Securing Information Systems - Chapter 10

A hacker uses a brute force attack to guess passwords.

An attacker sends an email pretending to be a trusted entity to steal sensitive information.

A virus that replicates itself to spread to other computers.

A denial-of-service attack that overwhelms a system with traffic.

Users should have the maximum level of access to perform their tasks.

Users should have access only to the information and resources necessary for their job functions.

All users should have administrative privileges.

Users should share their passwords with their supervisors.

FTP

HTTP

HTTPS

SMTP

To compress data for storage efficiency.

To convert data into a format that is unreadable without a decryption key.

To back up data to a remote server.

To delete sensitive data securely.

Firewall

Antivirus software

Role-Based Access Control (RBAC)

Data encryption

Eradication

Containment

Identification

Recovery

Spyware

Ransomware

Adware

Worm

Confidentiality, Integrity, Availability

Confidentiality, Information, Authentication

Control, Integrity, Access

Confidentiality, Integrity, Authorization

RSA

AES

ECC

DSA

To encrypt data in transit.

To monitor and control incoming and outgoing network traffic based on predetermined security rules.

To detect and remove malware from a system.

To provide secure remote access to a network.