Factors of informtion security, Computer Network Security

Confidentiality

Confidentiality of information ensures that only those with sufficient privileges may access specific information. When unauthorized individuals can access information, confidentiality can be breached. To protect the confidentiality of information, several measures are used:

•Information classification
•Secure document storage
•Application of the general security policies
•Education of information custodians and end users

Integrity

Integrity is quality or state of being complete, and uncorrupted. The integrity of information can be threatened when it is exposed to damage, destruction, corruption, or other disruption of its authentic state. Corruption can occur when information is being compiled, stored, or is getting transmitted.

Availability

Availability is the characteristic of information which enables user access to the information without interference/obstruction and in a required format. A user in this definition may be person or another computer system. Availability does not imply that information is accessible to any user; instead, it means availability to authorized users.

Privacy

The information which is collected, and stored by an organization is to be used only for the purposes stated to data owner at the time it was collected. This definition of privacy focuses on freedom from observation, but instead it means that information will be used only in ways known to the person offering it.

Identification

An information system possesses characteristic of identification when it is able to recognize the individual users. Identification and authentication are necessary to establishing the level of access or authorization which an individual is granted.

Authentication

Authentication takes place when a control provides proof that a user possesses the identity which he or she claims.
Authorization

After identity of a user is authenticated, the process of it is called as authorization provides assurance that the user (whether the person or the computer) has been specifically and authorized explicitly by the proper authority to access, update, or delete contents of an information asset.

Accountability

The characteristic of accountability exists when the control provides assurance that every activity which is undertaken is attributed to the named person or automated process. For instance, audit logs the track user activity on information system gives accountability.

Posted Date: 10/8/2012 4:37:29 AM | Location : United States







Related Discussions:- Factors of informtion security, Assignment Help, Ask Question on Factors of informtion security, Get Answer, Expert's Help, Factors of informtion security Discussions

Write discussion on Factors of informtion security
Your posts are moderated
Related Questions
Techniques for combating Spam mails Many anti spam products are commercially available in market. But it should also be noted that no  one technique is a complete solution to

Topic -Spam is an ever-growing problem, with some network administrators reporting that 90% or moreof the email delivered to their mail servers is spam. Identify and briefly evalua

Proof that the sender forwards the message. It also prohibits the author of the code from falsely denying that he forward the message. This is achieved by record using the exact ti

Problem 1: List measurable entities on which the quality of service in a data communication network depends Problem 2: Show the features of a typical Network Management

Risk Determination For purpose of relative risk assessment, risk equals probability of vulnerability occurrence TIMES value MINUS percentage risk already controlled PLUS an elem

QUESTION (a) FTP is a protocol used for the delivery of files across networks. Explain how FTP works (support your answer with a diagram). (b) How does TCP perform the gi

(a) Show four Network Security attacks. How do they compromise security? (b) In what ways do the following devices or services contribute to security: (i) Firewall (ii) In

(a) Describe the concept of zero knowledge proofs. Give a practical example. (b) Explain how a one way hash function works. (c) What are message authentication codes? (d)

Problem (a) Name the various layers of the OSI model. (b) Show, by means of a diagram, how  the TCP/IP  reference model  is different from the OSI-7 reference model? Why is

QUESTION 1: a) Differentiate between a routing protocol and a routed protocol. b) Describe any three design goals of Routing protocols. c) Lists some of the features shared