Uploaded byrussianacc2277
PDF, PPTX46 views

Chapter1 Information and Network Security

Chapter1 Information and Network Security

Embed presentation

Download as PDF, PPTX
Security and Privacy? Dr.abdalla sayed
What is information security? • Information security protects all types of data (not just personal) from unauthorized access, breaches, or loss. • Examples: Encryption of Bank Transactions (Data remains unreadable if intercepted) Firewalls & Antivirus (Prevent cyberattacks) Access Control in Companies (Employees can only access relevant files)
What is information security?
Confidentiality? • Data being stored is safe from unauthorized access & use • This ensures confidentiality, meaning that only the intended recipient can access the message, protecting it from eavesdropping, hackers, or even the service provider itself. • A real-world example of confidentiality in information security is the way end-to-end encryption (E2EE) works in messaging apps like WhatsApp, Signal, or Telegram (secret chats).
Integrity • Data is reliable and accurate. i.e., you get the “right” data • Example : Healthcare: Integrity in Electronic Health Records (EHRs) , windows updates
Availability? • The system or data is available for use when it is needed
What is privacy? • Privacy in information security refers to protecting personal data from unauthorized access, collection, or misuse while ensuring users have control over their information. • Example: • GDPR Cookie Consent (Websites must ask before tracking users) Private Mode in Browsers (No history or tracking) Medical Records Access (Only authorized doctors can view patient data)
Key Differences Aspect Privacy Information Security Focus Protecting personal data Securing all types of data Control User decides who accesses data Organization prevents unauthorized access Example Hiding social media profile Using encryption for emails
• Three Key Assets to Protect: Hardware (Physical devices like servers, computers, mobile phones) Software (Applications, operating systems, security tools) Data (User information, business records, encrypted files)
Hardware Security • What is Hardware Security? • Protecting physical devices from theft, damage, or tampering. • Key Threats: Device Theft (Laptops, USB drives, smartphones) Unauthorized Access (Unprotected servers, unencrypted drives) Hardware Failure (Data loss due to malfunction) • Security Measures: Encryption (Encrypt hard drives to prevent unauthorized access) Access Controls (Use biometric authentication, smart cards) Physical Security (Lock servers, use CCTV & access logs)
Software Security • What is Software Security? • Ensuring applications and systems are free from vulnerabilities. • Key Threats: Malware & Viruses (Compromising software integrity) Unpatched Software (Hackers exploit outdated systems) Unauthorized Software Access (Hackers manipulating apps) • Security Measures: Regular Software Updates (Patch vulnerabilities) Firewalls & Antivirus (Prevent malware infections) Application Security Testing (Find and fix bugs)
What is Data Security? • What is Data Security? • Protecting digital information from unauthorized access and corruption. • Key Threats: Data Breaches (Hackers stealing sensitive data) Ransomware Attacks (Encrypting data for ransom) Unauthorized Data Sharing (Leaking private information) • Security Measures: Data Encryption (Protect files at rest and in transit) Access Control (Only authorized users can view/edit data) Regular Backups (Ensure data recovery in case of attacks)
• Key Threats to Data Security & Privacy: Loss or Harm Interception Interruption Modification Fabrication
Loss or Harm • Definition: • Data is lost, deleted, or damaged, making it unusable or irrecoverable. • Causes: Accidental deletion or hardware failure Cyberattacks (ransomware, malware) Physical damage (fire, flood, theft)
Interception • Definition: • Data is intercepted during transmission by an unauthorized party. • Examples: Man-in-the-Middle (MITM) attacks Packet sniffing on public Wi-Fi
Interruption • Definition: Disrupts data availability or system operations. • Examples: Distributed Denial-of-Service (DDoS) attacks Server crashes or power outages Ransomware locking critical systems
Modification • Definition: • Unauthorized alteration of data, affecting its integrity. • Examples: Database tampering Malware modifying financial transactions Unauthorized edits in Electronic Health Records (EHRs)
Fabrication • Definition: • Fake or unauthorized data is created, misleading systems or users. • Examples: Fake accounts in banking apps Phishing emails with malicious links Spoofed transactions in financial systems

More Related Content

PPTX
Digital literacy lecture 2 data security.pptx
byjohnnderitu16
 
PDF
Data+Security+Masterclass Presentation.pdf
byckurt9676
 
PPTX
Computer security concepts
byPrachi Gulihar
 
PPT
Data+security+sp10
byismaelhaider
 
PDF
Course Information Security Lecture 1.pdf
bySamahAdel16
 
PPTX
INFORMATION AND CYBER SECURITY
byNishant Pawar
 
PPTX
Information Systems.pptx
byKnownId
 
PDF
Perimeter Security is Failing
byUL Transaction Security
 
Digital literacy lecture 2 data security.pptx
byjohnnderitu16
 
Data+Security+Masterclass Presentation.pdf
byckurt9676
 
Computer security concepts
byPrachi Gulihar
 
Data+security+sp10
byismaelhaider
 
Course Information Security Lecture 1.pdf
bySamahAdel16
 
INFORMATION AND CYBER SECURITY
byNishant Pawar
 
Information Systems.pptx
byKnownId
 
Perimeter Security is Failing
byUL Transaction Security
 

Similar to Chapter1 Information and Network Security

PPTX
Information Security and Indian IT Act 2000
byDr. Prashant Vats
 
PPTX
Information-Security_System_Notes__.pptx
byabhinaygupta389
 
PPTX
Youb Raj Presentation. (4).pptx (1).pptx
bychesgranmaster
 
PPT
Information security management v2010
byjoevest
 
PPTX
Advanced Operating System Principles.pptx
byyuvapapa26
 
PPTX
Information security
byAlaaMahmoud108
 
PPTX
Information Security and Privacy-Unit-1.pptx
byNiharikaDubey17
 
PDF
Cyber security
byPrem Raval
 
PPT
Information security and other issues
byHaseeb Ahmed Awan
 
PPTX
unit -ii security1.pptx for Information system management
byemjalaraju1
 
PPT
Information security background
byNicholas Davis
 
PPT
Information Security Background
byNicholas Davis
 
PPTX
Introduction to Security (Hardware, Software, Data & Policies)
byAmr Salah
 
PPTX
CS5300 class presentation on managing information systems
byzenhubris
 
PPTX
Date security introduction
byLeo Mark Villar
 
PDF
information security introduction for campus students.pdf
byhailegebrielgeta6
 
PDF
CYBER SECURITY WHAT IS IT AND WHAT YOU NEED TO KNOW.pdf
byJenna Murray
 
PPTX
Lecture 01-Introduction to IIS Lecture note
byDngKhnh39
 
PPT
Computer Securityyyyyyyy - Chapter 1.ppt
bySolomonSB
 
PPTX
Introduction to Information Security
byShreedevi Tharanidharan
 
Information Security and Indian IT Act 2000
byDr. Prashant Vats
 
Information-Security_System_Notes__.pptx
byabhinaygupta389
 
Youb Raj Presentation. (4).pptx (1).pptx
bychesgranmaster
 
Information security management v2010
byjoevest
 
Advanced Operating System Principles.pptx
byyuvapapa26
 
Information security
byAlaaMahmoud108
 
Information Security and Privacy-Unit-1.pptx
byNiharikaDubey17
 
Cyber security
byPrem Raval
 
Information security and other issues
byHaseeb Ahmed Awan
 
unit -ii security1.pptx for Information system management
byemjalaraju1
 
Information security background
byNicholas Davis
 
Information Security Background
byNicholas Davis
 
Introduction to Security (Hardware, Software, Data & Policies)
byAmr Salah
 
CS5300 class presentation on managing information systems
byzenhubris
 
Date security introduction
byLeo Mark Villar
 
information security introduction for campus students.pdf
byhailegebrielgeta6
 
CYBER SECURITY WHAT IS IT AND WHAT YOU NEED TO KNOW.pdf
byJenna Murray
 
Lecture 01-Introduction to IIS Lecture note
byDngKhnh39
 
Computer Securityyyyyyyy - Chapter 1.ppt
bySolomonSB
 
Introduction to Information Security
byShreedevi Tharanidharan
 

Recently uploaded

PDF
Weaponizing the Neutral Web: Analyzing Adversary Botnets for Offensive Cyber ...
byJoe Slowik
 
PDF
Top 3 Snapchat Monitoring Apps of 2026 for Activity Tracking
byMichael Carter
 
PPTX
Your Complete Brand Protection Guide with Fieldwatch.ai!
byFieldwatch ai
 
PPTX
Living in IT Era Module 5 - (DIGITAL TECHNOLOGY AND SOCIAL CHANGES).pptx
bycjregua03
 
PDF
The Girl Who Left a Mark - Deep Impact of Kindness to a person
byAnoop Singh Nagi
 
PPTX
AWS Architecture Design Icons Template.pptx
bybiqtor1
 
Weaponizing the Neutral Web: Analyzing Adversary Botnets for Offensive Cyber ...
byJoe Slowik
 
Top 3 Snapchat Monitoring Apps of 2026 for Activity Tracking
byMichael Carter
 
Your Complete Brand Protection Guide with Fieldwatch.ai!
byFieldwatch ai
 
Living in IT Era Module 5 - (DIGITAL TECHNOLOGY AND SOCIAL CHANGES).pptx
bycjregua03
 
The Girl Who Left a Mark - Deep Impact of Kindness to a person
byAnoop Singh Nagi
 
AWS Architecture Design Icons Template.pptx
bybiqtor1
 

Chapter1 Information and Network Security

  • 1.
  • 2.
    What is informationsecurity? • Information security protects all types of data (not just personal) from unauthorized access, breaches, or loss. • Examples: Encryption of Bank Transactions (Data remains unreadable if intercepted) Firewalls & Antivirus (Prevent cyberattacks) Access Control in Companies (Employees can only access relevant files)
  • 3.
  • 4.
    Confidentiality? • Data beingstored is safe from unauthorized access & use • This ensures confidentiality, meaning that only the intended recipient can access the message, protecting it from eavesdropping, hackers, or even the service provider itself. • A real-world example of confidentiality in information security is the way end-to-end encryption (E2EE) works in messaging apps like WhatsApp, Signal, or Telegram (secret chats).
  • 5.
    Integrity • Data isreliable and accurate. i.e., you get the “right” data • Example : Healthcare: Integrity in Electronic Health Records (EHRs) , windows updates
  • 6.
    Availability? • The systemor data is available for use when it is needed
  • 7.
    What is privacy? •Privacy in information security refers to protecting personal data from unauthorized access, collection, or misuse while ensuring users have control over their information. • Example: • GDPR Cookie Consent (Websites must ask before tracking users) Private Mode in Browsers (No history or tracking) Medical Records Access (Only authorized doctors can view patient data)
  • 8.
    Key Differences Aspect PrivacyInformation Security Focus Protecting personal data Securing all types of data Control User decides who accesses data Organization prevents unauthorized access Example Hiding social media profile Using encryption for emails
  • 9.
    • Three KeyAssets to Protect: Hardware (Physical devices like servers, computers, mobile phones) Software (Applications, operating systems, security tools) Data (User information, business records, encrypted files)
  • 10.
    Hardware Security • Whatis Hardware Security? • Protecting physical devices from theft, damage, or tampering. • Key Threats: Device Theft (Laptops, USB drives, smartphones) Unauthorized Access (Unprotected servers, unencrypted drives) Hardware Failure (Data loss due to malfunction) • Security Measures: Encryption (Encrypt hard drives to prevent unauthorized access) Access Controls (Use biometric authentication, smart cards) Physical Security (Lock servers, use CCTV & access logs)
  • 11.
    Software Security • Whatis Software Security? • Ensuring applications and systems are free from vulnerabilities. • Key Threats: Malware & Viruses (Compromising software integrity) Unpatched Software (Hackers exploit outdated systems) Unauthorized Software Access (Hackers manipulating apps) • Security Measures: Regular Software Updates (Patch vulnerabilities) Firewalls & Antivirus (Prevent malware infections) Application Security Testing (Find and fix bugs)
  • 12.
    What is DataSecurity? • What is Data Security? • Protecting digital information from unauthorized access and corruption. • Key Threats: Data Breaches (Hackers stealing sensitive data) Ransomware Attacks (Encrypting data for ransom) Unauthorized Data Sharing (Leaking private information) • Security Measures: Data Encryption (Protect files at rest and in transit) Access Control (Only authorized users can view/edit data) Regular Backups (Ensure data recovery in case of attacks)
  • 13.
    • Key Threatsto Data Security & Privacy: Loss or Harm Interception Interruption Modification Fabrication
  • 14.
    Loss or Harm •Definition: • Data is lost, deleted, or damaged, making it unusable or irrecoverable. • Causes: Accidental deletion or hardware failure Cyberattacks (ransomware, malware) Physical damage (fire, flood, theft)
  • 15.
    Interception • Definition: • Datais intercepted during transmission by an unauthorized party. • Examples: Man-in-the-Middle (MITM) attacks Packet sniffing on public Wi-Fi
  • 16.
    Interruption • Definition: Disrupts dataavailability or system operations. • Examples: Distributed Denial-of-Service (DDoS) attacks Server crashes or power outages Ransomware locking critical systems
  • 17.
    Modification • Definition: • Unauthorizedalteration of data, affecting its integrity. • Examples: Database tampering Malware modifying financial transactions Unauthorized edits in Electronic Health Records (EHRs)
  • 18.
    Fabrication • Definition: • Fakeor unauthorized data is created, misleading systems or users. • Examples: Fake accounts in banking apps Phishing emails with malicious links Spoofed transactions in financial systems