TK
Uploaded byTapan Khilar
PPTX, PDF900 views

Data security

This document discusses data security and password protection. It explains that passwords should be strong, with a minimum of 6 characters including letters, numbers, and symbols. Longer passwords are more secure, with 12+ character passwords being very secure. The document also discusses encryption, explaining that encryption translates plain text into encrypted ciphertext using a key, and the same key is needed for decryption. Encryption securely protects data by allowing only authorized parties with the key to access it. Common encryption methods include DES, RSA, AES, Blowfish and Twofish. Free encryption tools include Veracrypt, Bitlocker and AxCrypt.

Embed presentation

Downloaded 18 times
It’s your data – are you sure it’s safe?
 Data is any type of stored digital information  Every company needs places to store institutional knowledge and data.  Frequently that data contains proprietary information  Personally Identifiable Data  Employee HR Data  Financial Data  The security and confidentiality of this data is of critical importance.
ď‚ž Data needs to be available at all necessary times ď‚ž Data needs to be available to only the appropriate users ď‚ž Need to be able to track who has access to and who has accessed what data
 Security is about the protection of assets.  Prevention: measures taken to protect your assets from being damaged.  Detection: measures taken to allow you to detect when an asset has been damaged, how it was damaged and who damaged it.  Reaction: measures that allow you to recover your assets.
 A security policy is a comprehensive document that defines a companies’ methods for prevention, detection, reaction, classification, accountability of data security practices and enforcement methods.  It generally follows industry best practices as defined by ISO 17799,27001-02, PCI, ITIL, SAS-70, HIPPA , SOX or a mix of them. Security Policy
ď‚ž The security policy is the key document in effective security practices. ď‚ž Once it has been defined it must be implemented and modified and include any exceptions that may need to be in place for business continuity. ď‚ž All users need to be trained on these best practices with continuing education at regular intervals.
ď‚ž Data needs to be classified in the security policy according to its sensitivity. ď‚ž Once this has taken place, the most sensitive data has extra measures in place to safeguard and ensure its integrity and availability. ď‚ž All access to this sensitive data must be logged. ď‚ž Secure data is usually isolated from other stored data.
ď‚ž Controlling physical access to the data center or area where the data is stored. ď‚ž Active or Open Directory is a centralized authentication management system that is available to companies to control and log access to any data on the system. ď‚ž Encryption of the sensitive data is critical before transmission across public networks
 The use of firewalls on all publicly facing WAN connections.  Deploying VLANs’ and ACLs’ to isolate sensitive departments from the rest of the network.  Shutting down unused switch ports.  If wireless is deployed, use authentication servers to verify and log the identity of those logging on.  Anti-Virus and malicious software protection on all systems.
 There are four key issues in the security of databases just as with all security systems  Availability  Authenticity  Integrity  Confidentiality
ď‚ž Data needs to be available at all necessary times ď‚ž Data needs to be available to only the appropriate users ď‚ž Need to be able to track who has access to and who has accessed what data
ď‚ž . Need to ensure that the data has been edited by an authorized source ď‚ž Need to confirm that users accessing the system are who they say they are ď‚ž Need to verify that all report requests are from authorized users ď‚ž Need to verify that any outbound data is going to the expected receiver
ď‚ž . Need to verify that any external data has the correct formatting and other metadata ď‚ž Need to verify that all input data is accurate and verifiable ď‚ž Need to ensure that data is following the correct work flow rules for your institution/corporation ď‚ž Need to be able to report on all data changes and who authored them to ensure compliance with corporate rules and privacy laws.
ď‚ž . Need to ensure that confidential data is only available to correct people ď‚ž Need to ensure that entire database is security from external and internal system breaches ď‚ž Need to provide for reporting on who has accessed what data and what they have done with it ď‚ž Mission critical and Legal sensitive data must be highly security at the potential risk of lost business and litigation
DATA SECURITY - PASSWORD Password protection is a security process that protects information accessible via computers that needs to be protected from certain users. Password protection allows only those with an authorized password to gain access to certain information. A strong password consists of at least six characters (and the more characters, thestronger the password) that are a combination of letters, numbers and symbols (@, #, $, %, etc.) if allowed. Passwords are typically case-sensitive, so a strong password contains letters in both uppercase and lowercase.
Windows 10 Sign in options  PASSWORD  PIN  PICTURE Nine-character passwords take five days to break, 10-character words take four months, and 11-character passwords take 10 years. Make it up to 12 characters, and you're looking at 200 years' worth of security – not bad for one little letter.
Encryption is the process of translating plain text data (plaintext) into something that appears to be random and meaningless (ciphertext). ... A symmetric key is used during both the encryption and decryption processes. To decrypt a particular piece of ciphertext, the key that was used to encrypt the data must be used.
Encryption is important because it allows you to securely protect data that you don't want anyone else to have access. Types of encryption:- DES RSA AES BLOWISH TWOFISH There are quite a few free tools that will allow to encrypt whole text documents. Veracrypt, Bitlocker, AxCrypt.
Data security

More Related Content

PPTX
Data Security Explained
byHappiest Minds Technologies
 
PPTX
Data security
byForeSolutions
 
PPTX
Cyber Security 101: Training, awareness, strategies for small to medium sized...
byStephen Cobb
 
PPT
Employee Security Training[1]@
byR_Yanus
 
PPTX
Endpoint Protection
bySophos
 
PPTX
Cyber Security Best Practices
byEvolve IP
 
PPTX
Information security awareness - 101
bymateenzero
 
PPTX
The Zero Trust Model of Information Security
byTripwire
 
Data Security Explained
byHappiest Minds Technologies
 
Data security
byForeSolutions
 
Cyber Security 101: Training, awareness, strategies for small to medium sized...
byStephen Cobb
 
Employee Security Training[1]@
byR_Yanus
 
Endpoint Protection
bySophos
 
Cyber Security Best Practices
byEvolve IP
 
Information security awareness - 101
bymateenzero
 
The Zero Trust Model of Information Security
byTripwire
 

What's hot

PPTX
Data security
byAbdulBasit938
 
PPTX
what is data security full ppt
byShahbaz Khan
 
PPTX
Introduction to Network Security
byJohn Ely Masculino
 
PDF
1. introduction to cyber security
byAnimesh Roy
 
PDF
Information Security Awareness Training
byRandy Bowman
 
PDF
End-User Security Awareness
bySurya Bathulapalli
 
PDF
Data Leakage Prevention (DLP)
byNetwork Intelligence India
 
PPTX
Data Security
byAkNirojan
 
PPT
Introduction to Cyber Security
byStephen Lahanas
 
PPTX
Security awareness
byJosh Chandler
 
PPTX
Cloud security ppt
byVenkatesh Chary
 
PPT
Introduction To Information Security
bybelsis
 
PPT
Information security
byLJ PROJECTS
 
PPT
End User Security Awareness Presentation
byCristian Mihai
 
PPTX
Network security
bySimranpreet Singh
 
PPTX
Cybersecurity Awareness
byJoshuaWisniewski3
 
PPTX
Cybersecurity Awareness Training
byDave Monahan
 
PPTX
Network Security
byManoj Singh
 
PPTX
System hardening - OS and Application
byedavid2685
 
PPT
Windows forensic artifacts
byn|u - The Open Security Community
 
Data security
byAbdulBasit938
 
what is data security full ppt
byShahbaz Khan
 
Introduction to Network Security
byJohn Ely Masculino
 
1. introduction to cyber security
byAnimesh Roy
 
Information Security Awareness Training
byRandy Bowman
 
End-User Security Awareness
bySurya Bathulapalli
 
Data Leakage Prevention (DLP)
byNetwork Intelligence India
 
Data Security
byAkNirojan
 
Introduction to Cyber Security
byStephen Lahanas
 
Security awareness
byJosh Chandler
 
Cloud security ppt
byVenkatesh Chary
 
Introduction To Information Security
bybelsis
 
Information security
byLJ PROJECTS
 
End User Security Awareness Presentation
byCristian Mihai
 
Network security
bySimranpreet Singh
 
Cybersecurity Awareness
byJoshuaWisniewski3
 
Cybersecurity Awareness Training
byDave Monahan
 
Network Security
byManoj Singh
 
System hardening - OS and Application
byedavid2685
 
Windows forensic artifacts
byn|u - The Open Security Community
 

Similar to Data security

PPTX
Computer security concepts
byPrachi Gulihar
 
PPTX
Database security
bySoftware Engineering
 
PPTX
unit-1-is1.pptx
bysorabhsingh17
 
PPTX
what is data security full ppt
byShahbaz Khan
 
PPT
DataSecurity Presentation to help people be safe
bywafulajoosh
 
PPTX
Database managementsystemes_Unit-7.pptxe
bychnrketan
 
PPTX
basic to advance network security concepts
byamansinght675
 
PPTX
Data Security Management - Data Analytics
byrashiesoft
 
PPTX
CISSP Certification-Asset Security
byHamed Moghaddam
 
PPTX
L1-Introduction to Data Security.pptx models
byrkvrojinkvarughese07
 
PDF
Short Handbook for CISSP Learners with all domains
byarpitmags1
 
PDF
Fundamental Concepts of Data Security _Security Controls
bySibtainHaider13
 
PPTX
Digital literacy lecture 2 data security.pptx
byjohnnderitu16
 
DOCX
Database Security—Concepts,Approaches, and ChallengesElisa
byOllieShoresna
 
PPT
Database & Data Security
byCloudbells.com
 
PPT
Dstca
byajay vj
 
PPTX
Security & Risk Mgmt_WK1.pptx
bydotco
 
PPTX
Security & Risk Mgmt_WK1.pptx
byTechnocracy2
 
PPTX
It security
byavi2607
 
PPTX
PERFORMING COMPUTER OPERATIONS.pptx
byMARYANGELEEEROLLORAT
 
Computer security concepts
byPrachi Gulihar
 
Database security
bySoftware Engineering
 
unit-1-is1.pptx
bysorabhsingh17
 
what is data security full ppt
byShahbaz Khan
 
DataSecurity Presentation to help people be safe
bywafulajoosh
 
Database managementsystemes_Unit-7.pptxe
bychnrketan
 
basic to advance network security concepts
byamansinght675
 
Data Security Management - Data Analytics
byrashiesoft
 
CISSP Certification-Asset Security
byHamed Moghaddam
 
L1-Introduction to Data Security.pptx models
byrkvrojinkvarughese07
 
Short Handbook for CISSP Learners with all domains
byarpitmags1
 
Fundamental Concepts of Data Security _Security Controls
bySibtainHaider13
 
Digital literacy lecture 2 data security.pptx
byjohnnderitu16
 
Database Security—Concepts,Approaches, and ChallengesElisa
byOllieShoresna
 
Database & Data Security
byCloudbells.com
 
Dstca
byajay vj
 
Security & Risk Mgmt_WK1.pptx
bydotco
 
Security & Risk Mgmt_WK1.pptx
byTechnocracy2
 
It security
byavi2607
 
PERFORMING COMPUTER OPERATIONS.pptx
byMARYANGELEEEROLLORAT
 

More from Tapan Khilar

PPTX
Server operating system
byTapan Khilar
 
PPTX
cyber security.pptx
byTapan Khilar
 
PPTX
IDS VS IPS.pptx
byTapan Khilar
 
PPTX
Internet security
byTapan Khilar
 
PPTX
CYBER SECURITY AWARENESS.pptx
byTapan Khilar
 
PPTX
Network devices
byTapan Khilar
 
PPTX
mobile security.pptx
byTapan Khilar
 
PPT
Memory and storage
byTapan Khilar
 
PPTX
Acl cisco
byTapan Khilar
 
PPT
FIBER OPTICS .ppt
byTapan Khilar
 
PPTX
Ip addressing
byTapan Khilar
 
PPTX
I series processor
byTapan Khilar
 
PPTX
Input and output device
byTapan Khilar
 
PPTX
IT ACT 2000 _ AA 2008_TAPAN.pptx
byTapan Khilar
 
PPTX
Computer networking
byTapan Khilar
 
PPTX
Operating systems
byTapan Khilar
 
PPTX
cctv setup (2).pptx
byTapan Khilar
 
PPTX
Network switch
byTapan Khilar
 
PPTX
Snmp network monitoring
byTapan Khilar
 
PPTX
SNMP_ network monitoring.pptx
byTapan Khilar
 
Server operating system
byTapan Khilar
 
cyber security.pptx
byTapan Khilar
 
IDS VS IPS.pptx
byTapan Khilar
 
Internet security
byTapan Khilar
 
CYBER SECURITY AWARENESS.pptx
byTapan Khilar
 
Network devices
byTapan Khilar
 
mobile security.pptx
byTapan Khilar
 
Memory and storage
byTapan Khilar
 
Acl cisco
byTapan Khilar
 
FIBER OPTICS .ppt
byTapan Khilar
 
Ip addressing
byTapan Khilar
 
I series processor
byTapan Khilar
 
Input and output device
byTapan Khilar
 
IT ACT 2000 _ AA 2008_TAPAN.pptx
byTapan Khilar
 
Computer networking
byTapan Khilar
 
Operating systems
byTapan Khilar
 
cctv setup (2).pptx
byTapan Khilar
 
Network switch
byTapan Khilar
 
Snmp network monitoring
byTapan Khilar
 
SNMP_ network monitoring.pptx
byTapan Khilar
 

Recently uploaded

PDF
Importance of Python language in Data Science
byfathymanoushad2005
 
PDF
AWS Certified Data Engineer Slides - For AWS
byDiogoCataPreta
 
PPTX
Agentic AI Presentation | PowerPoint Presentation | Generative AI | Artificia...
bySiddharth Ghosh
 
PDF
Safely Managing Old Gmail Accounts in 2026.pdf
bynewpvait.com
 
PDF
AWSCertifiedGenerativeAIDeveloper111.pdf
byhemarubini21it
 
PPTX
GROUP20720-20SCIENCE20THE20GALAXY203-2.pptx
bycasinoruxlloydjude
 
PPTX
Decision science introduction in decision making
bymatthewquayson2
 
DOCX
Cost Effective Design for Streaming Data Systems.docx
bytotabrez1
 
PDF
BUKTI KEMENANGAN MEMBER KANCAH4D – WD PULUHAN JUTA DARI STARLIGHT PRINCESS!
bykancah4d
 
PPTX
Data Storytelling with Power BI: From Raw Data to Executive Dashboards
bysaharmughal9
 
PDF
Extract Google Restaurant Menu Data Using APIs
byFoodspark - Food Data & Insights
 
PPTX
_(2) ppt 2021-2022 Protein Metabolism_.pptx
byenghebayousif87
 
PPT
linear_algebra mldataaimachiee leARNINGML
byssuser70a8841
 
PPTX
Narratives of Makuapo A narrative Study.pptx
byAiraAntonetteVZarcil
 
PPTX
[DSC Europe 25] Slobodan Dolinic - Smart and Intelligent Green Region.pptx
byDataScienceConferenc1
 
PPTX
[DSC Europe 25] Ivica Milaric - The Future of Gaming and AI Tools.pptx
byDataScienceConferenc1
 
PPTX
Hepatitis.pptx slideshare by me myself and you nknkhk
byPB2013DhanashreeNaik
 
PPTX
GrantGreenberg_metagenomic.metagenomics principles and basics
byssuser67fbfc
 
PPTX
Investigatory-Project-on-Drug-Addiction-Final.pptx
byYashAggarwal233278
 
PPTX
CC.pptx ffvdv fgfgdrgrgrgbtrgvtygvcrterewe
byPB2013DhanashreeNaik
 
Importance of Python language in Data Science
byfathymanoushad2005
 
AWS Certified Data Engineer Slides - For AWS
byDiogoCataPreta
 
Agentic AI Presentation | PowerPoint Presentation | Generative AI | Artificia...
bySiddharth Ghosh
 
Safely Managing Old Gmail Accounts in 2026.pdf
bynewpvait.com
 
AWSCertifiedGenerativeAIDeveloper111.pdf
byhemarubini21it
 
GROUP20720-20SCIENCE20THE20GALAXY203-2.pptx
bycasinoruxlloydjude
 
Decision science introduction in decision making
bymatthewquayson2
 
Cost Effective Design for Streaming Data Systems.docx
bytotabrez1
 
BUKTI KEMENANGAN MEMBER KANCAH4D – WD PULUHAN JUTA DARI STARLIGHT PRINCESS!
bykancah4d
 
Data Storytelling with Power BI: From Raw Data to Executive Dashboards
bysaharmughal9
 
Extract Google Restaurant Menu Data Using APIs
byFoodspark - Food Data & Insights
 
_(2) ppt 2021-2022 Protein Metabolism_.pptx
byenghebayousif87
 
linear_algebra mldataaimachiee leARNINGML
byssuser70a8841
 
Narratives of Makuapo A narrative Study.pptx
byAiraAntonetteVZarcil
 
[DSC Europe 25] Slobodan Dolinic - Smart and Intelligent Green Region.pptx
byDataScienceConferenc1
 
[DSC Europe 25] Ivica Milaric - The Future of Gaming and AI Tools.pptx
byDataScienceConferenc1
 
Hepatitis.pptx slideshare by me myself and you nknkhk
byPB2013DhanashreeNaik
 
GrantGreenberg_metagenomic.metagenomics principles and basics
byssuser67fbfc
 
Investigatory-Project-on-Drug-Addiction-Final.pptx
byYashAggarwal233278
 
CC.pptx ffvdv fgfgdrgrgrgbtrgvtygvcrterewe
byPB2013DhanashreeNaik
 

Data security

  • 1.
    It’s your data– are you sure it’s safe?
  • 2.
     Data isany type of stored digital information  Every company needs places to store institutional knowledge and data.  Frequently that data contains proprietary information  Personally Identifiable Data  Employee HR Data  Financial Data  The security and confidentiality of this data is of critical importance.
  • 3.
    ď‚ž Data needsto be available at all necessary times ď‚ž Data needs to be available to only the appropriate users ď‚ž Need to be able to track who has access to and who has accessed what data
  • 4.
     Security isabout the protection of assets.  Prevention: measures taken to protect your assets from being damaged.  Detection: measures taken to allow you to detect when an asset has been damaged, how it was damaged and who damaged it.  Reaction: measures that allow you to recover your assets.
  • 5.
     A securitypolicy is a comprehensive document that defines a companies’ methods for prevention, detection, reaction, classification, accountability of data security practices and enforcement methods.  It generally follows industry best practices as defined by ISO 17799,27001-02, PCI, ITIL, SAS-70, HIPPA , SOX or a mix of them. Security Policy
  • 6.
    ď‚ž The securitypolicy is the key document in effective security practices. ď‚ž Once it has been defined it must be implemented and modified and include any exceptions that may need to be in place for business continuity. ď‚ž All users need to be trained on these best practices with continuing education at regular intervals.
  • 7.
    ď‚ž Data needsto be classified in the security policy according to its sensitivity. ď‚ž Once this has taken place, the most sensitive data has extra measures in place to safeguard and ensure its integrity and availability. ď‚ž All access to this sensitive data must be logged. ď‚ž Secure data is usually isolated from other stored data.
  • 8.
    ď‚ž Controlling physicalaccess to the data center or area where the data is stored. ď‚ž Active or Open Directory is a centralized authentication management system that is available to companies to control and log access to any data on the system. ď‚ž Encryption of the sensitive data is critical before transmission across public networks
  • 9.
     The useof firewalls on all publicly facing WAN connections.  Deploying VLANs’ and ACLs’ to isolate sensitive departments from the rest of the network.  Shutting down unused switch ports.  If wireless is deployed, use authentication servers to verify and log the identity of those logging on.  Anti-Virus and malicious software protection on all systems.
  • 10.
     There arefour key issues in the security of databases just as with all security systems  Availability  Authenticity  Integrity  Confidentiality
  • 11.
    ď‚ž Data needsto be available at all necessary times ď‚ž Data needs to be available to only the appropriate users ď‚ž Need to be able to track who has access to and who has accessed what data
  • 12.
    ď‚ž . Needto ensure that the data has been edited by an authorized source ď‚ž Need to confirm that users accessing the system are who they say they are ď‚ž Need to verify that all report requests are from authorized users ď‚ž Need to verify that any outbound data is going to the expected receiver
  • 13.
    ď‚ž . Needto verify that any external data has the correct formatting and other metadata ď‚ž Need to verify that all input data is accurate and verifiable ď‚ž Need to ensure that data is following the correct work flow rules for your institution/corporation ď‚ž Need to be able to report on all data changes and who authored them to ensure compliance with corporate rules and privacy laws.
  • 14.
    ď‚ž . Needto ensure that confidential data is only available to correct people ď‚ž Need to ensure that entire database is security from external and internal system breaches ď‚ž Need to provide for reporting on who has accessed what data and what they have done with it ď‚ž Mission critical and Legal sensitive data must be highly security at the potential risk of lost business and litigation
  • 15.
    DATA SECURITY -PASSWORD Password protection is a security process that protects information accessible via computers that needs to be protected from certain users. Password protection allows only those with an authorized password to gain access to certain information. A strong password consists of at least six characters (and the more characters, thestronger the password) that are a combination of letters, numbers and symbols (@, #, $, %, etc.) if allowed. Passwords are typically case-sensitive, so a strong password contains letters in both uppercase and lowercase.
  • 16.
    Windows 10 Signin options  PASSWORD  PIN  PICTURE Nine-character passwords take five days to break, 10-character words take four months, and 11-character passwords take 10 years. Make it up to 12 characters, and you're looking at 200 years' worth of security – not bad for one little letter.
  • 17.
    Encryption is theprocess of translating plain text data (plaintext) into something that appears to be random and meaningless (ciphertext). ... A symmetric key is used during both the encryption and decryption processes. To decrypt a particular piece of ciphertext, the key that was used to encrypt the data must be used.
  • 18.
    Encryption is importantbecause it allows you to securely protect data that you don't want anyone else to have access. Types of encryption:- DES RSA AES BLOWISH TWOFISH There are quite a few free tools that will allow to encrypt whole text documents. Veracrypt, Bitlocker, AxCrypt.