Uploaded byprofgufran
PPT, PDF34 views

Cyber Security in computer forensics.ppt

Cyber Security

Technology
Related topics:
Cyber-Security

Embed presentation

Download to read offline
1. Introduction to Computer Security
2 Introduction to Security Outline 1. Examples – Security in Practice 2. What is „Security?” 3. Pillars of Security: Confidentiality, Integrity, Availability (CIA) 4. Vulnerabilities, Threats, and Controls 5. Attackers 6. How to React to an Exploit? 7. Methods of Defense 8. Principles of Computer Security
3 [cf. Csilla Farkas, University of South Carolina] Information hiding Privacy Security Trust Applications Policy making Formal models Negotiation Network security Anonymity Access control Semantic web security Encryption Data mining System monitoring Computer epidemic Data provenance Fraud Biometrics Integrity Vulnerabilities Threats
4 1. Examples – Security in Practice From CSI/FBI Report 2002  90% detected computer security breaches within the last year  80% acknowledged financial losses  44% were willing and/or able to quantify their financial losses. These 223 respondents reported $455M in financial losses.  The most serious financial losses occurred through theft of proprietary information and financial fraud: 26 respondents: $170M 25 respondents: $115M For the fifth year in a row, more respondents (74%) cited their Internet connection as a frequent point of attack than cited their internal systems as a frequent point of attack (33%). 34% reported the intrusions to law enforcement. (In 1996, only 16% acknowledged reporting intrusions to law enforcement.) Barbara Edicott-Popovsky and Deborah Frincke, CSSE592/492, U. Washington]
5 More from CSI/FBI 2002  40% detected external penetration  40% detected denial of service attacks.  78% detected employee abuse of Internet access privileges  85% percent detected computer viruses.  38% suffered unauthorized access or misuse on their Web sites within the last twelve months. 21% didn’t know. [includes insider attacks]  12% reported theft of transaction information.  6% percent reported financial fraud (only 3% in 2000). [Barbara Edicott-Popovsky and Deborah Frincke, CSSE592/492, U. Washington]
6 Critical Infrastructure Areas  Include:  Telecommunications  Electrical power systems  Water supply systems  Gas and oil pipelines  Transportation  Government services  Emergency services  Banking and finance  …
7 2. What is a “Secure” Computer System?  To decide whether a computer system is “secure”, you must first decide what “secure” means to you, then identify the threats you care about. You Will Never Own a Perfectly Secure System!  Threats - examples  Viruses, trojan horses, etc.  Denial of Service  Stolen Customer Data  Modified Databases  Identity Theft and other threats to personal privacy  Equipment Theft  Espionage in cyberspace  Hack-tivism  Cyberterrorism  …
8 3. Basic Components of Security: Confidentiality, Integrity, Availability (CIA)  CIA  Confidentiality: Who is authorized to use data?  Integrity: Is data „good?”  Availability: Can access data whenever need it? C I A S S = Secure  CIA or CIAAAN…  (other security components added to CIA)  Authentication  Authorization  Non-repudiation  …
9 Need to Balance CIA  Example 1: C vs. I+A  Disconnect computer from Internet to increase confidentiality  Availability suffers, integrity suffers due to lost updates  Example 2: I vs. C+A  Have extensive data checks by different people/systems to increase integrity  Confidentiality suffers as more people see data, availability suffers due to locks on data under verification)

More Related Content

PPT
Cyber Security Business Plan Google Slides & PPT Template:
byMrchemMasterMindtric
 
PPT
Introduction to Computer Security.ppt
byKojaSb
 
PPT
hel1.ppt
bysheela631571
 
PPT
hel1.ppt
byssuserfdf7272
 
PPT
hel1.ppt
byFauziRahmanWiratmadj
 
PPT
hel1.ppt
byLakshmiPrasadGutta
 
PPT
hel1.ppt
byThontadharya H.J.
 
PPT
Security practivce and their best way to lear
byrahulshah641439
 
Cyber Security Business Plan Google Slides & PPT Template:
byMrchemMasterMindtric
 
Introduction to Computer Security.ppt
byKojaSb
 
hel1.ppt
bysheela631571
 
hel1.ppt
byssuserfdf7272
 
hel1.ppt
byFauziRahmanWiratmadj
 
hel1.ppt
byLakshmiPrasadGutta
 
hel1.ppt
byThontadharya H.J.
 
Security practivce and their best way to lear
byrahulshah641439
 

Similar to Cyber Security in computer forensics.ppt

PPT
hel1 (1).ppt on cyber security and its scope
byrakeshhiremath11
 
PPT
vadicmaka nuisthan yeadhti neathan coming for the event in the pjenth of the ...
byThiyagaRajan583837
 
PPT
Example of threats to the security of systems.ppt
byhellasassin
 
PPT
hel1systemsecurityinfomationsecurity.ppt
byprathmesh3878
 
PPT
Cybercrime Definition and Origins of the Word, Cybercrime and Information Sec...
byVinayKumarYB
 
PPT
Cybercrime Definition and Origins of the Word, Cybercrime and Information Sec...
byVinayKumarYB
 
PPT
Computer security power point prsentation.ppt
bypihadar269
 
PPT
hel1.ppt
bySharudinBoriak1
 
PDF
Chapter 1 - Introduction.pdf
byEthioDotNetDeveloper
 
PPT
PBL PROJECT - B2- (54,56,50,40) (2) (1).ppt
byItzsonya
 
PPT
sect1--ch1--intro.ppt
bykrizettealfelor
 
PPT
Computer Securityyyyyyyy - Chapter 1.ppt
bySolomonSB
 
PPT
its a computer security based ppt which is very useful
bySantoshChintawar
 
PPT
Cybercrime Definition and Origins of the Word, Cybercrime and Information Sec...
byVinayKumarYB
 
PPT
Cybercrime Definition and Origins of the Word, Cybercrime and Information Sec...
byVinayKumarYB
 
PPT
hel1.ppt
byUsmanSafdar21
 
PPT
hel1 (1).ppt
bySameer Ali
 
PPT
hel1.ppt
bySaiyed Shahab Ahmad
 
PPT
Information security and compliance areas
byrahulshah641439
 
DOCX
Security ConceptsDr. Y. ChuCIS3360 Security in Computing.docx
bybagotjesusa
 
hel1 (1).ppt on cyber security and its scope
byrakeshhiremath11
 
vadicmaka nuisthan yeadhti neathan coming for the event in the pjenth of the ...
byThiyagaRajan583837
 
Example of threats to the security of systems.ppt
byhellasassin
 
hel1systemsecurityinfomationsecurity.ppt
byprathmesh3878
 
Cybercrime Definition and Origins of the Word, Cybercrime and Information Sec...
byVinayKumarYB
 
Cybercrime Definition and Origins of the Word, Cybercrime and Information Sec...
byVinayKumarYB
 
Computer security power point prsentation.ppt
bypihadar269
 
hel1.ppt
bySharudinBoriak1
 
Chapter 1 - Introduction.pdf
byEthioDotNetDeveloper
 
PBL PROJECT - B2- (54,56,50,40) (2) (1).ppt
byItzsonya
 
sect1--ch1--intro.ppt
bykrizettealfelor
 
Computer Securityyyyyyyy - Chapter 1.ppt
bySolomonSB
 
its a computer security based ppt which is very useful
bySantoshChintawar
 
Cybercrime Definition and Origins of the Word, Cybercrime and Information Sec...
byVinayKumarYB
 
Cybercrime Definition and Origins of the Word, Cybercrime and Information Sec...
byVinayKumarYB
 
hel1.ppt
byUsmanSafdar21
 
hel1 (1).ppt
bySameer Ali
 
hel1.ppt
bySaiyed Shahab Ahmad
 
Information security and compliance areas
byrahulshah641439
 
Security ConceptsDr. Y. ChuCIS3360 Security in Computing.docx
bybagotjesusa
 

More from profgufran

PPT
Types of Threats in Local, shared, national.ppt
byprofgufran
 
PPT
Threats in cyber security Local, shared, national.ppt
byprofgufran
 
PPT
Confidentialiy, Integrity, Availability.ppt
byprofgufran
 
PPT
Confidentiality Integrity Availability PPT.ppt
byprofgufran
 
PPT
Data Preprocessing in Data Analytics.ppt
byprofgufran
 
PPT
Introduction to Machine Learning Process.ppt
byprofgufran
 
PPT
Supply chain management introduction.ppt
byprofgufran
 
PPT
Supply chain management Processessss.ppt
byprofgufran
 
PPT
Introduction_to_AdvanceExcel_FA12 - Copy.ppt
byprofgufran
 
PPT
Markov Learning Techniques and Tools.ppt
byprofgufran
 
PPT
Data Reduction tools and techniquess.ppt
byprofgufran
 
PPT
Supply chain management Coordination.ppt
byprofgufran
 
PPTX
Action Elements in artifical Intelligence.pptx
byprofgufran
 
PPT
Reinforcement Learning Tools and Techniques.ppt
byprofgufran
 
PPT
Coefficient and Correlation techniques.ppt
byprofgufran
 
PPTX
Planning ans Acting in nondeterminitics.pptx
byprofgufran
 
PPTX
New Computer Network Practical 02 SYBSCit.pptx
byprofgufran
 
PPT
Wavelet Transformation techniques and tools.ppt
byprofgufran
 
PPT
BullWhip effect in Supply Chain Management.ppt
byprofgufran
 
DOCX
Project Cover Page Introduction SPM.docx
byprofgufran
 
Types of Threats in Local, shared, national.ppt
byprofgufran
 
Threats in cyber security Local, shared, national.ppt
byprofgufran
 
Confidentialiy, Integrity, Availability.ppt
byprofgufran
 
Confidentiality Integrity Availability PPT.ppt
byprofgufran
 
Data Preprocessing in Data Analytics.ppt
byprofgufran
 
Introduction to Machine Learning Process.ppt
byprofgufran
 
Supply chain management introduction.ppt
byprofgufran
 
Supply chain management Processessss.ppt
byprofgufran
 
Introduction_to_AdvanceExcel_FA12 - Copy.ppt
byprofgufran
 
Markov Learning Techniques and Tools.ppt
byprofgufran
 
Data Reduction tools and techniquess.ppt
byprofgufran
 
Supply chain management Coordination.ppt
byprofgufran
 
Action Elements in artifical Intelligence.pptx
byprofgufran
 
Reinforcement Learning Tools and Techniques.ppt
byprofgufran
 
Coefficient and Correlation techniques.ppt
byprofgufran
 
Planning ans Acting in nondeterminitics.pptx
byprofgufran
 
New Computer Network Practical 02 SYBSCit.pptx
byprofgufran
 
Wavelet Transformation techniques and tools.ppt
byprofgufran
 
BullWhip effect in Supply Chain Management.ppt
byprofgufran
 
Project Cover Page Introduction SPM.docx
byprofgufran
 

Recently uploaded

PDF
6 Insights from the Patron Saint of AI Failure
byScott M. Graffius
 
PDF
AI Data Analyst: Smarter Insights for Modern Real Estate Decisions
byLeni Analyst
 
PDF
Are AI Hallucinations Getting Better or Worse? We Analyzed the Data.
byScott M. Graffius
 
PDF
Top 10 Dedicated Server Providers in Stockholm (Updated Edition).pdf
byAtal Networks
 
PDF
Zniber Partners. Audience Foresight for Confident Decisions
bySamuel Zniber
 
PDF
Building Voice Agents with Google Agent Development Kit
bySuresh Peiris
 
PDF
Top 5 Best Dedicated Server Providers in Los Angeles (Updated Edition)
byAtal Networks
 
PPTX
Storage-and-HCI-Positioning-update-sales.pptx
byhungungphu123
 
PDF
Just Eat Data Scraping For Restaurant Reviews And Pricing.pdf
byfusiondata2026
 
PPTX
Robot Vacuums are Cleaning Up. The global robot vacuum segment has high marke...
byRobert March
 
PDF
Mercury Computer Systems & The Cell Broadband Engine
bySlide_N
 
PDF
2025-CB-NCAE-slide-deck.pptx-1-83.pdf Virtual Orientation on the Administrati...
byNelizabethEsplaguera1
 
PDF
UiPath Coded Agents - A Developer Driven Agentic Automation Era
byUiPathCommunity
 
PPTX
About Computer Hardware ................
bymaratiakshaya07
 
PPTX
Webinar: EVerest for Production: Accelerating EV Charger Development w/ Indus...
byDanBrown980551
 
PPTX
congo red stain nd PAS STAIN histopathology
bybushrariaz1240
 
PDF
Salesforce Sales Cloud and Generative AI Present a Fresh Approach to Personal...
byMinuscule Technologies
 
PPT
connectives-linking words in English.ppt
byAmrMohammed82
 
PPTX
Apache Kafka 101 for Techies in IT dep.pptx
byamulyareddyk97
 
PPTX
Microsoft Azure News - January 2026 - BAUG
byDaniel Toomey
 
6 Insights from the Patron Saint of AI Failure
byScott M. Graffius
 
AI Data Analyst: Smarter Insights for Modern Real Estate Decisions
byLeni Analyst
 
Are AI Hallucinations Getting Better or Worse? We Analyzed the Data.
byScott M. Graffius
 
Top 10 Dedicated Server Providers in Stockholm (Updated Edition).pdf
byAtal Networks
 
Zniber Partners. Audience Foresight for Confident Decisions
bySamuel Zniber
 
Building Voice Agents with Google Agent Development Kit
bySuresh Peiris
 
Top 5 Best Dedicated Server Providers in Los Angeles (Updated Edition)
byAtal Networks
 
Storage-and-HCI-Positioning-update-sales.pptx
byhungungphu123
 
Just Eat Data Scraping For Restaurant Reviews And Pricing.pdf
byfusiondata2026
 
Robot Vacuums are Cleaning Up. The global robot vacuum segment has high marke...
byRobert March
 
Mercury Computer Systems & The Cell Broadband Engine
bySlide_N
 
2025-CB-NCAE-slide-deck.pptx-1-83.pdf Virtual Orientation on the Administrati...
byNelizabethEsplaguera1
 
UiPath Coded Agents - A Developer Driven Agentic Automation Era
byUiPathCommunity
 
About Computer Hardware ................
bymaratiakshaya07
 
Webinar: EVerest for Production: Accelerating EV Charger Development w/ Indus...
byDanBrown980551
 
congo red stain nd PAS STAIN histopathology
bybushrariaz1240
 
Salesforce Sales Cloud and Generative AI Present a Fresh Approach to Personal...
byMinuscule Technologies
 
connectives-linking words in English.ppt
byAmrMohammed82
 
Apache Kafka 101 for Techies in IT dep.pptx
byamulyareddyk97
 
Microsoft Azure News - January 2026 - BAUG
byDaniel Toomey
 

Cyber Security in computer forensics.ppt

  • 1.
    1. Introduction toComputer Security
  • 2.
    2 Introduction to Security Outline 1.Examples – Security in Practice 2. What is „Security?” 3. Pillars of Security: Confidentiality, Integrity, Availability (CIA) 4. Vulnerabilities, Threats, and Controls 5. Attackers 6. How to React to an Exploit? 7. Methods of Defense 8. Principles of Computer Security
  • 3.
    3 [cf. CsillaFarkas, University of South Carolina] Information hiding Privacy Security Trust Applications Policy making Formal models Negotiation Network security Anonymity Access control Semantic web security Encryption Data mining System monitoring Computer epidemic Data provenance Fraud Biometrics Integrity Vulnerabilities Threats
  • 4.
    4 1. Examples –Security in Practice From CSI/FBI Report 2002  90% detected computer security breaches within the last year  80% acknowledged financial losses  44% were willing and/or able to quantify their financial losses. These 223 respondents reported $455M in financial losses.  The most serious financial losses occurred through theft of proprietary information and financial fraud: 26 respondents: $170M 25 respondents: $115M For the fifth year in a row, more respondents (74%) cited their Internet connection as a frequent point of attack than cited their internal systems as a frequent point of attack (33%). 34% reported the intrusions to law enforcement. (In 1996, only 16% acknowledged reporting intrusions to law enforcement.) Barbara Edicott-Popovsky and Deborah Frincke, CSSE592/492, U. Washington]
  • 5.
    5 More from CSI/FBI2002  40% detected external penetration  40% detected denial of service attacks.  78% detected employee abuse of Internet access privileges  85% percent detected computer viruses.  38% suffered unauthorized access or misuse on their Web sites within the last twelve months. 21% didn’t know. [includes insider attacks]  12% reported theft of transaction information.  6% percent reported financial fraud (only 3% in 2000). [Barbara Edicott-Popovsky and Deborah Frincke, CSSE592/492, U. Washington]
  • 6.
    6 Critical Infrastructure Areas Include:  Telecommunications  Electrical power systems  Water supply systems  Gas and oil pipelines  Transportation  Government services  Emergency services  Banking and finance  …
  • 7.
    7 2. What isa “Secure” Computer System?  To decide whether a computer system is “secure”, you must first decide what “secure” means to you, then identify the threats you care about. You Will Never Own a Perfectly Secure System!  Threats - examples  Viruses, trojan horses, etc.  Denial of Service  Stolen Customer Data  Modified Databases  Identity Theft and other threats to personal privacy  Equipment Theft  Espionage in cyberspace  Hack-tivism  Cyberterrorism  …
  • 8.
    8 3. Basic Componentsof Security: Confidentiality, Integrity, Availability (CIA)  CIA  Confidentiality: Who is authorized to use data?  Integrity: Is data „good?”  Availability: Can access data whenever need it? C I A S S = Secure  CIA or CIAAAN…  (other security components added to CIA)  Authentication  Authorization  Non-repudiation  …
  • 9.
    9 Need to Balance CIA Example 1: C vs. I+A  Disconnect computer from Internet to increase confidentiality  Availability suffers, integrity suffers due to lost updates  Example 2: I vs. C+A  Have extensive data checks by different people/systems to increase integrity  Confidentiality suffers as more people see data, availability suffers due to locks on data under verification)

Editor's Notes

  • #9  In addition to all the rules and regulations, policies and procedures and the related system specific documentation, there are some current computer security issues of which you as the Executive should be made aware.