Unit 1.6 V2 System Security

Types of attack
1. Malware - MALicious softWARE
  1. Files deleted, corrupted or encrypted
  2. Can cause identity theft
  3. Trojan Horses, Viruses and/or worms
2. Phishing - Disguising as a normal webpage
  1. Peoples private accounts are accessed.
  2. Brands lose high value data and therefore reputation
3. Brute Force Attack - Trial and Error Method
  1. Access to Corporate Systems
  2. Theft of Personal Data; passwords and your PIN
4. DDOS - Direct Denial Of Service, zombie computers flood a system causing it to crash
  1. Loss of access for customers
  2. Loss of revenue and reputation of the company
5. Data Interception - Packet Sniffing to extract data throughout its 'journey'
  1. Usernames and passwords can be compromised
  2. Loss of corporate data is possible
6. SQL Injections - Can change data in a database by inserting extra code into a text input box
  1. Private data in file can be released / altered
  2. Rogue records can be added
Preventing Vulnerabilities
1. Penetration Testing - Checks for potential vulnerabilities by a qualified person in a controlled environment
2. Network Forensics - Thorough Forensic Investigation of networks and their devices
3. Anti Malware - Prevents Malware
  1. Anti Virus - Specifically targets computer viruses
4. Network Policies - Defines how a system can be secured through specific rules
5. Firewall - Software that performs a 'barrier'. 99.9% effective. Detects patterns
6. User Access Levels - Who can view what. Administrator makes a hierarchy
7. Passwords - Allow a time gap and limit number of attempts
8. Encryption - See Unit 1.5
9. Biometric Security

Siguiente

Unit 1.6 V2 System Security

Descripción

Resumen del Recurso

Similar

	Creado por Mathew Wheatley hace más de 6 años