SlideShare a Scribd company logo

101 Basic concepts of information security

Download as PPTX, PDF
S
SsendiSamuel

101 Basic concepts of information security

Education
1 of 32
www.huawei.com Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Huawei Certified ICT Associate Security v3.0 Professional Training Program
www.huawei.com Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Huawei Certified ICT Associate Security v3.0 Instructor: Ssendi Samuel
www.huawei.com Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Basic Concepts of Information Security
Page 3 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Foreword  Information security is the process of ensuring safe data communication and preventing issues such as information leakage, modification, and disruption.  This document describes the basic concepts and protection measures of information security, as well as information security risks and associated assessment and avoidance methods.
Page 4 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Objectives  Upon completion of this course, you will be able to:  Describe the definition and characteristics of information security.  Explain the characteristics and differences of security models.  Differentiate between security risks.
Page 5 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Contents 1. Information and Information Security 2. Information Security Risks and Management
Page 6 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information  information created, received, and maintained as evidence and information by an organization or person, in pursuance of legal obligations or in the transaction of business. --- ISO/IEC Guidelines for the Management of IT Security (GMITS) What is information? Books/ Letters Emails Radar signals State secrets Test questions Transaction data
Page 7 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Security  Information security refers to the preservation of the confidentiality, integrity, and availability of data through security technologies.  These technologies include computer software and hardware, network, and key technologies. Organizational management measures throughout the information lifecycle (generation, transmission, exchange, processing, and storage) are also essential.  The following will be affected if information assets are damaged:  The aim of information security is to protect data against threats through technical means and effective management. National security System operating and continuous development Personal privacy and property
Page 8 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Security Development Limited communication technologies and dispersedly stored data Early 1900s Communication secrecy stage Information-based security replaces traditional security 1980s Information assurance stage Post-1960s Information security stage Internet development brings new challenges and threats to information security
Page 9 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Photo or Information Leakage?  After the Chinese government invited bids for oil production equipment, Japanese intelligence experts used this simple photo to uncover the following secrets of the Daqing Oilfield:  Located between 46N and 48N, as indicated by the clothing of Wang Jinxi  Diameter of the oil well, inferred from the handle rack
Page 10 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Communication Secrecy Stage  In the early 1900s, communication technologies were underdeveloped, and data was stored in different locations.  Information system security was limited to physical security of information and cipher- based security of communication (mainly stream cipher).  As long as information was in a relatively secure place and unauthorized users were prohibited from accessing the information, data security could be generally guaranteed.
Page 11 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Security Stage  Since the 1990s, Internet technologies have developed rapidly, and information leaks have increased.  As a result, in addition to confidentiality, integrity and availability, information security began to focus on more principles and objectives, such as controllability and non- repudiation. Confidentiality Integrity Availability Controllability Non- repudiation
Page 12 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Assurance Stage  Business-oriented information security assurance Different service traffic with various risks and protection methods Security system Cohesive security management and technical protection; proactive defense but not passive protection Management Talent development and system establishment for security management Business
Page 13 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Case - WannaCry  In 2017, the WannaCry ransomware cryptoworm, propagated through EternalBlue, infected over 100,000 computers, causing a loss of US$8 billion. Energy Government Education Transportation
Page 14 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Case - OceanLotus  Since April 2012, the OceanLotus group has carried out targeted penetration and attacks on important sectors of China, such as the government, scientific research institutes, maritime institutions, maritime construction, and shipping enterprises.  The attacks are intended to obtain confidential information, intercept intelligence sent out by attacked computers, and enable the computers to automatically send related intelligence.
Page 15 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Discussion: What Are the Causes of Such Attacks? Direct Cause Indirect Cause  Virus  Vulnerability  Trojan horse  Backdoor program  DDoS attack  …  Information system complexity  Human and environment factors
Page 16 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Increasing importance • The information network has become the foundation of economic prosperity, social stability, and national development. • Informatization profoundly influences the global economic integration, national strategy adjustment, and security priorities. • Information security has transformed from a technical issue into a matter of national security worldwide. Applicable to many technical fields For example: • Command, Control, Communications, Computers and Intelligence (C4I) system • E-commerce system • Biomedical system • Intelligent Transport System (ITS) Significance of Building Information Security Importance Applicability
Page 17 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Contents 1. Information and Information Security 2. Information Security Risks and Management
Page 18 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Risks Involved in Information Security Risks Physical risks Other risks System risks Information risks Management risks Application risks Network risks
Page 19 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Physical Risks  Device theft and destruction  Link aging, man-made damage, and bite from animals  Network device fault  Network device unavailability due to power failure  Electromagnetic radiation in the equipment room
Page 20 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Risks  Storage security  Transmission security  Access security
Page 21 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Transmission Security Headquarters Branch Enterprise business information Tampered information Attacker
Page 22 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Access Security Intranet Unauthorized user Illegal login Authorized user Authentication server on the network
Page 23 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. System Risks  Database system configuration security  Security database  Security of services running in the system
Page 24 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Application Risks  Network virus  Operating system security  Email application security  Web service security  FTP service security  DNS service security  Business application software security
Page 25 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Network Risks Security zone
Page 26 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Management Risks  Determine whether the information system has management risks from the following aspects: National policy • Effective national information security regulations formulated • Specialized agency to manage information security • Security management rules and equipment room management system with clear responsibilities and rights • Enterprises can establish own security management organizations Enterprise system • Effective security policies and high-quality security management personnel • Effective supervision and inspection system, and adherence to rules and regulations Management system
Page 27 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Significance of Information Security Management  According to statistics, 70% of enterprise information loss is caused by negligence or intentional leakage by internal staff.  Security technologies are only the means to control information security. They can only be effective with the appropriate support of management procedures. 70% Weak security awareness among employees Loose authorization rules Non- standard system operations Malicious data theft Technologies 30% Management 70%
Page 28 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Current Development of Information Security Management Each country has introduced its own information security development strategy and plan. Introducing information security development strategies and plans Defining and standardizing information security work through laws is the strongest guarantee for effective implementation of security measures. Strengthening legislation to achieve unified and standardized management The era of standardized and systematized information security management began in the 1990s. ISO/IEC 27000 is the best known system. Entering the era of standardized and systematized management Information Security Management
Page 29 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Quiz 1. Information security incidents frequently occur because of security attack methods, such as vulnerabilities, viruses, and backdoor programs. A. True B. False
Page 30 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Summary  Information security development history  Basic concepts of information security
Page 31 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Thank You www.huawei.com

Recommended

Basics of Information System Security
Basics of Information System SecurityBasics of Information System Security
Basics of Information System Securitychauhankapil
 
Network Security Fundamentals
Network Security FundamentalsNetwork Security Fundamentals
Network Security FundamentalsRahmat Suhatman
 
Application Security | Application Security Tutorial | Cyber Security Certifi...
Application Security | Application Security Tutorial | Cyber Security Certifi...Application Security | Application Security Tutorial | Cyber Security Certifi...
Application Security | Application Security Tutorial | Cyber Security Certifi...Edureka!
 
Cybersecurity Roadmap Development for Executives
Cybersecurity Roadmap Development for ExecutivesCybersecurity Roadmap Development for Executives
Cybersecurity Roadmap Development for ExecutivesKrist Davood - Principal - CIO
 
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...Edureka!
 
Cyber security fundamentals
Cyber security fundamentalsCyber security fundamentals
Cyber security fundamentalsCloudflare
 
Cybersecurity Fundamental Course by Haris Chughtai.pdf
Cybersecurity Fundamental Course by Haris Chughtai.pdfCybersecurity Fundamental Course by Haris Chughtai.pdf
Cybersecurity Fundamental Course by Haris Chughtai.pdfHaris Chughtai
 
Cyber Security Awareness
Cyber Security AwarenessCyber Security Awareness
Cyber Security AwarenessRamiro Cid
 

Recommended

Basics of Information System Security
Basics of Information System SecurityBasics of Information System Security
Basics of Information System Securitychauhankapil
 
Network Security Fundamentals
Network Security FundamentalsNetwork Security Fundamentals
Network Security FundamentalsRahmat Suhatman
 
Application Security | Application Security Tutorial | Cyber Security Certifi...
Application Security | Application Security Tutorial | Cyber Security Certifi...Application Security | Application Security Tutorial | Cyber Security Certifi...
Application Security | Application Security Tutorial | Cyber Security Certifi...Edureka!
 
Cybersecurity Roadmap Development for Executives
Cybersecurity Roadmap Development for ExecutivesCybersecurity Roadmap Development for Executives
Cybersecurity Roadmap Development for ExecutivesKrist Davood - Principal - CIO
 
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...Edureka!
 
Cyber security fundamentals
Cyber security fundamentalsCyber security fundamentals
Cyber security fundamentalsCloudflare
 
Cybersecurity Fundamental Course by Haris Chughtai.pdf
Cybersecurity Fundamental Course by Haris Chughtai.pdfCybersecurity Fundamental Course by Haris Chughtai.pdf
Cybersecurity Fundamental Course by Haris Chughtai.pdfHaris Chughtai
 
Cyber Security Awareness
Cyber Security AwarenessCyber Security Awareness
Cyber Security AwarenessRamiro Cid
 
Cybersecurity
CybersecurityCybersecurity
CybersecurityEng Hasan Shamroukh CISCO Exams Author
 
ISO 27001 - information security user awareness training presentation - Part 1
ISO 27001 - information security user awareness training presentation - Part 1ISO 27001 - information security user awareness training presentation - Part 1
ISO 27001 - information security user awareness training presentation - Part 1Tanmay Shinde
 
Information security
Information securityInformation security
Information securityavinashbalakrishnan2
 
Introduction to Cybersecurity Fundamentals
Introduction to Cybersecurity FundamentalsIntroduction to Cybersecurity Fundamentals
Introduction to Cybersecurity FundamentalsToño Herrera
 
Security Management | System Administration
Security Management | System AdministrationSecurity Management | System Administration
Security Management | System AdministrationLisa Dowdell, MSISTM
 
Introduction to security
Introduction to securityIntroduction to security
Introduction to securityMostafa Elgamala
 
The information security audit
The information security auditThe information security audit
The information security auditDhani Ahmad
 
Security Threats at OSI layers
Security Threats at OSI layersSecurity Threats at OSI layers
Security Threats at OSI layersDepartment of Computer Science
 
Information security in todays world
Information security in todays worldInformation security in todays world
Information security in todays worldSibghatullah Khattak
 
CISSP - Chapter 1 - Security Concepts
CISSP - Chapter 1 - Security ConceptsCISSP - Chapter 1 - Security Concepts
CISSP - Chapter 1 - Security ConceptsKarthikeyan Dhayalan
 
ISO 27001 - Information security user awareness training presentation - part 3
ISO 27001 - Information security user awareness training presentation - part 3ISO 27001 - Information security user awareness training presentation - part 3
ISO 27001 - Information security user awareness training presentation - part 3Tanmay Shinde
 
Cyber security
Cyber security Cyber security
Cyber security Shivam Yadav
 
Information Security
Information SecurityInformation Security
Information SecurityDr. Himanshu Gupta
 
Network Security Tutorial | Introduction to Network Security | Network Securi...
Network Security Tutorial | Introduction to Network Security | Network Securi...Network Security Tutorial | Introduction to Network Security | Network Securi...
Network Security Tutorial | Introduction to Network Security | Network Securi...Edureka!
 
Cyber Security Vulnerabilities
Cyber Security VulnerabilitiesCyber Security Vulnerabilities
Cyber Security VulnerabilitiesSiemplify
 
Network security
Network securityNetwork security
Network securityAli Kamil
 
Cybersecurity Attack Vectors: How to Protect Your Organization
Cybersecurity Attack Vectors: How to Protect Your OrganizationCybersecurity Attack Vectors: How to Protect Your Organization
Cybersecurity Attack Vectors: How to Protect Your OrganizationTriCorps Technologies
 
Iso 27001 isms presentation
Iso 27001 isms presentationIso 27001 isms presentation
Iso 27001 isms presentationMidhun Nirmal
 
Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...Stephen Cobb
 
Domain 4 - Communications and Network Security
Domain 4 - Communications and Network SecurityDomain 4 - Communications and Network Security
Domain 4 - Communications and Network SecurityMaganathin Veeraragaloo
 
HCSCA101 Basic Concepts of Information Security.pptx
HCSCA101 Basic Concepts of Information Security.pptxHCSCA101 Basic Concepts of Information Security.pptx
HCSCA101 Basic Concepts of Information Security.pptxJordanKinobe1
 
106 Threat defense and information security development trends
106 Threat defense and information security development trends106 Threat defense and information security development trends
106 Threat defense and information security development trendsSsendiSamuel
 

More Related Content

What's hot

ISO 27001 - information security user awareness training presentation - Part 1
ISO 27001 - information security user awareness training presentation - Part 1ISO 27001 - information security user awareness training presentation - Part 1
ISO 27001 - information security user awareness training presentation - Part 1Tanmay Shinde
 
Introduction to Cybersecurity Fundamentals
Introduction to Cybersecurity FundamentalsIntroduction to Cybersecurity Fundamentals
Introduction to Cybersecurity FundamentalsToño Herrera
 
Security Management | System Administration
Security Management | System AdministrationSecurity Management | System Administration
Security Management | System AdministrationLisa Dowdell, MSISTM
 
The information security audit
The information security auditThe information security audit
The information security auditDhani Ahmad
 
Information security in todays world
Information security in todays worldInformation security in todays world
Information security in todays worldSibghatullah Khattak
 
CISSP - Chapter 1 - Security Concepts
CISSP - Chapter 1 - Security ConceptsCISSP - Chapter 1 - Security Concepts
CISSP - Chapter 1 - Security ConceptsKarthikeyan Dhayalan
 
ISO 27001 - Information security user awareness training presentation - part 3
ISO 27001 - Information security user awareness training presentation - part 3ISO 27001 - Information security user awareness training presentation - part 3
ISO 27001 - Information security user awareness training presentation - part 3Tanmay Shinde
 
Network Security Tutorial | Introduction to Network Security | Network Securi...
Network Security Tutorial | Introduction to Network Security | Network Securi...Network Security Tutorial | Introduction to Network Security | Network Securi...
Network Security Tutorial | Introduction to Network Security | Network Securi...Edureka!
 
Cyber Security Vulnerabilities
Cyber Security VulnerabilitiesCyber Security Vulnerabilities
Cyber Security VulnerabilitiesSiemplify
 
Network security
Network securityNetwork security
Network securityAli Kamil
 
Cybersecurity Attack Vectors: How to Protect Your Organization
Cybersecurity Attack Vectors: How to Protect Your OrganizationCybersecurity Attack Vectors: How to Protect Your Organization
Cybersecurity Attack Vectors: How to Protect Your OrganizationTriCorps Technologies
 
Iso 27001 isms presentation
Iso 27001 isms presentationIso 27001 isms presentation
Iso 27001 isms presentationMidhun Nirmal
 
Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...Stephen Cobb
 
Domain 4 - Communications and Network Security
Domain 4 - Communications and Network SecurityDomain 4 - Communications and Network Security
Domain 4 - Communications and Network SecurityMaganathin Veeraragaloo
 

What's hot (20)

Cybersecurity
CybersecurityCybersecurity
Cybersecurity
 
ISO 27001 - information security user awareness training presentation - Part 1
ISO 27001 - information security user awareness training presentation - Part 1ISO 27001 - information security user awareness training presentation - Part 1
ISO 27001 - information security user awareness training presentation - Part 1
 
Information security
Information securityInformation security
Information security
 
Introduction to Cybersecurity Fundamentals
Introduction to Cybersecurity FundamentalsIntroduction to Cybersecurity Fundamentals
Introduction to Cybersecurity Fundamentals
 
Security Management | System Administration
Security Management | System AdministrationSecurity Management | System Administration
Security Management | System Administration
 
Introduction to security
Introduction to securityIntroduction to security
Introduction to security
 
The information security audit
The information security auditThe information security audit
The information security audit
 
Security Threats at OSI layers
Security Threats at OSI layersSecurity Threats at OSI layers
Security Threats at OSI layers
 
Information security in todays world
Information security in todays worldInformation security in todays world
Information security in todays world
 
CISSP - Chapter 1 - Security Concepts
CISSP - Chapter 1 - Security ConceptsCISSP - Chapter 1 - Security Concepts
CISSP - Chapter 1 - Security Concepts
 
ISO 27001 - Information security user awareness training presentation - part 3
ISO 27001 - Information security user awareness training presentation - part 3ISO 27001 - Information security user awareness training presentation - part 3
ISO 27001 - Information security user awareness training presentation - part 3
 
Cyber security
Cyber security Cyber security
Cyber security
 
Information Security
Information SecurityInformation Security
Information Security
 
Network Security Tutorial | Introduction to Network Security | Network Securi...
Network Security Tutorial | Introduction to Network Security | Network Securi...Network Security Tutorial | Introduction to Network Security | Network Securi...
Network Security Tutorial | Introduction to Network Security | Network Securi...
 
Cyber Security Vulnerabilities
Cyber Security VulnerabilitiesCyber Security Vulnerabilities
Cyber Security Vulnerabilities
 
Network security
Network securityNetwork security
Network security
 
Cybersecurity Attack Vectors: How to Protect Your Organization
Cybersecurity Attack Vectors: How to Protect Your OrganizationCybersecurity Attack Vectors: How to Protect Your Organization
Cybersecurity Attack Vectors: How to Protect Your Organization
 
Iso 27001 isms presentation
Iso 27001 isms presentationIso 27001 isms presentation
Iso 27001 isms presentation
 
Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...
 
Domain 4 - Communications and Network Security
Domain 4 - Communications and Network SecurityDomain 4 - Communications and Network Security
Domain 4 - Communications and Network Security
 

Similar to 101 Basic concepts of information security

HCSCA101 Basic Concepts of Information Security.pptx
HCSCA101 Basic Concepts of Information Security.pptxHCSCA101 Basic Concepts of Information Security.pptx
HCSCA101 Basic Concepts of Information Security.pptxJordanKinobe1
 
106 Threat defense and information security development trends
106 Threat defense and information security development trends106 Threat defense and information security development trends
106 Threat defense and information security development trendsSsendiSamuel
 
Aalto cyber-10.4.18
Aalto cyber-10.4.18Aalto cyber-10.4.18
Aalto cyber-10.4.18japijapi
 
L12. Digital Forensics BS.pptx
L12. Digital Forensics BS.pptxL12. Digital Forensics BS.pptx
L12. Digital Forensics BS.pptxtalhajann43
 
Cyber Security Intelligence
Cyber Security IntelligenceCyber Security Intelligence
Cyber Security Intelligenceijtsrd
 
Maloney slides
Maloney slidesMaloney slides
Maloney slidesOnkar Sule
 
102 Information security standards and specifications
102 Information security standards and specifications102 Information security standards and specifications
102 Information security standards and specificationsSsendiSamuel
 
Cyber Security Education Materials.pptx
Cyber Security Education Materials.pptxCyber Security Education Materials.pptx
Cyber Security Education Materials.pptxbentidiane21
 
Breaking down the cyber security framework closing critical it security gaps
Breaking down the cyber security framework closing critical it security gapsBreaking down the cyber security framework closing critical it security gaps
Breaking down the cyber security framework closing critical it security gapsIBM Security
 
Fundamentals of Information Systems Security Chapter 2
Fundamentals of Information Systems Security Chapter 2 Fundamentals of Information Systems Security Chapter 2
Fundamentals of Information Systems Security Chapter 2 Dr. Ahmed Al Zaidy
 
Maloney Slides
Maloney SlidesMaloney Slides
Maloney Slidesecommerce
 
Cybersecurity: Connectivity, Collaboration and Security Controls
Cybersecurity: Connectivity, Collaboration and Security ControlsCybersecurity: Connectivity, Collaboration and Security Controls
Cybersecurity: Connectivity, Collaboration and Security ControlsKristian Alisasis Pura
 
Securing the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the InternetSecuring the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the Internetaccenture
 
Securing the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the InternetSecuring the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the Internetaccenture
 
Fundamental Areas of Cyber Security on Latest Technology
Fundamental Areas of Cyber Security on Latest TechnologyFundamental Areas of Cyber Security on Latest Technology
Fundamental Areas of Cyber Security on Latest Technologyijtsrd
 
2014 the future evolution of cybersecurity
2014 the future evolution of cybersecurity2014 the future evolution of cybersecurity
2014 the future evolution of cybersecurityMatthew Rosenquist
 
Effective Cyber Security Technology Solutions for Modern Challenges
Effective Cyber Security Technology Solutions for Modern ChallengesEffective Cyber Security Technology Solutions for Modern Challenges
Effective Cyber Security Technology Solutions for Modern Challengescyberprosocial
 

Similar to 101 Basic concepts of information security (20)

HCSCA101 Basic Concepts of Information Security.pptx
HCSCA101 Basic Concepts of Information Security.pptxHCSCA101 Basic Concepts of Information Security.pptx
HCSCA101 Basic Concepts of Information Security.pptx
 
106 Threat defense and information security development trends
106 Threat defense and information security development trends106 Threat defense and information security development trends
106 Threat defense and information security development trends
 
Aalto cyber-10.4.18
Aalto cyber-10.4.18Aalto cyber-10.4.18
Aalto cyber-10.4.18
 
L12. Digital Forensics BS.pptx
L12. Digital Forensics BS.pptxL12. Digital Forensics BS.pptx
L12. Digital Forensics BS.pptx
 
Cyber Security Intelligence
Cyber Security IntelligenceCyber Security Intelligence
Cyber Security Intelligence
 
Maloney slides
Maloney slidesMaloney slides
Maloney slides
 
102 Information security standards and specifications
102 Information security standards and specifications102 Information security standards and specifications
102 Information security standards and specifications
 
Chapter 5
Chapter 5Chapter 5
Chapter 5
 
Cyber Security Education Materials.pptx
Cyber Security Education Materials.pptxCyber Security Education Materials.pptx
Cyber Security Education Materials.pptx
 
Breaking down the cyber security framework closing critical it security gaps
Breaking down the cyber security framework closing critical it security gapsBreaking down the cyber security framework closing critical it security gaps
Breaking down the cyber security framework closing critical it security gaps
 
Fundamentals of Information Systems Security Chapter 2
Fundamentals of Information Systems Security Chapter 2 Fundamentals of Information Systems Security Chapter 2
Fundamentals of Information Systems Security Chapter 2
 
Maloney Slides
Maloney SlidesMaloney Slides
Maloney Slides
 
Cybersecurity: Connectivity, Collaboration and Security Controls
Cybersecurity: Connectivity, Collaboration and Security ControlsCybersecurity: Connectivity, Collaboration and Security Controls
Cybersecurity: Connectivity, Collaboration and Security Controls
 
Securing the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the InternetSecuring the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the Internet
 
Securing the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the InternetSecuring the Digital Economy: Reinventing the Internet
Securing the Digital Economy: Reinventing the Internet
 
Class activity 4
Class activity 4 Class activity 4
Class activity 4
 
Fundamental Areas of Cyber Security on Latest Technology
Fundamental Areas of Cyber Security on Latest TechnologyFundamental Areas of Cyber Security on Latest Technology
Fundamental Areas of Cyber Security on Latest Technology
 
CCA study group
CCA study groupCCA study group
CCA study group
 
2014 the future evolution of cybersecurity
2014 the future evolution of cybersecurity2014 the future evolution of cybersecurity
2014 the future evolution of cybersecurity
 
Effective Cyber Security Technology Solutions for Modern Challenges
Effective Cyber Security Technology Solutions for Modern ChallengesEffective Cyber Security Technology Solutions for Modern Challenges
Effective Cyber Security Technology Solutions for Modern Challenges
 

More from SsendiSamuel

105 Common information security threats
105 Common information security threats105 Common information security threats
105 Common information security threatsSsendiSamuel
 
104 Common network devices
104 Common network devices104 Common network devices
104 Common network devicesSsendiSamuel
 
103 Basic network concepts
103 Basic network concepts103 Basic network concepts
103 Basic network conceptsSsendiSamuel
 
Chapter 06: cloud computing trends
Chapter 06: cloud computing trendsChapter 06: cloud computing trends
Chapter 06: cloud computing trendsSsendiSamuel
 
Chapter 05: introduction to virtualization features
Chapter 05: introduction to virtualization featuresChapter 05: introduction to virtualization features
Chapter 05: introduction to virtualization featuresSsendiSamuel
 
Chapter 04: Storage virtualization basics
Chapter 04: Storage virtualization basicsChapter 04: Storage virtualization basics
Chapter 04: Storage virtualization basicsSsendiSamuel
 
Chapter 03: Network basics for cloud computing
Chapter 03: Network basics for cloud computingChapter 03: Network basics for cloud computing
Chapter 03: Network basics for cloud computingSsendiSamuel
 
Chapter 01: A brief introduction to cloud computing
Chapter 01: A brief introduction to cloud computingChapter 01: A brief introduction to cloud computing
Chapter 01: A brief introduction to cloud computingSsendiSamuel
 
Chapter 02: Introduction to compute virtualization
Chapter 02: Introduction to compute virtualizationChapter 02: Introduction to compute virtualization
Chapter 02: Introduction to compute virtualizationSsendiSamuel
 

More from SsendiSamuel (9)

105 Common information security threats
105 Common information security threats105 Common information security threats
105 Common information security threats
 
104 Common network devices
104 Common network devices104 Common network devices
104 Common network devices
 
103 Basic network concepts
103 Basic network concepts103 Basic network concepts
103 Basic network concepts
 
Chapter 06: cloud computing trends
Chapter 06: cloud computing trendsChapter 06: cloud computing trends
Chapter 06: cloud computing trends
 
Chapter 05: introduction to virtualization features
Chapter 05: introduction to virtualization featuresChapter 05: introduction to virtualization features
Chapter 05: introduction to virtualization features
 
Chapter 04: Storage virtualization basics
Chapter 04: Storage virtualization basicsChapter 04: Storage virtualization basics
Chapter 04: Storage virtualization basics
 
Chapter 03: Network basics for cloud computing
Chapter 03: Network basics for cloud computingChapter 03: Network basics for cloud computing
Chapter 03: Network basics for cloud computing
 
Chapter 01: A brief introduction to cloud computing
Chapter 01: A brief introduction to cloud computingChapter 01: A brief introduction to cloud computing
Chapter 01: A brief introduction to cloud computing
 
Chapter 02: Introduction to compute virtualization
Chapter 02: Introduction to compute virtualizationChapter 02: Introduction to compute virtualization
Chapter 02: Introduction to compute virtualization
 

Recently uploaded

Procuring digital preservation CAN be quick and painless with our new dynamic...
Procuring digital preservation CAN be quick and painless with our new dynamic...Procuring digital preservation CAN be quick and painless with our new dynamic...
Procuring digital preservation CAN be quick and painless with our new dynamic...Jisc
 
Types of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxTypes of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxEyham Joco
 
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️9953056974 Low Rate Call Girls In Saket, Delhi NCR
 
Meghan Sutherland In Media Res Media Component
Meghan Sutherland In Media Res Media ComponentMeghan Sutherland In Media Res Media Component
Meghan Sutherland In Media Res Media ComponentInMediaRes1
 
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...JhezDiaz1
 
Proudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptxProudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptxthorishapillay1
 
Earth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice greatEarth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice greatYousafMalik24
 
Hierarchy of management that covers different levels of management
Hierarchy of management that covers different levels of managementHierarchy of management that covers different levels of management
Hierarchy of management that covers different levels of managementmkooblal
 
MICROBIOLOGY biochemical test detailed.pptx
MICROBIOLOGY biochemical test detailed.pptxMICROBIOLOGY biochemical test detailed.pptx
MICROBIOLOGY biochemical test detailed.pptxabhijeetpadhi001
 
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdfEnzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdfSumit Tiwari
 
Solving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxSolving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxOH TEIK BIN
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxNirmalaLoungPoorunde1
 
Difference Between Search & Browse Methods in Odoo 17
Difference Between Search & Browse Methods in Odoo 17Difference Between Search & Browse Methods in Odoo 17
Difference Between Search & Browse Methods in Odoo 17Celine George
 
Full Stack Web Development Course for Beginners
Full Stack Web Development Course for BeginnersFull Stack Web Development Course for Beginners
Full Stack Web Development Course for BeginnersSabitha Banu
 
Framing an Appropriate Research Question 6b9b26d93da94caf993c038d9efcdedb.pdf
Framing an Appropriate Research Question 6b9b26d93da94caf993c038d9efcdedb.pdfFraming an Appropriate Research Question 6b9b26d93da94caf993c038d9efcdedb.pdf
Framing an Appropriate Research Question 6b9b26d93da94caf993c038d9efcdedb.pdfUjwalaBharambe
 
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPTECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPTiammrhaywood
 

Recently uploaded (20)

Procuring digital preservation CAN be quick and painless with our new dynamic...
Procuring digital preservation CAN be quick and painless with our new dynamic...Procuring digital preservation CAN be quick and painless with our new dynamic...
Procuring digital preservation CAN be quick and painless with our new dynamic...
 
Types of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxTypes of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptx
 
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
 
Meghan Sutherland In Media Res Media Component
Meghan Sutherland In Media Res Media ComponentMeghan Sutherland In Media Res Media Component
Meghan Sutherland In Media Res Media Component
 
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
 
Proudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptxProudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptx
 
OS-operating systems- ch04 (Threads) ...
OS-operating systems- ch04 (Threads) ...OS-operating systems- ch04 (Threads) ...
OS-operating systems- ch04 (Threads) ...
 
Earth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice greatEarth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice great
 
TataKelola dan KamSiber Kecerdasan Buatan v022.pdf
TataKelola dan KamSiber Kecerdasan Buatan v022.pdfTataKelola dan KamSiber Kecerdasan Buatan v022.pdf
TataKelola dan KamSiber Kecerdasan Buatan v022.pdf
 
9953330565 Low Rate Call Girls In Rohini Delhi NCR
9953330565 Low Rate Call Girls In Rohini Delhi NCR9953330565 Low Rate Call Girls In Rohini Delhi NCR
9953330565 Low Rate Call Girls In Rohini Delhi NCR
 
Hierarchy of management that covers different levels of management
Hierarchy of management that covers different levels of managementHierarchy of management that covers different levels of management
Hierarchy of management that covers different levels of management
 
MICROBIOLOGY biochemical test detailed.pptx
MICROBIOLOGY biochemical test detailed.pptxMICROBIOLOGY biochemical test detailed.pptx
MICROBIOLOGY biochemical test detailed.pptx
 
ESSENTIAL of (CS/IT/IS) class 06 (database)
ESSENTIAL of (CS/IT/IS) class 06 (database)ESSENTIAL of (CS/IT/IS) class 06 (database)
ESSENTIAL of (CS/IT/IS) class 06 (database)
 
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdfEnzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
 
Solving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxSolving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptx
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptx
 
Difference Between Search & Browse Methods in Odoo 17
Difference Between Search & Browse Methods in Odoo 17Difference Between Search & Browse Methods in Odoo 17
Difference Between Search & Browse Methods in Odoo 17
 
Full Stack Web Development Course for Beginners
Full Stack Web Development Course for BeginnersFull Stack Web Development Course for Beginners
Full Stack Web Development Course for Beginners
 
Framing an Appropriate Research Question 6b9b26d93da94caf993c038d9efcdedb.pdf
Framing an Appropriate Research Question 6b9b26d93da94caf993c038d9efcdedb.pdfFraming an Appropriate Research Question 6b9b26d93da94caf993c038d9efcdedb.pdf
Framing an Appropriate Research Question 6b9b26d93da94caf993c038d9efcdedb.pdf
 
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPTECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
 

101 Basic concepts of information security

  • 1. www.huawei.com Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Huawei Certified ICT Associate Security v3.0 Professional Training Program
  • 2. www.huawei.com Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Huawei Certified ICT Associate Security v3.0 Instructor: Ssendi Samuel
  • 3. www.huawei.com Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Basic Concepts of Information Security
  • 4. Page 3 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Foreword  Information security is the process of ensuring safe data communication and preventing issues such as information leakage, modification, and disruption.  This document describes the basic concepts and protection measures of information security, as well as information security risks and associated assessment and avoidance methods.
  • 5. Page 4 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Objectives  Upon completion of this course, you will be able to:  Describe the definition and characteristics of information security.  Explain the characteristics and differences of security models.  Differentiate between security risks.
  • 6. Page 5 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Contents 1. Information and Information Security 2. Information Security Risks and Management
  • 7. Page 6 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information  information created, received, and maintained as evidence and information by an organization or person, in pursuance of legal obligations or in the transaction of business. --- ISO/IEC Guidelines for the Management of IT Security (GMITS) What is information? Books/ Letters Emails Radar signals State secrets Test questions Transaction data
  • 8. Page 7 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Security  Information security refers to the preservation of the confidentiality, integrity, and availability of data through security technologies.  These technologies include computer software and hardware, network, and key technologies. Organizational management measures throughout the information lifecycle (generation, transmission, exchange, processing, and storage) are also essential.  The following will be affected if information assets are damaged:  The aim of information security is to protect data against threats through technical means and effective management. National security System operating and continuous development Personal privacy and property
  • 9. Page 8 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Security Development Limited communication technologies and dispersedly stored data Early 1900s Communication secrecy stage Information-based security replaces traditional security 1980s Information assurance stage Post-1960s Information security stage Internet development brings new challenges and threats to information security
  • 10. Page 9 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Photo or Information Leakage?  After the Chinese government invited bids for oil production equipment, Japanese intelligence experts used this simple photo to uncover the following secrets of the Daqing Oilfield:  Located between 46N and 48N, as indicated by the clothing of Wang Jinxi  Diameter of the oil well, inferred from the handle rack
  • 11. Page 10 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Communication Secrecy Stage  In the early 1900s, communication technologies were underdeveloped, and data was stored in different locations.  Information system security was limited to physical security of information and cipher- based security of communication (mainly stream cipher).  As long as information was in a relatively secure place and unauthorized users were prohibited from accessing the information, data security could be generally guaranteed.
  • 12. Page 11 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Security Stage  Since the 1990s, Internet technologies have developed rapidly, and information leaks have increased.  As a result, in addition to confidentiality, integrity and availability, information security began to focus on more principles and objectives, such as controllability and non- repudiation. Confidentiality Integrity Availability Controllability Non- repudiation
  • 13. Page 12 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Assurance Stage  Business-oriented information security assurance Different service traffic with various risks and protection methods Security system Cohesive security management and technical protection; proactive defense but not passive protection Management Talent development and system establishment for security management Business
  • 14. Page 13 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Case - WannaCry  In 2017, the WannaCry ransomware cryptoworm, propagated through EternalBlue, infected over 100,000 computers, causing a loss of US$8 billion. Energy Government Education Transportation
  • 15. Page 14 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Case - OceanLotus  Since April 2012, the OceanLotus group has carried out targeted penetration and attacks on important sectors of China, such as the government, scientific research institutes, maritime institutions, maritime construction, and shipping enterprises.  The attacks are intended to obtain confidential information, intercept intelligence sent out by attacked computers, and enable the computers to automatically send related intelligence.
  • 16. Page 15 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Discussion: What Are the Causes of Such Attacks? Direct Cause Indirect Cause  Virus  Vulnerability  Trojan horse  Backdoor program  DDoS attack  …  Information system complexity  Human and environment factors
  • 17. Page 16 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Increasing importance • The information network has become the foundation of economic prosperity, social stability, and national development. • Informatization profoundly influences the global economic integration, national strategy adjustment, and security priorities. • Information security has transformed from a technical issue into a matter of national security worldwide. Applicable to many technical fields For example: • Command, Control, Communications, Computers and Intelligence (C4I) system • E-commerce system • Biomedical system • Intelligent Transport System (ITS) Significance of Building Information Security Importance Applicability
  • 18. Page 17 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Contents 1. Information and Information Security 2. Information Security Risks and Management
  • 19. Page 18 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Risks Involved in Information Security Risks Physical risks Other risks System risks Information risks Management risks Application risks Network risks
  • 20. Page 19 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Physical Risks  Device theft and destruction  Link aging, man-made damage, and bite from animals  Network device fault  Network device unavailability due to power failure  Electromagnetic radiation in the equipment room
  • 21. Page 20 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Risks  Storage security  Transmission security  Access security
  • 22. Page 21 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Transmission Security Headquarters Branch Enterprise business information Tampered information Attacker
  • 23. Page 22 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Information Access Security Intranet Unauthorized user Illegal login Authorized user Authentication server on the network
  • 24. Page 23 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. System Risks  Database system configuration security  Security database  Security of services running in the system
  • 25. Page 24 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Application Risks  Network virus  Operating system security  Email application security  Web service security  FTP service security  DNS service security  Business application software security
  • 26. Page 25 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Network Risks Security zone
  • 27. Page 26 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Management Risks  Determine whether the information system has management risks from the following aspects: National policy • Effective national information security regulations formulated • Specialized agency to manage information security • Security management rules and equipment room management system with clear responsibilities and rights • Enterprises can establish own security management organizations Enterprise system • Effective security policies and high-quality security management personnel • Effective supervision and inspection system, and adherence to rules and regulations Management system
  • 28. Page 27 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Significance of Information Security Management  According to statistics, 70% of enterprise information loss is caused by negligence or intentional leakage by internal staff.  Security technologies are only the means to control information security. They can only be effective with the appropriate support of management procedures. 70% Weak security awareness among employees Loose authorization rules Non- standard system operations Malicious data theft Technologies 30% Management 70%
  • 29. Page 28 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Current Development of Information Security Management Each country has introduced its own information security development strategy and plan. Introducing information security development strategies and plans Defining and standardizing information security work through laws is the strongest guarantee for effective implementation of security measures. Strengthening legislation to achieve unified and standardized management The era of standardized and systematized information security management began in the 1990s. ISO/IEC 27000 is the best known system. Entering the era of standardized and systematized management Information Security Management
  • 30. Page 29 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Quiz 1. Information security incidents frequently occur because of security attack methods, such as vulnerabilities, viruses, and backdoor programs. A. True B. False
  • 31. Page 30 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Summary  Information security development history  Basic concepts of information security
  • 32. Page 31 Copyright © 2018 Huawei Technologies Co., Ltd. All rights reserved. Thank You www.huawei.com