• Home

  • Documents

  • Introduction to Information Security · Introduction to Information Security • Five Factors...
17
Introduction to Information Security Dr. Rick Jerz © 2016 rjerz.com 1

Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

  • Upload
    others

  • View
    23

  • Download
    1

Embed Size (px)

Citation preview

Page 1: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

IntroductiontoInformationSecurity

Dr.RickJerz

© 2016 rjerz.com1

Page 2: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

Goals

• Explainthevarioustypesofthreatstothesecurityofinformation

• Discussthedifferentcategorizationsofsecuritytechnologiesandsolutions

• Explainpasswords,firewalls,biometrics,encryption,virusprotection,andwirelesssecurity

• Discussthemainpurposesandcontentofsecuritypolicies

• Identifyriskmanagementoptions

© 2016 rjerz.com2

Page 3: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

IntroductiontoInformationSecurity

• FiveFactorsContributingtoVulnerability• Today’sinterconnected,interdependent,wirelesslynetworkedbusinessenvironment

• Smaller,faster,cheapercomputers &storagedevices

• Decreasingskillsnecessarytobeacomputerhacker

• Internationalorganizedcrimetakingovercybercrime

• Lackofmanagementsupport

© 2016 rjerz.com3

Page 4: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

WhyWorryAboutSecurity

• Threatscanrenderasysteminoperative• Threatscanmakedataunavailable• Threatscansteal yourmoney• Threatscanchangedata• Threatscanmakeyoulessproductive

• Threatscancostmoney!

• Balance thecostofathreatversusthecostofprotection

© 2016 rjerz.com4

Page 5: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

InformationSecurityThreats

• Unauthorized access• Virusesandmalware• Emailthreats• Accidentallossofdata

• Securitythreatscaninvolvebothpeople andequipment

© 2016 rjerz.com5

Page 6: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

UnauthorizedAccess

• Lockedareasorequipment• UserIDsandpasswords• Encryption• Securitycards• Biometrics

© 2016 rjerz.com6

Page 7: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

Biometrics

• Fingerprintrecognition• Facialrecognition• Iris/retinarecognition• DNArecognition• Odorrecognition• Earrecognition• Signaturerecognition

© 2016 rjerz.com7

Page 8: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

Firewalls

• Computerorarouterthatcontrols,orrestrictsaccess inandoutoftheorganization’snetworks

• Cannotprotectanorganizationfromavirus

• Cannotpreventhackersfromexploitinganunsecuredcomputer

• Shouldbeimplementedatdifferentlocationsintheorganization

AfirewallarchitectureforDefenseinDepth

© 2016 rjerz.com8

Page 9: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

VirusesandOtherMalware

• Virusesaresentouttofindanyvictimtheycan

• Linesofcodethatmakeupaviruscanbeembeddedintootherfiles

• Thesignatureofthevirusistheparticularbitpatternsthatcanberecognized,whichishowvirusdetectionsoftwareknowsyourcomputerhascontractedavirus

• Canbeactive orpassive

© 2016 rjerz.com9

Page 10: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

Rick’sComputers

OlderDellPC• NortonAntivirus• Malwarebytes• SpybotSearch&Destroy

VirtualWindows7PC• Microsoft’sAntivirus

Macintosh• Nothing!

© 2016 rjerz.com10

Page 11: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

EmailAttacks

• Emailbombing:Sendingalargeamountofemailsdesignedtodisruptnormalfunctioning

• Smurfing:Whenhackerssometimesuseaninnocent3rd partytosendafloodofmessagestoanintendedtarget

• Spoofing:Forgedsenderaddress• Phishing:Masqueradingasatrustworthyentity

© 2016 rjerz.com11

Page 12: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

CarefullyWatchYourEmail!

• Theemailisaddressed toyouusingyouremailaccount info

• Theemaildoesnothaveapersonalized salutation

• Whenyouhoverthemouseoverthehyperlink, thesitedoesnotseemtobefromthepropercompany

• Whenyouhoverthemouseoverthehyperlink, thesiteseemstobelocatedinanother country

• Theemailmakesyoufeelyourresponse isurgentorsomething badisgoingtohappen.

© 2016 rjerz.com12

Page 13: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

AccidentalLossofData

• Haveagoodfilingsystem• Thinkabouttheftandfraud• Passwordprotectorencryptimportantinformation

• Backupyoursystemandfiles

• Becarefulaboutputtingdataon:• Cellphone• USBdrives• CDsandDVDs

© 2016 rjerz.com13

Page 14: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

WirelessSecurity

• Bestprotectionforwirelessnetworksisencryption

• WEP,theWiredEquivalentPrivacyisanolderencryptionalgorithm,whichcanbeeasilycrackedwithinminutestoday

• WPA,theWi-FiProtectedAccess,isamorerecentandpowerfulencryptionalgorithmwidelyavailableinmostrouters

• Furtherprotectionforhomewirelessnetworksistodisablethebroadcastingofthenetwork’sID(SSID)

© 2016 rjerz.com14

Page 15: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

YourWebServer

• Firewalls• Antivirus• WhitelistsandBlacklists• Encryption• VPN• SSL- SecureSocketLayer• EmployeeMonitoringSystems

• EmailSpam:

© 2016 rjerz.com15

Page 16: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

RiskManagement

• Processofidentifying,assessingandprioritizingthesecurityrisksanorganizationmayface

• Analyzeandbalanceriskswiththeresourcesavailabletomitigatethem

• Managementdetermineswherethecompanywouldbemostvulnerableandhowlikelyitisthatariskwouldaffectit

© 2016 rjerz.com16

Page 17: Introduction to Information Security · Introduction to Information Security • Five Factors Contributing to Vulnerability • Today’s interconnected, interdependent, wirelessly

SecurityMeasures

• Educatepeopleaboutsecuritythreatsandsolutions

• Createstrongpasswords• Keeppasswordsinasecurelocation• Runappropriateantivirusandmalwaresoftware

• Developagooddatabackupsystem

© 2016 rjerz.com17


Strengthening the Interdependent Web

Strengthening the Interdependent Web

Documents
Enjoy music wirelessly with AirPlay

Enjoy music wirelessly with AirPlay

Documents
Listening Wirelessly

Listening Wirelessly

Documents
A Survey of Interdependent Security Games

A Survey of Interdependent Security Games

Documents
Wirelessly Powered EWOD - D-Scholarship@Pitt

Wirelessly Powered EWOD - D-Scholarship@Pitt

Documents
Real-TimeCo-Optimization: Interdependent ...Real-TimeCo-OptimizationinERCOT ERCOTMarketChanges †.Introducereal-timeco-optimization† Security-constrainedeconomicdispatchconsidersreserve

Real-TimeCo-Optimization: Interdependent ...Real-TimeCo-OptimizationinERCOT ERCOTMarketChanges †.Introducereal-timeco-optimization† Security-constrainedeconomicdispatchconsidersreserve

Documents
To connect wirelessly on campus

To connect wirelessly on campus

Documents
Host Security: Basic Notions Applied Security. What is host security? A host is any computer, including Workstations Network servers Laptops Wirelessly

Host Security: Basic Notions Applied Security. What is host security? A host is any computer, including Workstations Network servers Laptops Wirelessly

Documents
Cyber Security Division · The nation’s economic strength and security rely heavily on a vast array of interdependent and critical networks, systems, services and resources to conduct

Cyber Security Division · The nation’s economic strength and security rely heavily on a vast array of interdependent and critical networks, systems, services and resources to conduct

Documents
CYBER SECURITY DIVISION - Amazon Web Services...CYBER SECURITY DIVISION: SECURING YOUR CYBER FUTURE The nation’s economic strength and security rely heavily on a vast array of interdependent

CYBER SECURITY DIVISION - Amazon Web Services...CYBER SECURITY DIVISION: SECURING YOUR CYBER FUTURE The nation’s economic strength and security rely heavily on a vast array of interdependent

Documents
How to Configure G.DUO wirelessly in Windows 7 While ...fs.airlive.com/faq/How_to_Configure_G.DUO_wirelessly_in_Windows_7_while_Initial_Setup.pdfHow to Configure G.DUO wirelessly in

How to Configure G.DUO wirelessly in Windows 7 While ...fs.airlive.com/faq/How_to_Configure_G.DUO_wirelessly_in_Windows_7_while_Initial_Setup.pdfHow to Configure G.DUO wirelessly in

Documents
Flexible Electronics: Materials and Designs for Wirelessly ...rogersgroup.northwestern.edu/files/2012/wirelessLEDssmall.pdf · Materials and Designs for Wirelessly Powered Implantable

Flexible Electronics: Materials and Designs for Wirelessly ...rogersgroup.northwestern.edu/files/2012/wirelessLEDssmall.pdf · Materials and Designs for Wirelessly Powered Implantable

Documents
IEEE/ACM TRANSACTIONS ON NETWORKING 1 Interdependent Security with Strategic Agents ...hyongla/PAPERS/La_TON_IDS_Glo… ·  · 2014-08-21IEEE/ACM TRANSACTIONS ON NETWORKING 1 Interdependent

IEEE/ACM TRANSACTIONS ON NETWORKING 1 Interdependent Security with Strategic Agents ...hyongla/PAPERS/La_TON_IDS_Glo… ·  · 2014-08-21IEEE/ACM TRANSACTIONS ON NETWORKING 1 Interdependent

Documents
Interdependent Organizing(Toward Interdependent Organizing and Researching)

Interdependent Organizing(Toward Interdependent Organizing and Researching)

Documents
Delivering Internet, Voice, and video security wirelessly in

Delivering Internet, Voice, and video security wirelessly in

Documents
The National Security Strategy of the United Kingdom ... · The National Security Strategy of the United Kingdom Security in an interdependent world Presented to Parliament by the

The National Security Strategy of the United Kingdom ... · The National Security Strategy of the United Kingdom Security in an interdependent world Presented to Parliament by the

Documents
Mycotoxins, Food Safety and Security in Sub-Saharan AfricaThe challenge of improving food safety and security lies in involving an interdependent and interconnected set of issues,

Mycotoxins, Food Safety and Security in Sub-Saharan AfricaThe challenge of improving food safety and security lies in involving an interdependent and interconnected set of issues,

Documents
Cascading Failures Across Interdependent Infrastructure ...apps.peer.berkeley.edu/transportation/wp-content/... · Cascading Failures Across Interdependent Infrastructure Systems

Cascading Failures Across Interdependent Infrastructure ...apps.peer.berkeley.edu/transportation/wp-content/... · Cascading Failures Across Interdependent Infrastructure Systems

Documents
Personal leadership 2 "Interdependent"

Personal leadership 2 "Interdependent"

Self Improvement
On the (in)security of the Latest Generation Implantable ... · Implantable Medical Devices (IMDs) typically use propri-etary protocols with no or limited security to wirelessly com-municate

On the (in)security of the Latest Generation Implantable ... · Implantable Medical Devices (IMDs) typically use propri-etary protocols with no or limited security to wirelessly com-municate

Documents
Security Directions and Trends - SNIAvulnerable and interdependent with other critical infrastructures . ” ... security and national defense strategy Know what information and infrastructure

Security Directions and Trends - SNIAvulnerable and interdependent with other critical infrastructures . ” ... security and national defense strategy Know what information and infrastructure

Documents
Ac power transfer wirelessly by hf

Ac power transfer wirelessly by hf

Documents
Chapter 5 Vulnerability of Interdependent Networks and Networks of Networkshavlin.biu.ac.il/PS/Vulnerability of Interdependent... · 2016-02-14 · interdependent networks describe

Chapter 5 Vulnerability of Interdependent Networks and Networks of Networkshavlin.biu.ac.il/PS/Vulnerability of Interdependent... · 2016-02-14 · interdependent networks describe

Documents
Connecting Taipei, wirelessly

Connecting Taipei, wirelessly

Documents
Wirelessly Wonderful - FHI

Wirelessly Wonderful - FHI

Documents
Cap12. Interdependent Economies - Macroeconomics

Cap12. Interdependent Economies - Macroeconomics

Documents
Time Horizons in Interdependent Security

Time Horizons in Interdependent Security

Documents
Gary Zavitz gaz@interbeach.com Wireless LAN Site Surveys and Security Considerations Site Surveys and Security Considerations eLearning…Wired and Wirelessly!

Gary Zavitz [email protected] Wireless LAN Site Surveys and Security Considerations Site Surveys and Security Considerations eLearning…Wired and Wirelessly!

Documents
A WIRELESSLY–ACTIVATED PARYLENE ELECTROTHERMAL VALVE …biomems.usc.edu/publications/2008/2008_HH_evalve.pdf · A WIRELESSLY-ACTIVATED PARYLENE ELECTROTHERMAL VALVE FOR MAPPING

A WIRELESSLY–ACTIVATED PARYLENE ELECTROTHERMAL VALVE …biomems.usc.edu/publications/2008/2008_HH_evalve.pdf · A WIRELESSLY-ACTIVATED PARYLENE ELECTROTHERMAL VALVE FOR MAPPING

Documents
Interdependent Strategic Security Risk Management with

Interdependent Strategic Security Risk Management with

Documents