SlideShare ist ein Scribd-Unternehmen logo

Computer security

‱Als PPTX, PDF herunterladen‱
‱
OZ Assignment help
OZ Assignment help

The presentation is being carried out to lay down a solution to a problem arising related to computer security

Software
1 von 32
The presentation is being carried out to lay down a solution to a problem arising related to computer security. Various security strategies are being discussed in this presentation. These strategies would help in successfully coping up with the computer security issues. The security strategies recommended to address the issue and the effectiveness of mitigation strategy in controlling the issue are also discussed in the presentation.
The computer security is the protection of assets from unauthorized access, alteration, use or destruction. Therefore, for such protection an effective strategies is must needed.
COMPUTERSECURITY ISSUES There are some computer security issues which are normally faced by the organization or by an individual as well. Following are some of the issues: Computer security issues Internet and network attacks Informati on theft System failure Hardwar e and software theft Unauthor ized access and use
SECURITY STRATEGIES ‱ To cope up with the computer security issues, the organization or an individual can use the following security strategies to prevent the security of their system and data or information. ‱ These strategies will help the organization to improve the level of security and safety of data.
PROACTIVE STRATEGY  This strategy includes a set of predefined steps that can be taken to prevent the computer systems from the attacks before they occur.  This includes identifying how an attack could possibly affect or damage the system and the vulnerabilities it exploits.  This pattern may help in determining the areas of vulnerability that pose the greatest risk to the enterprise.
The proactive strategy has basically three steps: Determining the damage that the attack will cause Determining the vulnerabilities and weaknesses that the attack will exploit (Klöti.et.al. 2013). Minimizing the vulnerabilities and weaknesses that are determined to be weak points in the system for that specific type of attack.
KEY FINDINGS OF PROACTIVE STRATEGY  Use of policies for data security  Understanding about the sensitive data  It goes beyond the technology implementation  Take initiative for data security  Use of data centric security
REACTIVE STRATEGY  The reactive strategies defines the steps that must be taken after or during an attack.  It identifies the damage that was caused and the vulnerabilities that were exploited in the attack.  This strategy will determine the why it took place, repair the damage that was caused by it and implement a contingency plan (Easttom II, 2016).
BENEFITS OF REACTIVE STRATEGY Following are the key benefits of strategy:  Provides control over the use of computer system  Improve the accountability  Determine the level of threat  Anticipate the future changes  Help to assess the amount of damage and install
SECURITY BY DESIGNSTRATEGY ‱ A software is designed from the ground up to be secure. ‱ It includes code reviews and unit testing are used to make modules more secure. ‱ Audit trails tracking system activity for determining the extent of the breach.
BENEFITSOF SECURITY BY DESIGN STRATEGY Following are the major benefits of using the particular strategy:  Integration of methodologies  Detecting and resolving problems  Improve flexibility and adaptable architecture  Integration of application for better security
 It is an effective means of ensuring the security, stability and consistency of a computing environment.  Proper planning and pre-deployment activities are required for a successful deployment of application white listing technology.  It can be deployed in support of policy which defines applications which users are allowed to run or can run in the course of their duties.
‱ Administrative privileges are designed to allow access of only trusted personnel. ‱ Accounts with administrative privileges to a window domain typically have the ability to effect changes or to see such information from any system on that domain (Goldman.et.al, 2011). ‱ These privileges introduce a number of potential points of weakness into that system.
PASSWORDS ANDAPPROPRIATE USER AUTHENTICATION STRATEGY  The best strategy for protecting the data from being accessed by an unauthorized user.  The user authorization can be verified in any security system via piece of information like password, something possessed by an individual like ID, credit and a biometric characteristic of the individual like finger print (White, 2015).  Through this the important and relevant information can be safe from the authorized users.
 A proper planning is a best strategy to overcome from the problems related to eventuality of hardware failure or loss and data loss or corruption.  Depending on the types of threats, disaster recover plans may rely on one of a mix of strategies (Cichonski.et.al. 2012).
 The user using the computer system are require to inform under this strategy to be careful of any suspicious e-mails.  According to this, the user are should be careful when the email is from the known source, caution should be exercised when opening attachments or clicking on links in emails.
IMPLEMENTATION OF A VULNERABILITY MANAGEMENT PROGRAM  The most of the worms and viruses try to exploit bugs and vulnerabilities within the operating system and applications.  The vulnerabilities can be introduced in network everyday (Song, 2010). It is important to regularly review the network and applications running on it for new vulnerabilities.
 After this, a proper plan is then prepare for proper management of vulnerabilities.  The vulnerabilities can be managed by through patching, upgrading, or managing the vulnerabilities using tools like firewalls and Intrusion Detection Systems.  The discovered vulnerabilities should also be rated and prioritized regarding their criticality and their impact (Rid & McBurney, 2012).
The critical data or information should be daily or periodically must be regularly backup. It is useful when a network gets infected with a computer virus or system or hardware crash. These backups must be stored safely in the offsite location . Regular monitoring of network and system logs assist in indentifying the computer virus or other criminal attacks.
Log files for the backups should be checked regularly in order to insure that the backups succeeded. Log files for anti-virus software deployed should be regularly checked to ensure that PC are running the latest version of antivirus. These strategies ensure that the chances of attacks and their impact is reduced and minimized to a greater extend.
DEVELOPMENT OF INCIDENT RESPONSE PLAN The incident response plan outlines the roles and responsibilities that people may have in the event of a computer virus infecting the network or indeed any other type of security breach (Hsiao.et.al. 2014). The plan is prepared and drawn up by the agreed relevant parties before an incident occurs.
CRYPTOGRAPHY STRATEGY  This strategy is best when the confidentiality and security of data and information is to be maintained.  The modern cryptography exists at the intersection of the disciplines computer science, mathematics and electrical engineering.  It is conversion of the information from a readable state to apparent nonsense (Kahate, 2013)  Only the authorized user can be decodes such encrypted data or information.
RECOMMENDED SECURITY STRATEGIES To address the current issue the best strategy that would be recommended is a proactive and reactive strategy. These strategy is best because it provides a suitable way to identify and reduced the affects of the security issues before their cause. It the impacts and core area of infection are not identified before then the reactive strategy would help in repairing the damage caused through an implemented contingency plan.
ACTIVITIES FOR IMPROVING COMPUTER SECURITY Using the following recommendation the security of computer could be improved:  Use of Linux  Disable add-ons  Deploy a hardware based firewall  Enforce Strict password policies  Use of content filter
EFFECTIVENESS OF MITIGATION STRATEGY The mitigation strategy would be effective in controlling the issues with respect to other strategies in the following ways:  Ensures that the identified issues before their cause are removed to the best possible way.  The damage occurred after their cause are repaired to the best possible way as suggested in the contingency plan.  The organization is always ready to fight against the computer security issues with the proactive and reactive plans without causing any disturbance in the operations of the organization.
THANK YOU

Empfohlen

Network security threats and solutions
Network security threats and solutionsNetwork security threats and solutions
Network security threats and solutions
hassanmughal4u
 
Software security
Software securitySoftware security
Software security
Roman Oliynykov
 
Computer security overview
Computer security overviewComputer security overview
Computer security overview
CAS
 
Awareness Training on Information Security
Awareness Training on Information SecurityAwareness Training on Information Security
Awareness Training on Information Security
Ken Holmes
 
Network Security
Network SecurityNetwork Security
Network Security
Raymond Jose
 
Security threats and attacks in cyber security
Security threats and attacks in cyber securitySecurity threats and attacks in cyber security
Security threats and attacks in cyber security
Shri ramswaroop college of engineering and management
 
Web application attacks
Web application attacksWeb application attacks
Web application attacks
hruth
 
Protection and security
Protection and securityProtection and security
Protection and security
mbadhi
 

Empfohlen

Network security threats and solutions
Network security threats and solutionsNetwork security threats and solutions
Network security threats and solutions
hassanmughal4u
 
Software security
Software securitySoftware security
Software security
Roman Oliynykov
 
Computer security overview
Computer security overviewComputer security overview
Computer security overview
CAS
 
Awareness Training on Information Security
Awareness Training on Information SecurityAwareness Training on Information Security
Awareness Training on Information Security
Ken Holmes
 
Network Security
Network SecurityNetwork Security
Network Security
Raymond Jose
 
Security threats and attacks in cyber security
Security threats and attacks in cyber securitySecurity threats and attacks in cyber security
Security threats and attacks in cyber security
Shri ramswaroop college of engineering and management
 
Web application attacks
Web application attacksWeb application attacks
Web application attacks
hruth
 
Protection and security
Protection and securityProtection and security
Protection and security
mbadhi
 
System security
System securitySystem security
System security
sommerville-videos
 
Basic concepts in computer security
Basic concepts in computer securityBasic concepts in computer security
Basic concepts in computer security
Arzath Areeff
 
Computer Security
Computer SecurityComputer Security
Computer Security
Frederik Questier
 
Protection and Security in Operating Systems
Protection and Security in Operating SystemsProtection and Security in Operating Systems
Protection and Security in Operating Systems
vampugani
 
Network Security
Network SecurityNetwork Security
Network Security
Manoj Singh
 
Lecture 3
Lecture 3Lecture 3
Lecture 3
Education
 
Data security
Data securityData security
Data security
Tapan Khilar
 
Computer security
Computer securityComputer security
Computer security
fiza1975
 
Operating system security
Operating system securityOperating system security
Operating system security
Ramesh Ogania
 
Ransomware
RansomwareRansomware
Ransomware
m3 Networks Limited
 
Network security - Defense in Depth
Network security - Defense in DepthNetwork security - Defense in Depth
Network security - Defense in Depth
Dilum Bandara
 
Introduction to Cyber Security
Introduction to Cyber SecurityIntroduction to Cyber Security
Introduction to Cyber Security
Stephen Lahanas
 
Information security and Attacks
Information security and AttacksInformation security and Attacks
Information security and Attacks
Sachin Darekar
 
Introduction to cyber security
Introduction to cyber security Introduction to cyber security
Introduction to cyber security
RaviPrashant5
 
Software Security (Vulnerabilities) And Physical Security
Software Security (Vulnerabilities) And Physical SecuritySoftware Security (Vulnerabilities) And Physical Security
Software Security (Vulnerabilities) And Physical Security
Nicholas Davis
 
CS6601 DISTRIBUTED SYSTEMS
CS6601 DISTRIBUTED SYSTEMSCS6601 DISTRIBUTED SYSTEMS
CS6601 DISTRIBUTED SYSTEMS
Kathirvel Ayyaswamy
 
OPERATING SYSTEM SECURITY
OPERATING SYSTEM SECURITYOPERATING SYSTEM SECURITY
OPERATING SYSTEM SECURITY
RohitK71
 
Cyber Security Introduction.pptx
Cyber Security Introduction.pptxCyber Security Introduction.pptx
Cyber Security Introduction.pptx
ANIKETKUMARSHARMA3
 
Computer security concepts
Computer security conceptsComputer security concepts
Computer security concepts
G Prachi
 
Nature and Qualities of Software, Types of Software
Nature and Qualities of Software, Types of SoftwareNature and Qualities of Software, Types of Software
Nature and Qualities of Software, Types of Software
Raja Adapa
 
Cmos
CmosCmos
Cmos
Daniel Omunting
 
Security, ethics and performance management
Security, ethics and performance managementSecurity, ethics and performance management
Security, ethics and performance management
OZ Assignment help
 

Weitere Àhnliche Inhalte

Was ist angesagt?

Introduction to Cyber Security
Introduction to Cyber SecurityIntroduction to Cyber Security
Introduction to Cyber Security
Stephen Lahanas
 
Software Security (Vulnerabilities) And Physical Security
Software Security (Vulnerabilities) And Physical SecuritySoftware Security (Vulnerabilities) And Physical Security
Software Security (Vulnerabilities) And Physical Security
Nicholas Davis
 

Was ist angesagt? (20)

System security
System securitySystem security
System security
 
Basic concepts in computer security
Basic concepts in computer securityBasic concepts in computer security
Basic concepts in computer security
 
Computer Security
Computer SecurityComputer Security
Computer Security
 
Protection and Security in Operating Systems
Protection and Security in Operating SystemsProtection and Security in Operating Systems
Protection and Security in Operating Systems
 
Network Security
Network SecurityNetwork Security
Network Security
 
Lecture 3
Lecture 3Lecture 3
Lecture 3
 
Data security
Data securityData security
Data security
 
Computer security
Computer securityComputer security
Computer security
 
Operating system security
Operating system securityOperating system security
Operating system security
 
Ransomware
RansomwareRansomware
Ransomware
 
Network security - Defense in Depth
Network security - Defense in DepthNetwork security - Defense in Depth
Network security - Defense in Depth
 
Introduction to Cyber Security
Introduction to Cyber SecurityIntroduction to Cyber Security
Introduction to Cyber Security
 
Information security and Attacks
Information security and AttacksInformation security and Attacks
Information security and Attacks
 
Introduction to cyber security
Introduction to cyber security Introduction to cyber security
Introduction to cyber security
 
Software Security (Vulnerabilities) And Physical Security
Software Security (Vulnerabilities) And Physical SecuritySoftware Security (Vulnerabilities) And Physical Security
Software Security (Vulnerabilities) And Physical Security
 
CS6601 DISTRIBUTED SYSTEMS
CS6601 DISTRIBUTED SYSTEMSCS6601 DISTRIBUTED SYSTEMS
CS6601 DISTRIBUTED SYSTEMS
 
OPERATING SYSTEM SECURITY
OPERATING SYSTEM SECURITYOPERATING SYSTEM SECURITY
OPERATING SYSTEM SECURITY
 
Cyber Security Introduction.pptx
Cyber Security Introduction.pptxCyber Security Introduction.pptx
Cyber Security Introduction.pptx
 
Computer security concepts
Computer security conceptsComputer security concepts
Computer security concepts
 
Nature and Qualities of Software, Types of Software
Nature and Qualities of Software, Types of SoftwareNature and Qualities of Software, Types of Software
Nature and Qualities of Software, Types of Software
 

Andere mochten auch

Printer's
Printer'sPrinter's
Printer's
silentsoul
 
presentation on computer virus
presentation on computer viruspresentation on computer virus
presentation on computer virus
Yogesh Singh Rawat
 

Andere mochten auch (8)

Cmos
CmosCmos
Cmos
 
Security, ethics and performance management
Security, ethics and performance managementSecurity, ethics and performance management
Security, ethics and performance management
 
Operating Systems: Computer Security
Operating Systems: Computer SecurityOperating Systems: Computer Security
Operating Systems: Computer Security
 
Printer's
Printer'sPrinter's
Printer's
 
Presentation printer
Presentation printerPresentation printer
Presentation printer
 
presentation on computer virus
presentation on computer viruspresentation on computer virus
presentation on computer virus
 
Printers And Its Types
Printers And Its TypesPrinters And Its Types
Printers And Its Types
 
Computer Virus powerpoint presentation
Computer Virus powerpoint presentationComputer Virus powerpoint presentation
Computer Virus powerpoint presentation
 

Ähnlich wie Computer security

Project Quality-SIPOCSelect a process of your choice and creat.docx
Project Quality-SIPOCSelect a process of your choice and creat.docxProject Quality-SIPOCSelect a process of your choice and creat.docx
Project Quality-SIPOCSelect a process of your choice and creat.docx
wkyra78
 
In what ways do you think the Elaboration Likelihood Model applies.docx
In what ways do you think the Elaboration Likelihood Model applies.docxIn what ways do you think the Elaboration Likelihood Model applies.docx
In what ways do you think the Elaboration Likelihood Model applies.docx
jaggernaoma
 
Bis Chapter15
Bis Chapter15Bis Chapter15
Bis Chapter15
Chun Hoi Lam
 
Fundamentals of-information-security
Fundamentals of-information-security Fundamentals of-information-security
Fundamentals of-information-security
madunix
 
report on Mobile security
report on Mobile securityreport on Mobile security
report on Mobile security
JAYANT RAJURKAR
 
Essay QuestionsAnswer all questions below in a single document, pr.docx
Essay QuestionsAnswer all questions below in a single document, pr.docxEssay QuestionsAnswer all questions below in a single document, pr.docx
Essay QuestionsAnswer all questions below in a single document, pr.docx
jenkinsmandie
 
1Running head IDENTITY MANAGEMENT AND SECURITY AWARENESS TRAI.docx
1Running head IDENTITY MANAGEMENT AND SECURITY AWARENESS TRAI.docx1Running head IDENTITY MANAGEMENT AND SECURITY AWARENESS TRAI.docx
1Running head IDENTITY MANAGEMENT AND SECURITY AWARENESS TRAI.docx
eugeniadean34240
 
ESSENTIAL ACTIVITIES FOR SECURE SOFTWARE DEVELOPMENT
ESSENTIAL ACTIVITIES FOR SECURE SOFTWARE DEVELOPMENTESSENTIAL ACTIVITIES FOR SECURE SOFTWARE DEVELOPMENT
ESSENTIAL ACTIVITIES FOR SECURE SOFTWARE DEVELOPMENT
ijesajournal
 
Presentation(group j)implementing trustworthy computing by Sundas Ilyas
Presentation(group j)implementing trustworthy computing by Sundas IlyasPresentation(group j)implementing trustworthy computing by Sundas Ilyas
Presentation(group j)implementing trustworthy computing by Sundas Ilyas
Sundas Kayani
 
Addressing Gaps in Your Cyber Security
Addressing Gaps in Your Cyber Security Addressing Gaps in Your Cyber Security
Addressing Gaps in Your Cyber Security
NextLabs, Inc.
 

Ähnlich wie Computer security (20)

Phi 235 social media security users guide presentation
Phi 235 social media security users guide presentationPhi 235 social media security users guide presentation
Phi 235 social media security users guide presentation
 
Project Quality-SIPOCSelect a process of your choice and creat.docx
Project Quality-SIPOCSelect a process of your choice and creat.docxProject Quality-SIPOCSelect a process of your choice and creat.docx
Project Quality-SIPOCSelect a process of your choice and creat.docx
 
Multi agents system service based platform in telecommunication security inci...
Multi agents system service based platform in telecommunication security inci...Multi agents system service based platform in telecommunication security inci...
Multi agents system service based platform in telecommunication security inci...
 
Multi agents based architecture for is security incident reaction
Multi agents based architecture for is security incident reactionMulti agents based architecture for is security incident reaction
Multi agents based architecture for is security incident reaction
 
Multi agents based architecture for is security incident reaction
Multi agents based architecture for is security incident reactionMulti agents based architecture for is security incident reaction
Multi agents based architecture for is security incident reaction
 
02.security systems
02.security systems02.security systems
02.security systems
 
In what ways do you think the Elaboration Likelihood Model applies.docx
In what ways do you think the Elaboration Likelihood Model applies.docxIn what ways do you think the Elaboration Likelihood Model applies.docx
In what ways do you think the Elaboration Likelihood Model applies.docx
 
Bis Chapter15
Bis Chapter15Bis Chapter15
Bis Chapter15
 
Security architecture, engineering and operations
Security architecture, engineering and operationsSecurity architecture, engineering and operations
Security architecture, engineering and operations
 
Fundamentals of-information-security
Fundamentals of-information-security Fundamentals of-information-security
Fundamentals of-information-security
 
I0516064
I0516064I0516064
I0516064
 
report on Mobile security
report on Mobile securityreport on Mobile security
report on Mobile security
 
Essay QuestionsAnswer all questions below in a single document, pr.docx
Essay QuestionsAnswer all questions below in a single document, pr.docxEssay QuestionsAnswer all questions below in a single document, pr.docx
Essay QuestionsAnswer all questions below in a single document, pr.docx
 
JavaOne2013: Secure Engineering Practices for Java
JavaOne2013: Secure Engineering Practices for JavaJavaOne2013: Secure Engineering Practices for Java
JavaOne2013: Secure Engineering Practices for Java
 
1Running head IDENTITY MANAGEMENT AND SECURITY AWARENESS TRAI.docx
1Running head IDENTITY MANAGEMENT AND SECURITY AWARENESS TRAI.docx1Running head IDENTITY MANAGEMENT AND SECURITY AWARENESS TRAI.docx
1Running head IDENTITY MANAGEMENT AND SECURITY AWARENESS TRAI.docx
 
Secure Engineering Practices for Java
Secure Engineering Practices for JavaSecure Engineering Practices for Java
Secure Engineering Practices for Java
 
P3
P3P3
P3
 
ESSENTIAL ACTIVITIES FOR SECURE SOFTWARE DEVELOPMENT
ESSENTIAL ACTIVITIES FOR SECURE SOFTWARE DEVELOPMENTESSENTIAL ACTIVITIES FOR SECURE SOFTWARE DEVELOPMENT
ESSENTIAL ACTIVITIES FOR SECURE SOFTWARE DEVELOPMENT
 
Presentation(group j)implementing trustworthy computing by Sundas Ilyas
Presentation(group j)implementing trustworthy computing by Sundas IlyasPresentation(group j)implementing trustworthy computing by Sundas Ilyas
Presentation(group j)implementing trustworthy computing by Sundas Ilyas
 
Addressing Gaps in Your Cyber Security
Addressing Gaps in Your Cyber Security Addressing Gaps in Your Cyber Security
Addressing Gaps in Your Cyber Security
 

Mehr von OZ Assignment help

Mehr von OZ Assignment help (13)

Applications of Embedded System
Applications of Embedded SystemApplications of Embedded System
Applications of Embedded System
 
Business intelligence and data warehousing
Business intelligence and data warehousingBusiness intelligence and data warehousing
Business intelligence and data warehousing
 
Ece464 power electronics assignment solution
Ece464 power electronics assignment solutionEce464 power electronics assignment solution
Ece464 power electronics assignment solution
 
Difference between personnel management and hrm assignment
Difference between personnel management and hrm assignmentDifference between personnel management and hrm assignment
Difference between personnel management and hrm assignment
 
Business project management
Business project managementBusiness project management
Business project management
 
Enterprises resource planning
Enterprises resource planningEnterprises resource planning
Enterprises resource planning
 
Service organisation of australia 3 bridges community incorporated
Service organisation of australia 3 bridges community incorporatedService organisation of australia 3 bridges community incorporated
Service organisation of australia 3 bridges community incorporated
 
Unit 12 leadership style assignment solution
Unit 12 leadership style assignment solutionUnit 12 leadership style assignment solution
Unit 12 leadership style assignment solution
 
Principles in health and social care assignment
Principles in health and social care assignmentPrinciples in health and social care assignment
Principles in health and social care assignment
 
Electronic health records management
Electronic health records managementElectronic health records management
Electronic health records management
 
Employee relations assignment help
Employee relations assignment helpEmployee relations assignment help
Employee relations assignment help
 
Unit 12 physiological principles for hsc assignment solution
Unit 12 physiological principles for hsc assignment solutionUnit 12 physiological principles for hsc assignment solution
Unit 12 physiological principles for hsc assignment solution
 
It project management assignment ppt
It project management assignment pptIt project management assignment ppt
It project management assignment ppt
 

KĂŒrzlich hochgeladen

What Goes Wrong with Language Definitions and How to Improve the Situation
What Goes Wrong with Language Definitions and How to Improve the SituationWhat Goes Wrong with Language Definitions and How to Improve the Situation
What Goes Wrong with Language Definitions and How to Improve the Situation
Juha-Pekka Tolvanen
 
Abortion Pill Prices Tembisa [(+27832195400*)] đŸ„ Women's Abortion Clinic in T...
Abortion Pill Prices Tembisa [(+27832195400*)] đŸ„ Women's Abortion Clinic in T...Abortion Pill Prices Tembisa [(+27832195400*)] đŸ„ Women's Abortion Clinic in T...
Abortion Pill Prices Tembisa [(+27832195400*)] đŸ„ Women's Abortion Clinic in T...
Medical / Health Care (+971588192166) Mifepristone and Misoprostol tablets 200mg
 
Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024
Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024
Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024
VictoriaMetrics
 
AI & Machine Learning Presentation Template
AI & Machine Learning Presentation TemplateAI & Machine Learning Presentation Template
AI & Machine Learning Presentation Template
Presentation.STUDIO
 
%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...
masabamasaba
 
%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...
masabamasaba
 
%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...
%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...
%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...
masabamasaba
 

KĂŒrzlich hochgeladen (20)

What Goes Wrong with Language Definitions and How to Improve the Situation
What Goes Wrong with Language Definitions and How to Improve the SituationWhat Goes Wrong with Language Definitions and How to Improve the Situation
What Goes Wrong with Language Definitions and How to Improve the Situation
 
Abortion Pill Prices Tembisa [(+27832195400*)] đŸ„ Women's Abortion Clinic in T...
Abortion Pill Prices Tembisa [(+27832195400*)] đŸ„ Women's Abortion Clinic in T...Abortion Pill Prices Tembisa [(+27832195400*)] đŸ„ Women's Abortion Clinic in T...
Abortion Pill Prices Tembisa [(+27832195400*)] đŸ„ Women's Abortion Clinic in T...
 
%in Soweto+277-882-255-28 abortion pills for sale in soweto
%in Soweto+277-882-255-28 abortion pills for sale in soweto%in Soweto+277-882-255-28 abortion pills for sale in soweto
%in Soweto+277-882-255-28 abortion pills for sale in soweto
 
WSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open Source
WSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open SourceWSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open Source
WSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open Source
 
Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024
Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024
Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024
 
WSO2CON 2024 - Does Open Source Still Matter?
WSO2CON 2024 - Does Open Source Still Matter?WSO2CON 2024 - Does Open Source Still Matter?
WSO2CON 2024 - Does Open Source Still Matter?
 
WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...
WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...
WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...
 
AI & Machine Learning Presentation Template
AI & Machine Learning Presentation TemplateAI & Machine Learning Presentation Template
AI & Machine Learning Presentation Template
 
WSO2Con2024 - Enabling Transactional System's Exponential Growth With Simplicity
WSO2Con2024 - Enabling Transactional System's Exponential Growth With SimplicityWSO2Con2024 - Enabling Transactional System's Exponential Growth With Simplicity
WSO2Con2024 - Enabling Transactional System's Exponential Growth With Simplicity
 
%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...
 
WSO2Con204 - Hard Rock Presentation - Keynote
WSO2Con204 - Hard Rock Presentation - KeynoteWSO2Con204 - Hard Rock Presentation - Keynote
WSO2Con204 - Hard Rock Presentation - Keynote
 
WSO2Con2024 - From Code To Cloud: Fast Track Your Cloud Native Journey with C...
WSO2Con2024 - From Code To Cloud: Fast Track Your Cloud Native Journey with C...WSO2Con2024 - From Code To Cloud: Fast Track Your Cloud Native Journey with C...
WSO2Con2024 - From Code To Cloud: Fast Track Your Cloud Native Journey with C...
 
%in tembisa+277-882-255-28 abortion pills for sale in tembisa
%in tembisa+277-882-255-28 abortion pills for sale in tembisa%in tembisa+277-882-255-28 abortion pills for sale in tembisa
%in tembisa+277-882-255-28 abortion pills for sale in tembisa
 
%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...
 
%in kempton park+277-882-255-28 abortion pills for sale in kempton park
%in kempton park+277-882-255-28 abortion pills for sale in kempton park %in kempton park+277-882-255-28 abortion pills for sale in kempton park
%in kempton park+277-882-255-28 abortion pills for sale in kempton park
 
WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...
WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...
WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...
 
WSO2CON 2024 Slides - Open Source to SaaS
WSO2CON 2024 Slides - Open Source to SaaSWSO2CON 2024 Slides - Open Source to SaaS
WSO2CON 2024 Slides - Open Source to SaaS
 
%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...
%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...
%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...
 
%in Bahrain+277-882-255-28 abortion pills for sale in Bahrain
%in Bahrain+277-882-255-28 abortion pills for sale in Bahrain%in Bahrain+277-882-255-28 abortion pills for sale in Bahrain
%in Bahrain+277-882-255-28 abortion pills for sale in Bahrain
 
%in ivory park+277-882-255-28 abortion pills for sale in ivory park
%in ivory park+277-882-255-28 abortion pills for sale in ivory park %in ivory park+277-882-255-28 abortion pills for sale in ivory park
%in ivory park+277-882-255-28 abortion pills for sale in ivory park
 

Computer security

  • 1.
  • 2. The presentation is being carried out to lay down a solution to a problem arising related to computer security. Various security strategies are being discussed in this presentation. These strategies would help in successfully coping up with the computer security issues. The security strategies recommended to address the issue and the effectiveness of mitigation strategy in controlling the issue are also discussed in the presentation.
  • 3. The computer security is the protection of assets from unauthorized access, alteration, use or destruction. Therefore, for such protection an effective strategies is must needed.
  • 4.
  • 5. COMPUTERSECURITY ISSUES There are some computer security issues which are normally faced by the organization or by an individual as well. Following are some of the issues: Computer security issues Internet and network attacks Informati on theft System failure Hardwar e and software theft Unauthor ized access and use
  • 6. SECURITY STRATEGIES ‱ To cope up with the computer security issues, the organization or an individual can use the following security strategies to prevent the security of their system and data or information. ‱ These strategies will help the organization to improve the level of security and safety of data.
  • 7. PROACTIVE STRATEGY  This strategy includes a set of predefined steps that can be taken to prevent the computer systems from the attacks before they occur.  This includes identifying how an attack could possibly affect or damage the system and the vulnerabilities it exploits.  This pattern may help in determining the areas of vulnerability that pose the greatest risk to the enterprise.
  • 8.
  • 9. The proactive strategy has basically three steps: Determining the damage that the attack will cause Determining the vulnerabilities and weaknesses that the attack will exploit (Klöti.et.al. 2013). Minimizing the vulnerabilities and weaknesses that are determined to be weak points in the system for that specific type of attack.
  • 10. KEY FINDINGS OF PROACTIVE STRATEGY  Use of policies for data security  Understanding about the sensitive data  It goes beyond the technology implementation  Take initiative for data security  Use of data centric security
  • 11. REACTIVE STRATEGY  The reactive strategies defines the steps that must be taken after or during an attack.  It identifies the damage that was caused and the vulnerabilities that were exploited in the attack.  This strategy will determine the why it took place, repair the damage that was caused by it and implement a contingency plan (Easttom II, 2016).
  • 12. BENEFITS OF REACTIVE STRATEGY Following are the key benefits of strategy:  Provides control over the use of computer system  Improve the accountability  Determine the level of threat  Anticipate the future changes  Help to assess the amount of damage and install
  • 13. SECURITY BY DESIGNSTRATEGY ‱ A software is designed from the ground up to be secure. ‱ It includes code reviews and unit testing are used to make modules more secure. ‱ Audit trails tracking system activity for determining the extent of the breach.
  • 14. BENEFITSOF SECURITY BY DESIGN STRATEGY Following are the major benefits of using the particular strategy:  Integration of methodologies  Detecting and resolving problems  Improve flexibility and adaptable architecture  Integration of application for better security
  • 15.  It is an effective means of ensuring the security, stability and consistency of a computing environment.  Proper planning and pre-deployment activities are required for a successful deployment of application white listing technology.  It can be deployed in support of policy which defines applications which users are allowed to run or can run in the course of their duties.
  • 16. ‱ Administrative privileges are designed to allow access of only trusted personnel. ‱ Accounts with administrative privileges to a window domain typically have the ability to effect changes or to see such information from any system on that domain (Goldman.et.al, 2011). ‱ These privileges introduce a number of potential points of weakness into that system.
  • 17. PASSWORDS ANDAPPROPRIATE USER AUTHENTICATION STRATEGY  The best strategy for protecting the data from being accessed by an unauthorized user.  The user authorization can be verified in any security system via piece of information like password, something possessed by an individual like ID, credit and a biometric characteristic of the individual like finger print (White, 2015).  Through this the important and relevant information can be safe from the authorized users.
  • 18.
  • 19.  A proper planning is a best strategy to overcome from the problems related to eventuality of hardware failure or loss and data loss or corruption.  Depending on the types of threats, disaster recover plans may rely on one of a mix of strategies (Cichonski.et.al. 2012).
  • 20.  The user using the computer system are require to inform under this strategy to be careful of any suspicious e-mails.  According to this, the user are should be careful when the email is from the known source, caution should be exercised when opening attachments or clicking on links in emails.
  • 21. IMPLEMENTATION OF A VULNERABILITY MANAGEMENT PROGRAM  The most of the worms and viruses try to exploit bugs and vulnerabilities within the operating system and applications.  The vulnerabilities can be introduced in network everyday (Song, 2010). It is important to regularly review the network and applications running on it for new vulnerabilities.
  • 22.  After this, a proper plan is then prepare for proper management of vulnerabilities.  The vulnerabilities can be managed by through patching, upgrading, or managing the vulnerabilities using tools like firewalls and Intrusion Detection Systems.  The discovered vulnerabilities should also be rated and prioritized regarding their criticality and their impact (Rid & McBurney, 2012).
  • 23. The critical data or information should be daily or periodically must be regularly backup. It is useful when a network gets infected with a computer virus or system or hardware crash. These backups must be stored safely in the offsite location . Regular monitoring of network and system logs assist in indentifying the computer virus or other criminal attacks.
  • 24. Log files for the backups should be checked regularly in order to insure that the backups succeeded. Log files for anti-virus software deployed should be regularly checked to ensure that PC are running the latest version of antivirus. These strategies ensure that the chances of attacks and their impact is reduced and minimized to a greater extend.
  • 25. DEVELOPMENT OF INCIDENT RESPONSE PLAN The incident response plan outlines the roles and responsibilities that people may have in the event of a computer virus infecting the network or indeed any other type of security breach (Hsiao.et.al. 2014). The plan is prepared and drawn up by the agreed relevant parties before an incident occurs.
  • 26. CRYPTOGRAPHY STRATEGY  This strategy is best when the confidentiality and security of data and information is to be maintained.  The modern cryptography exists at the intersection of the disciplines computer science, mathematics and electrical engineering.  It is conversion of the information from a readable state to apparent nonsense (Kahate, 2013)  Only the authorized user can be decodes such encrypted data or information.
  • 27.
  • 28. RECOMMENDED SECURITY STRATEGIES To address the current issue the best strategy that would be recommended is a proactive and reactive strategy. These strategy is best because it provides a suitable way to identify and reduced the affects of the security issues before their cause. It the impacts and core area of infection are not identified before then the reactive strategy would help in repairing the damage caused through an implemented contingency plan.
  • 29. ACTIVITIES FOR IMPROVING COMPUTER SECURITY Using the following recommendation the security of computer could be improved:  Use of Linux  Disable add-ons  Deploy a hardware based firewall  Enforce Strict password policies  Use of content filter
  • 30. EFFECTIVENESS OF MITIGATION STRATEGY The mitigation strategy would be effective in controlling the issues with respect to other strategies in the following ways:  Ensures that the identified issues before their cause are removed to the best possible way.  The damage occurred after their cause are repaired to the best possible way as suggested in the contingency plan.  The organization is always ready to fight against the computer security issues with the proactive and reactive plans without causing any disturbance in the operations of the organization.
  • 31.

Hinweis der Redaktion

  1. Computer security issues: Internet and network attacks: In the current scenario, internet is one of the key foundation of sharing the information and communication. However the organization and individual use the network security procedure that helps to maintain the effectiveness in services but attack of virus and malware is major security threat for the network that organizations are using. Information theft: The use of pen drives, data card and mobile phones are increasing the threat for the information theft as staff members or external person can store information through these devises which can create security issues for organization. System failure: For security of information and data the leading organizations has implemented the system that protect from the unauthorized access but the situation like failure of system is influencing the process of managing the security level. Hardware and software theft: The issue of security in computer is theft of hardware and software that can be done by the individual and group who has the access of using the system.
  2. This is an important strategy that transform the data into an unusable form, reducing the risk in the case of unauthorized access. For improvement in the security and protection of sensitive data this kind of strategy is more beneficial and useful that helps to coded the information and block the illegal activities.
  3. Process of encryption: Encoding: For security purpose and protecting the data it is being used for change the presentation of data and information that developed through coded form. Channel: The data that need to be share through internet sources will go through channel. The encoding of data helps to protect the information from theft . Decoding: At the receiver end the data and information could be read or review by using the decoding.