Mastering Cyber Safety and Security

TLS 1.0

TLS 1.3

SSL 3.0

SSH-2

APP 1

APP 8

APP 11

APP 13

To encrypt data using symmetric keys

To securely exchange cryptographic keys over a public channel

To authenticate users in a network

To provide digital signatures

Rootkit

Adware

Keylogger

Botnet

To eliminate the need for firewalls

To assume that threats could be both external and internal, and verify every request as though it originates from an open network

To simplify network architecture

To allow unrestricted access to all users

Collecting as much data as possible for future use

Limiting data collection to what is directly relevant and necessary to accomplish a specific purpose

Storing data indefinitely for potential analysis

Sharing data with third parties for marketing purposes

They are typically short-lived and easy to detect

They involve highly targeted and prolonged attacks often orchestrated by well-funded groups

They are usually random and opportunistic

They are primarily spread through email spam

Granting users the highest level of access by default

Providing users with the minimum levels of access – or permissions – needed to perform their job functions

Allowing unrestricted access to all network resources

Disabling all user accounts by default

Data encryption

Data masking

Data tokenisation

Data de-identification

Preventing data breaches

Investigating and analysing data breaches and cybercrimes

Developing new encryption algorithms

Designing user-friendly security software