Computer Security

A.2 Operational Categories
1. Prevention
  1. create information security policy
  2. User Training
  3. Access Control
  4. Firewall
2. Detection
  1. Whistle Blower
  2. Intrusion Detection System
  3. Integrity Assurance Software
3. Respond
  1. unpluggin Network Cable
  2. Blocking IP Address
4. Recovery
  1. Disk Mirorring
  2. Automated Backup
A.1 Computer Security Incident
1. A.1.1 Characteristic
  1. The Attacker or Origin
  2. Tools Used
  3. Vulnerability Exploited
  4. Action Performed
  5. Intended Target
  6. Unauthorized Result
  7. Attack Objectives
2. A.1.3 CSIRT
  1. Why Need? Benefit?
    1. Economic
    2. Public Relation
    3. Legal
  2. Goal & Objective
  3. Activities
    1. Non Real Time
      1. Pre Incident
        Charter
        Mission Statement
        types of incidents - A.1.2
        service provided
        constituenty
        Authority & Funding
        Policy
        Incident Reporting Procedures
        PoC
        Various Contact types
        Team members
        Work hours
        Time Zone
        Who report?
        Incident Symptom awareness
        Incident Tracking & Handling Procedure
      2. Post Incident
    2. Real Time
      1. Incident Handling
        Identify Incident
        determine actual incident
        verify, security or non-security?
        Incident Prioritization
        Containtment
        Eradicate
      2. Incident Recovery
        Identify Damage
        Repair System
        Restore System
      3. Investigation
        Identify Cause
        Forensic
        Collect Evidence
        Volatile
        Non Volatile
        Assign Blame
      4. reoccurrence prevvention
      5. Restitution
      6. Communication
3. A.1.2 Types and Categories of CSI
  1. Service Interrupts
  2. System Interferrence
  3. Unauthorized Access
  4. Commercial use
  5. Malicious Communication
  6. Theft
  7. Unsolicitated Bulk Mail
  8. Other

Next up

Computer Security

Description

Resource summary

Similar

	Created by azamuddin about 10 years ago