Presentation by Charl van der Walt, Jaco van Graan and Roelof Temmingh at ICM in 2000. The presentation begins by giving an overview of what hackers are, what they do and what drives them. Security fundamentals such as encryption and the four pillars of information security are discussed. The presentation ends with discussions on the security process and security certification.

1. charl van der walt jaco van graan roelof temmingh CYBERCRIME

11. Security breaches past 12 months INFORMATION SECURITY AWARENESS jaco van graan

15. Statistics on Computer Crime SECURITY TRENDS & STATISTICS charl van der walt “ Just ask Edgars, the clothing retail group, which lost more than R1m after a computer programmer brought down more than 600 stores for an entire day.” Financial Mail - April 2000

21. Determining your own risk SECURITY TRENDS & STATISTICS charl van der walt The magnitude of the risk is a product of the value of the information and the degree to which the vulnerability can be exploited.

45. The Process… THE INFORMATION SECURITY PROCESS jaco van graan Threat/Risk Analysis Security Policy Creation Planning Policy Enforcement/ Implementation Monitor & Manage Intrusion detection Security Audit 1 2 3 4 5 6 7

61. Definition INFORMATION SECURITY CERTIFICATION charl van der walt The evaluation of the security of a computer system by a recognised third party. If the system being tested meets all the criteria it receives certification (also called accreditation) which is an indication of the level of security of the system being tested.