Factors of informtion security, Computer Network Security

Confidentiality

Confidentiality of information ensures that only those with sufficient privileges may access specific information. When unauthorized individuals can access information, confidentiality can be breached. To protect the confidentiality of information, several measures are used:

•Information classification
•Secure document storage
•Application of the general security policies
•Education of information custodians and end users

Integrity

Integrity is quality or state of being complete, and uncorrupted. The integrity of information can be threatened when it is exposed to damage, destruction, corruption, or other disruption of its authentic state. Corruption can occur when information is being compiled, stored, or is getting transmitted.

Availability

Availability is the characteristic of information which enables user access to the information without interference/obstruction and in a required format. A user in this definition may be person or another computer system. Availability does not imply that information is accessible to any user; instead, it means availability to authorized users.

Privacy

The information which is collected, and stored by an organization is to be used only for the purposes stated to data owner at the time it was collected. This definition of privacy focuses on freedom from observation, but instead it means that information will be used only in ways known to the person offering it.

Identification

An information system possesses characteristic of identification when it is able to recognize the individual users. Identification and authentication are necessary to establishing the level of access or authorization which an individual is granted.

Authentication

Authentication takes place when a control provides proof that a user possesses the identity which he or she claims.
Authorization

After identity of a user is authenticated, the process of it is called as authorization provides assurance that the user (whether the person or the computer) has been specifically and authorized explicitly by the proper authority to access, update, or delete contents of an information asset.

Accountability

The characteristic of accountability exists when the control provides assurance that every activity which is undertaken is attributed to the named person or automated process. For instance, audit logs the track user activity on information system gives accountability.

Posted Date: 10/8/2012 4:37:29 AM | Location : United States







Related Discussions:- Factors of informtion security, Assignment Help, Ask Question on Factors of informtion security, Get Answer, Expert's Help, Factors of informtion security Discussions

Write discussion on Factors of informtion security
Your posts are moderated
Related Questions
VIRTUAL PACKETS These data packets serve same reason in Internet as frames on LAN. Every packet has a header. Routers, which are normally gateways, transfer packets between ph

Question: a) There are two basic approaches to dealing with errors in the presence of pipelining. One way is Go-Back-N and the other strategy is Selective Repeat. i. Explain

QUESTION There are generally five factors that will influence how you respond to computer security incidents- The effect the incident has on your business Legal issue

(a) Mention the five main security services. (b) What is a passive attack? Give an example of passive attack? (c) What four types of active attacks and mention their respecti

Discuss the risks of having a single root user


Problem 1: What does the SNMP access policy show? SNMP community diagram SNMP access policy Problem 2: Does there exist any formal functional specificat

What are Transmission Impairments? Explain the following concepts with respect to Transmission Impairments a) Attenuation b) Delay Distortion c) Noise ion #Minimum 100 words ac

a) Wireless local area network (WLAN) technologies constitute a fast-growing market introducing the flexibility of wireless access into office, home, or production environments. G

The three primary types of network protection are the same as the three primary areas where a network can be attacked. Every network needs protection against people-related, hardwa