics?  Also called digital forensics, network forensics, or cyberforensics  Discovery, collection, and analysis of evidence found on computers and networks  Computer forensic analysts must have knowledge of the law, technical experience, communication skills, and willingness to learnp. 587 Next