Computer security is a branch of computer technology known as information security as applied to computers and networks. The objective of computer security includes protection of information and property from theft, corruption, or natural disaster, while allowing the information and property to remain accessible and productive to its intended users. The term computer system security means the collective processes and mechanisms by which sensitive and valuable information and services are protected from publication, tampering or collapse by unauthorized activities or untrustworthy individuals and unplanned events respectively. The strategies and methodologies of computer security often differ from most other computer technologies because of its somewhat elusive objective of preventing unwanted computer behavior instead of enabling wanted computer behavior.

The technologies of computer security are based on logic. As security is not necessarily the primary goal of most computer applications, designing a program with security in mind often imposes restrictions on that program's behavior.

There are 4 approaches to security in computing, sometimes a combination of approaches is valid:

  1. Trust all the software to abide by a security policy but the software is not trustworthy (this is computer insecurity).
  2. Trust all the software to abide by a security policy and the software is validated as trustworthy (by tedious branch and path analysis for example).
  3. Trust no software but enforce a security policy with mechanisms that are not trustworthy (again this is computer insecurity).
  4. Trust no software but enforce a security policy with trustworthy hardware mechanisms.
The Incidents of Network Security

Network security incidents are the network-related activities with negative security implications. This usually means that the activity violates an explicit or implicit security policy. The most common methods used by intruders to gain control of home computers are briefly described below.

  1. Trojan horse programs

    2. Trojan horse programs are a common way for intruders to trick you (sometimes referred to as "social engineering") into installing "back door" programs. These can allow intruders easy access to your computer without your knowledge, change your system configurations, or infect your computer with a computer virus.

  2. Back door and remote administration programs

    3. On Windows computers, three tools commonly used by intruders to gain remote access to your computer are BackOrifice, Netbus, and SubSeven. These back door or remote administration programs, once installed, allow other people to access and control your computer.

  3. Denial of service

    4. Another form of attack is called a denial-of-service (DoS) attack. This type of attack causes your network to crash or to become so busy processing data that you are unable to use it. It is important to note that in addition to being the target of a DoS attack, it is possible for your computer to be used as a participant in a denial-of-service attack on another system. It often causes a more serious network security event

  4. Being an intermediary for another attack

    5. Intruders will frequently use compromised computers as launching pads for attacking other systems. An example of this is how distributed denial-of-service (DDoS) tools are used. The intruders install an "agent" (frequently through a Trojan horse program) that runs on the compromised computer awaiting further instructions. Then, when a number of agents are running on different computers, a single "handler" can instruct all of them to launch a denial-of-service attack on another system. Thus, the end target of the attack is not your own computer, but someone else’s -- your computer is just a convenient tool in a larger attack.

  5. Unprotected Windows shares

    6. Unprotected Windows networking shares can be exploited by intruders in an automated way to place tools on large numbers of Windows-based computers attached to the Internet. Because site security on the Internet is interdependent, a compromised computer not only creates problems for the computer's owner, but it is also a threat to other sites on the Internet. The greater immediate risk to the Internet community is the potentially large number of computers attached to the Internet with unprotected Windows networking shares combined with distributed attack tools.
    Another threat includes malicious and destructive code, such as viruses or worms, which leverage unprotected Windows networking shares to propagate.
    There is great potential for the emergence of other intruder tools that leverage unprotected Windows networking shares on a widespread basis.

  6. Mobile code (Java/JavaScript/ActiveX)

    7. There have been reports of problems with "mobile code" (e.g. Java, JavaScript, and ActiveX). These are programming languages that let web developers write code that is executed by your web browser. Although the code is generally useful, it can be used by intruders to gather information (such as which web sites you visit) or to run malicious code on your computer. It is possible to disable Java, JavaScript, and ActiveX in your web browser.

  7. Cross-site scripting

    8. A malicious web developer may attach a script to something sent to a web site, such as a URL, an element in a form, or a database inquiry. Later, when the web site responds to you, the malicious script is transferred to your browser.

    You can potentially expose your web browser to malicious scripts by
    following links in web pages, email messages, or newsgroup postings without knowing what they link to
    using interactive forms on an untrustworthy site
    viewing online discussion groups, forums, or other dynamically generated pages where users can post text containing HTML tags

  8. Packet sniffing

    9. A packet sniffer is a program that captures data from information packets as they travel over the network. That data may include user names, passwords, and proprietary information that travels over the network in clear text. With perhaps hundreds or thousands of passwords captured by the packet sniffer, intruders can launch widespread attacks on systems and hurt the network security. Installing a packet sniffer does not necessarily require administrator-level access.
    Relative to DSL and traditional dial-up users, cable modem users have a higher risk of exposure to packet sniffers since entire neighborhoods of cable modem users are effectively part of the same LAN. A packet sniffer installed on any cable modem user's computer in a neighborhood may be able to capture data transmitted by any other cable modem in the same neighborhood.

Comments

Post a Comment

Popular posts from this blog

BAGI MAKLUMAN PEMEGANG SIJIL KEMAHIRAN MALAYSIA(SKM)SAHAJA.. 1. Adakah sijil kemahiran malaysia diiktraf atau di perakui oleh MQA (pengiktrafan kerajaan) atau badan professional seperti BEM,IEM,IEEE ? adakah sijil kemahiran malaysia diiktraf oleh universiti2 antarabangsa untuk tujuan sambung belajar? Jawapan: Untuk makluman, terdapat tiga sektor di dalam Kerangka Kelayakan Malaysia (MQF) iaitu sektor kemahiran, sektor vokasional dan teknikal dan sektor pengajian tinggi. Rujuk MQF di Lampiran A. Sektor vokasional dan teknikal serta pengajian tinggi adalah di bawah bidang kuasa Agensi Kelayakan Malaysia (MQA) manakala bagi sektor kemahiran adalah di bawah bidang kuasa Jabatan Pembangunan Kemahiran (JPK). Ini adalah berdasarkan akta kedua-dua agensi iaitu Akta Agensi Kelayakan Malaysia 2007 (Akta 679) dan Akta Pembangunan Kemahiran Kebangsaan 2006 (Akta 652). Program latihan dan persijilan di bawah sektor kemahiran adalah tidak memerlukan proses akreditasi/ pengiktirafan MQA. MQA dan JPK ...
Read more

How to resize and extend centos 7 disk manually

 How to resize and extend centos 7 disk manually Resizing The Partition You need to modify the   Linux   partition table within the   virtual machine   to recognize that the disk size has changed. This can be done using the   fdisk   utility, which is a partition editor. For the   virtual machine   provided by Nagios Enterprises: sda1   is used for the   boot   partition sda2   is the device for all logical volumes, this is the partition you need to edit Start   fdisk   by executing the following command: fdisk /dev/sda   You should print the current partition table so you can keep track of your changes as you go: Command (m for help): p Take a screenshot or copy the screen contents into a text file in case you want to reference it later. To resize a partition, you actually "delete" it and then add a new one with the new size, making sure to place the beginning of the new partition at the same sector/cylinde...
Read more

List Of MSI Motherboard with type of Processor Slot

Company name: MSI List of MSI motherboards: Slot 1 motherboards BX Master (MS-6163) MS-6119 MS-6120 MS-6147 MS-6156VA MS-6163 Pro (MS-6163Pro) MS-6163VA MS-6183 MS-6183E MS-6199VA Slot A motherboards K7 Pro (MS-6195) MS-6191 Socket 1156 motherboards Big Bang-Fuzion Big Bang-Trinergy H55-G43 H55-GD65 H55M-E21 H55M-E32 H55M-E33 H55M-ED55 H55M-P31 H55M-P33 H57M-ED65 P55-CD53 P55-GD55 P55-GD61 P55-GD65 P55-GD65 USB3 P55-GD80 P55-GD85 P55A Fuzion P55A-G55 P55A-GD55 P55A-GD65 P55M-GD41 P55M-GD45 Socket 1366 motherboards Big Bang-XPower Eclipse Plus Eclipse SLI X58 Platinum X58 Platinum SLI X58 Pro X58 Pro SLI X58 Pro-E X58 Pro-E USB3 X58A-GD65 X58M Socket 370 motherboards 694 Master (MS-6309) 694D Master (MS-6362) 694D Pro (MS-6321) 694D Pro2 (MS-6321) 694T Pro (MS-6309) 815 Pro (MS-6326) 815E Pro (MS-6337) 815EM pro (MS-6315) 815EP Pro (MS-6337) 815EPT Pro (MS-6337) 815ET Pro (MS-6337) 815M Pro (MS-6334) MS-6153 MS-6153VA MS-6154VA MS-6178 MS-6178E MS-6198 MS-6309 MS-6309 Lite (MS-6309 Ver2...
Read more