Sabana Maharjan, profile picture
Uploaded bySabana Maharjan
PPTX, PDF45 views

Chapter8

Securing Information Systems discusses system vulnerability and abuse, contemporary security challenges, and technologies for protecting information resources. It defines security as policies, procedures, and technical measures to prevent unauthorized access. Controls ensure safety of assets, accuracy of records, and adherence to standards. Vulnerability is a system flaw intersecting with access and exploit capability. Systems are vulnerable due to accessibility, hardware/software problems, use outside an organization's control, and loss/theft of devices. Computer crime uses or targets computers/networks. Types include spoofing, sniffing, scams, denial of service attacks, war dialing, logic bombs, buffer overflows, password cracking, identity theft, and click fraud. Technologies like firewalls, intrusion

Embed presentation

Download to read offline
Securing Information Systems CHAPTER 8
System vulnerability and abuse Security Policies, procedures, and technical measures used to prevent unauthorized access, alteration, theft, or physical damage to information systems Security refers to the policies, procedures, and technical measures used to prevent unauthorized access, alteration, theft, or physical damage to information systems. Controls Methods, policies, and organizational procedures that ensure safety of organization’ s assets; accuracy and reliability of its accounting records; and operational loyalty to management standards Controls are methods, policies, and organizational procedures that ensure the safety of the organization’s assets, the accuracy and reliability of its records, and operational adherence to management standards.
Vulnerability Vulnerability is a weakness which allows an attacker to reduce a system’s information assurance. Vulnerability is the intersection of three elements: ◦ A system susceptibility or flaw ◦ Attacker access to the flaw ◦ Attacker capability to exploit the flaw
Why systems are vulnerable – Accessibility of networks – Hardware problems (breakdowns, configuration errors, damage from improper use or crime) – Software problems (programming errors, installation errors, unauthorized changes) – Disasters – Use of networks/computers outside of firm’s control – Loss and theft of portable devices
Contemporary security challenges and vulnerabilities
Computer crime It is any crime that involves a computer and a network Computer may have been used in the commission of a crime, or it may be the target
Types of computer crime Spoofing Sniffer 419 Scam Denial-of-service attacks(DoS) War dialing Logic bombs Buffer overflow Password Crackers Identity theft Click fraud
Cyber Security And Ethics Cyber security is the protection of computer systems from theft of or damage to their hardware, software or electronic data, as well as from disruption or misdirection of the services they provide. It includes controlling physical access to system hardware as well as protecting against harm that may be done via network access, malicious data and code injection. Due to malpractice by operators, whether intentional or accidental, IT security personnel are susceptible to being tricked into deviating from secure procedures through various methods of social engineering.
Consequences of a cyber attack Cyber attacks can disrupt and cause considerable financial and reputational damage to even the most resilient organization. If you suffer a cyber attack, you stand to lose assets, reputation and business, and potentially face regulatory fines and litigation- as well as the costs of remediation.
Cyber Ethics •Cyber-ethics is the discipline of using appropriate and ethical behaviors and acknowledging moral duties and obligations pertaining to online environments and digital media. •Cyber ethics is the ethics applied to the online environment. •Cyber ethics is a code of behavior for using the Internet.
DO DON’T schoolwork Use the internet to help you do the homework. You can find many information inside the internet Don’t copy other people works and call it your own. Do credits to the author or website. Music, videos and copyright Use the internet to learn about music, video and games. Don’t use the internet to download or share copyrighted material.
DO DON’T E-mail and instant messaging (IM) Use the internet to communicate with friends and family. But make sure you know to whom you exchange your e-mail and IM Don’t use the internet to communicate with strangers. Don’t pretend to be someone else and don’t be rude or use bad language. For Parents Encourage your children to use the Internet. The Internet has a lot good things to offer children. Don't leave your children unsupervised. Make sure you know what sites your children visit when they're on the internet, and with whom they're communicating. Look over their shoulder.
Rules of Cyber •Do not use rude or offensive language. •Don’t be a bully on the Internet. Do not call people names, lie about them, send embarrassing pictures of them, or do anything else to try to hurt them. •Do not copy information from the Internet and claim it as yours. That is called plagiarism. •Adhere to copyright restrictions when downloading material including software, games, movies, or music from the Internet. •Do not break into someone else’s computer. •Do not use someone else’s password. •Do not attempt to infect or in any way try to make someone else’s computer unusable.
Technologies and tools for protecting information resources Firewall Intrusion Detection Systems Antivirus and anti-spyware software Securing Wireless Networks Encryption

More Related Content

PPTX
Online Safety and Security
byArah Louise
 
PPT
Computer Ethics and Legal Issues
byKak Yong
 
PPT
Cyber and ethics(cyber crime and many more topics)
byRakshit Sharma
 
PPTX
Cyber crime, cyber law and cyber ethics
byPrabesh Shrestha
 
PPTX
Cyber Law and Cyber Crime
bySyangba132
 
PPT
cyber ethics
byAlomgir Hossain
 
PPT
9 ethics in it space
byAlwyn Dalmeida
 
PPT
Cyber Crime-The New War of the 21st Century
byUnited International University
 
Online Safety and Security
byArah Louise
 
Computer Ethics and Legal Issues
byKak Yong
 
Cyber and ethics(cyber crime and many more topics)
byRakshit Sharma
 
Cyber crime, cyber law and cyber ethics
byPrabesh Shrestha
 
Cyber Law and Cyber Crime
bySyangba132
 
cyber ethics
byAlomgir Hossain
 
9 ethics in it space
byAlwyn Dalmeida
 
Cyber Crime-The New War of the 21st Century
byUnited International University
 

What's hot

PPTX
C3 and digital citizenship
byJuliaHoesingVanderMolen
 
PPT
Technology Safety Practices
byShireen Mitchell
 
PPSX
Cyber crime and cyber security
byjyoti_lakhani
 
PPT
Webgraphicorganizerkaur
byArjeender Singh
 
PPT
Webgraphicorganizerkaur
byArjeender Singh
 
PPTX
Cyber Crime & Security
byAnchit Rajawat
 
PPTX
Privacy , Security and Ethics Presentation
byHajarul Cikyen
 
PPT
Cyber crime among students
byjune21harsh
 
PPTX
Cybercrime
byRatnesh Sharma
 
PPT
Cyber crime faizan project
bySyed Bokhari
 
PPTX
How to stay safe online
byHadilAlHaj
 
DOCX
Cyber ethics
byPreet Hanspal
 
PPT
Seminar on Cyber Crime
byLikan Patra
 
PPT
Safety And Security Of Data Student Work
byWynthorpe
 
PPTX
Cyber crimes among adolescents
byTreesa Lobo
 
PPTX
How to stay safe online
byxlilmermaidx
 
PPTX
TAMUC LO 7
byDr. Christopher Jones
 
PPT
Ethics in IT and System Usage
bytushki92
 
PPTX
Cyber crime (do's&dont's)
byNigel D'souza
 
PPTX
Cyberspace
byUtchi
 
C3 and digital citizenship
byJuliaHoesingVanderMolen
 
Technology Safety Practices
byShireen Mitchell
 
Cyber crime and cyber security
byjyoti_lakhani
 
Webgraphicorganizerkaur
byArjeender Singh
 
Webgraphicorganizerkaur
byArjeender Singh
 
Cyber Crime & Security
byAnchit Rajawat
 
Privacy , Security and Ethics Presentation
byHajarul Cikyen
 
Cyber crime among students
byjune21harsh
 
Cybercrime
byRatnesh Sharma
 
Cyber crime faizan project
bySyed Bokhari
 
How to stay safe online
byHadilAlHaj
 
Cyber ethics
byPreet Hanspal
 
Seminar on Cyber Crime
byLikan Patra
 
Safety And Security Of Data Student Work
byWynthorpe
 
Cyber crimes among adolescents
byTreesa Lobo
 
How to stay safe online
byxlilmermaidx
 
TAMUC LO 7
byDr. Christopher Jones
 
Ethics in IT and System Usage
bytushki92
 
Cyber crime (do's&dont's)
byNigel D'souza
 
Cyberspace
byUtchi
 

Similar to Chapter8

PPT
Cyber-Securityyyyyyyyyyyyyyyyyyyyyyyy.ppt
byhm5314581
 
PPTX
Cyber security
byRishav Sadhu
 
PPTX
Lecture 6 Cybersecurity-Basics and .pptx
byakatsesena2003
 
PPTX
Cyber security
byNimesh Gajjar
 
PPTX
BCE L-3omputer security Basics.pptx
byKirti Verma
 
PPT
Cyber security & Importance of Cyber Security
byMohammed Adam
 
PDF
cybersecurity-180303131014.pdf
byyashgupta810747
 
PPTX
Computer security and safety ethic and privacy Lecture 10.pptx
byabbasmursaleen786
 
PPTX
Lecture 10.pptx For dpt computer security
byadilkhan55485453
 
PPTX
IT-Presentation.pptx
byRobertBhattarai
 
PPT
9. Computer Ethics.ppt
byasm071149
 
PPTX
Cyber Security, cyber crime and cyber safety all .pptx
bysri223n
 
PPT
SHAILENDRA.ppt
byShailendraPandey96
 
PPT
presentation on cyber crime and security
byAlisha Korpal
 
PPT
Shailendra Pandey.ppt
byShailendraPandey96
 
PPTX
Lecture 8 privacy, security, ergonomics and the environment
byJenny Coloma
 
PPT
Shailendra Pandey.ppt
byShailendraPandey92
 
PPTX
Chapter-10-Information Security and Cyber Crime.pptx
byreaz4524
 
PPSX
Cyber security awareness presentation
byAshokkumar Gnanasekar
 
PDF
cybersecurityawareness-presentation-170627121043.pdf
byssuserd25aae
 
Cyber-Securityyyyyyyyyyyyyyyyyyyyyyyy.ppt
byhm5314581
 
Cyber security
byRishav Sadhu
 
Lecture 6 Cybersecurity-Basics and .pptx
byakatsesena2003
 
Cyber security
byNimesh Gajjar
 
BCE L-3omputer security Basics.pptx
byKirti Verma
 
Cyber security & Importance of Cyber Security
byMohammed Adam
 
cybersecurity-180303131014.pdf
byyashgupta810747
 
Computer security and safety ethic and privacy Lecture 10.pptx
byabbasmursaleen786
 
Lecture 10.pptx For dpt computer security
byadilkhan55485453
 
IT-Presentation.pptx
byRobertBhattarai
 
9. Computer Ethics.ppt
byasm071149
 
Cyber Security, cyber crime and cyber safety all .pptx
bysri223n
 
SHAILENDRA.ppt
byShailendraPandey96
 
presentation on cyber crime and security
byAlisha Korpal
 
Shailendra Pandey.ppt
byShailendraPandey96
 
Lecture 8 privacy, security, ergonomics and the environment
byJenny Coloma
 
Shailendra Pandey.ppt
byShailendraPandey92
 
Chapter-10-Information Security and Cyber Crime.pptx
byreaz4524
 
Cyber security awareness presentation
byAshokkumar Gnanasekar
 
cybersecurityawareness-presentation-170627121043.pdf
byssuserd25aae
 

More from Sabana Maharjan

PDF
All in one mis
bySabana Maharjan
 
PPTX
All in one mis
bySabana Maharjan
 
PPTX
M commerce
bySabana Maharjan
 
PPTX
E marketing
bySabana Maharjan
 
PDF
Onlineshhopping final
bySabana Maharjan
 
PPTX
Online shopping presentation
bySabana Maharjan
 
PPTX
Erlonggg
bySabana Maharjan
 
PPTX
Er diagram
bySabana Maharjan
 
PPTX
Er long
bySabana Maharjan
 
PPTX
Relational model
bySabana Maharjan
 
PPT
Introduction to structured query language (sql)
bySabana Maharjan
 
DOCX
Good food for better life
bySabana Maharjan
 
DOCX
Do not think about any consequences just travel around nepal
bySabana Maharjan
 
DOCX
5 best place to watch sunrise and sunset naturally
bySabana Maharjan
 
DOCX
Newari food
bySabana Maharjan
 
DOCX
This is indeed a life time experience
bySabana Maharjan
 
DOCX
File tracking system
bySabana Maharjan
 
PPTX
MIS enterprise system for collaboration
bySabana Maharjan
 
PPTX
Mis presentation
bySabana Maharjan
 
PPTX
Chapter9
bySabana Maharjan
 
All in one mis
bySabana Maharjan
 
All in one mis
bySabana Maharjan
 
M commerce
bySabana Maharjan
 
E marketing
bySabana Maharjan
 
Onlineshhopping final
bySabana Maharjan
 
Online shopping presentation
bySabana Maharjan
 
Erlonggg
bySabana Maharjan
 
Er diagram
bySabana Maharjan
 
Er long
bySabana Maharjan
 
Relational model
bySabana Maharjan
 
Introduction to structured query language (sql)
bySabana Maharjan
 
Good food for better life
bySabana Maharjan
 
Do not think about any consequences just travel around nepal
bySabana Maharjan
 
5 best place to watch sunrise and sunset naturally
bySabana Maharjan
 
Newari food
bySabana Maharjan
 
This is indeed a life time experience
bySabana Maharjan
 
File tracking system
bySabana Maharjan
 
MIS enterprise system for collaboration
bySabana Maharjan
 
Mis presentation
bySabana Maharjan
 
Chapter9
bySabana Maharjan
 

Recently uploaded

PDF
CISA Certified Information Systems Auditor: Unit 5
byVICTOR MAESTRE RAMIREZ
 
PPTX
Why Early Procurement and Collaboration Hold the Key with Venkata Subodth
byPMIUKChapter
 
PDF
Climate Justice - Bradlie and Bronwyn - Uk Summit 2025.pdf
byPMIUKChapter
 
PDF
Technology and Organisation: Understanding the Impact of ICT on Work, Skills,...
bymariyanaqvi512
 
PDF
Incident Management Incident Management Incident Management
bysduttbr
 
PDF
VICTOR MAESTRE RAMIREZ - ISO/IEC 27001:2022 Lead Auditor
byVICTOR MAESTRE RAMIREZ
 
PDF
Michael Ciullo_ How Can Music Transform Leadership and Creativity.pdf
byMichael Ciullo
 
PPTX
Program Evaluation in Management and Leadership Prespective
byuneed1
 
PPTX
HOUSEKEEPING TRAINING ORDER TAKER x.pptx
bycasatofany
 
PDF
Predictable Delivery: Apresentação Pública feita por Matthew
byAlexandre Marti
 
CISA Certified Information Systems Auditor: Unit 5
byVICTOR MAESTRE RAMIREZ
 
Why Early Procurement and Collaboration Hold the Key with Venkata Subodth
byPMIUKChapter
 
Climate Justice - Bradlie and Bronwyn - Uk Summit 2025.pdf
byPMIUKChapter
 
Technology and Organisation: Understanding the Impact of ICT on Work, Skills,...
bymariyanaqvi512
 
Incident Management Incident Management Incident Management
bysduttbr
 
VICTOR MAESTRE RAMIREZ - ISO/IEC 27001:2022 Lead Auditor
byVICTOR MAESTRE RAMIREZ
 
Michael Ciullo_ How Can Music Transform Leadership and Creativity.pdf
byMichael Ciullo
 
Program Evaluation in Management and Leadership Prespective
byuneed1
 
HOUSEKEEPING TRAINING ORDER TAKER x.pptx
bycasatofany
 
Predictable Delivery: Apresentação Pública feita por Matthew
byAlexandre Marti
 

Chapter8

  • 1.
  • 2.
    System vulnerability andabuse Security Policies, procedures, and technical measures used to prevent unauthorized access, alteration, theft, or physical damage to information systems Security refers to the policies, procedures, and technical measures used to prevent unauthorized access, alteration, theft, or physical damage to information systems. Controls Methods, policies, and organizational procedures that ensure safety of organization’ s assets; accuracy and reliability of its accounting records; and operational loyalty to management standards Controls are methods, policies, and organizational procedures that ensure the safety of the organization’s assets, the accuracy and reliability of its records, and operational adherence to management standards.
  • 3.
    Vulnerability Vulnerability is aweakness which allows an attacker to reduce a system’s information assurance. Vulnerability is the intersection of three elements: ◦ A system susceptibility or flaw ◦ Attacker access to the flaw ◦ Attacker capability to exploit the flaw
  • 4.
    Why systems arevulnerable – Accessibility of networks – Hardware problems (breakdowns, configuration errors, damage from improper use or crime) – Software problems (programming errors, installation errors, unauthorized changes) – Disasters – Use of networks/computers outside of firm’s control – Loss and theft of portable devices
  • 5.
  • 6.
    Computer crime It isany crime that involves a computer and a network Computer may have been used in the commission of a crime, or it may be the target
  • 7.
    Types of computercrime Spoofing Sniffer 419 Scam Denial-of-service attacks(DoS) War dialing Logic bombs Buffer overflow Password Crackers Identity theft Click fraud
  • 8.
    Cyber Security AndEthics Cyber security is the protection of computer systems from theft of or damage to their hardware, software or electronic data, as well as from disruption or misdirection of the services they provide. It includes controlling physical access to system hardware as well as protecting against harm that may be done via network access, malicious data and code injection. Due to malpractice by operators, whether intentional or accidental, IT security personnel are susceptible to being tricked into deviating from secure procedures through various methods of social engineering.
  • 9.
    Consequences of acyber attack Cyber attacks can disrupt and cause considerable financial and reputational damage to even the most resilient organization. If you suffer a cyber attack, you stand to lose assets, reputation and business, and potentially face regulatory fines and litigation- as well as the costs of remediation.
  • 10.
    Cyber Ethics •Cyber-ethics isthe discipline of using appropriate and ethical behaviors and acknowledging moral duties and obligations pertaining to online environments and digital media. •Cyber ethics is the ethics applied to the online environment. •Cyber ethics is a code of behavior for using the Internet.
  • 11.
    DO DON’T schoolwork Usethe internet to help you do the homework. You can find many information inside the internet Don’t copy other people works and call it your own. Do credits to the author or website. Music, videos and copyright Use the internet to learn about music, video and games. Don’t use the internet to download or share copyrighted material.
  • 12.
    DO DON’T E-mail andinstant messaging (IM) Use the internet to communicate with friends and family. But make sure you know to whom you exchange your e-mail and IM Don’t use the internet to communicate with strangers. Don’t pretend to be someone else and don’t be rude or use bad language. For Parents Encourage your children to use the Internet. The Internet has a lot good things to offer children. Don't leave your children unsupervised. Make sure you know what sites your children visit when they're on the internet, and with whom they're communicating. Look over their shoulder.
  • 13.
    Rules of Cyber •Donot use rude or offensive language. •Don’t be a bully on the Internet. Do not call people names, lie about them, send embarrassing pictures of them, or do anything else to try to hurt them. •Do not copy information from the Internet and claim it as yours. That is called plagiarism. •Adhere to copyright restrictions when downloading material including software, games, movies, or music from the Internet. •Do not break into someone else’s computer. •Do not use someone else’s password. •Do not attempt to infect or in any way try to make someone else’s computer unusable.
  • 14.
    Technologies and toolsfor protecting information resources Firewall Intrusion Detection Systems Antivirus and anti-spyware software Securing Wireless Networks Encryption