Professional Documents
Culture Documents
INFORMATION SECURITY
PREPARED BY:
What is Information
Electronic Data on computers, disks and tapes
Paper based records, notes, exam papers and memos E-mails, passwords, bank details, exam details Types: Confidential and Non-Confidential
What is Security?
The quality or state of being secureto be free from danger A successful organization should have multiple layers of security in place:
Physical security Personal security Operations security Communications security Network security Information security
Definition
Information security is,
a well-informed sense of assurance that the information risks and controls are in balance.
Jim Anderson, Inovant (2002)
Information Security
1. 2. 3. 4.
Protects information from a range of threats Ensures business continuity Minimizes financial loss Increases business opportunities
Confidentiality
Integrity
Availability
Authentication
NonRepudiation
Integrity
Availability
Ensuring that authorized users have access to information and associated assets when required
Non- repudiation
It implies that one party of a transaction cannot deny having received a transaction
Cryptography
Information security uses cryptography to transform usable information into a form that renders it unusable by anyone other than an authorized user; this process is called encryption. Information that has been encrypted (rendered unusable) can be transformed back into its original usable form by an authorized user, who possesses the cryptographic key, through the process of decryption.
POPULAR FALLACIES
If
If
Companies
Microsoft
You
My
friend who knows a lot about computers showed me this really cool site