PPT-CS457 – Introduction to Information Systems Security

Cryptography 1a Elias Athanasopoulos elathanicsforthgr Cryptography Elements Symmetric Encryption Block Ciphers Stream Ciphers Asymmetric Encryption Cryptographic Hash Functions Applications. 4. Identify the . five . factors that contribute to the increasing vulnerability of information resources, and provide a specific example of each one.. Compare and contrast human mistakes and social engineering, and provide a specific example of each one.. Introduction to Information Security. Unintentional Threats to Information Systems. Deliberate Threats to Information Systems. What Organizations Are Doing to Protect Information Resources. Information Security Controls. Chapter Eight. Securing Information Systems. Md. Golam Kibria. Lecturer, Southeast University. Security: . Policies, procedures and technical measures used to prevent unauthorized access, alteration, theft, or physical damage to information systems. Chapter 8. VIDEO CASES. Case 1: Stuxnet and Cyber Warfare. Case 2: Cyber Espionage: The Chinese Threat. Case 3: UBS Access Key: IBM Zone Trusted Information Channel. Instructional Video 1: Sony PlayStation Hacked; Data Stolen from 77 million users. Introduction to Information Security. Unintentional Threats to Information Systems. Deliberate Threats to Information Systems. What Organizations Are Doing to Protect Information Resources. Information Security Controls. Prepared . by. Asma. . AlOtaibi. 200800689. Author & Published date. Jussipekka. . Leiwo. , . Monash. University, PSCIT, McMahons Road, Frankston, Vic 3199, Australia. . Seppo. . Heikkuri. , . Introduction to Information Security Systems. Overview. Computer Security Definition: . “The protection afforded to an automated information system in order to attain the applicable objectives of preserving the integrity, availability and confidentiality of information system resources” . Introduction . & Overview. Contents from Prof. . . Kwangjo. . Kim and Other Sources. Syllabus Overview. Basic . terms . Quick . overview on information security . Course Detail. Objectives:. . Security Categorization of Information and Information Systems. Purpose: . To establish protection profiles and assign control element settings for each category of data for which an Agency is responsible. Security Organization is the basis for identifying an initial baseline set of security controls for the information and information systems. . Software Vulnerability. System Vulnerability and Abuse. Commercial software contains flaws that create security vulnerabilities.. Hidden bugs (program code defects). Zero defects cannot be achieved because complete testing is not possible with large programs. Risk Assessment. Who is ISACA?. With . more than 86,000 constituents in more than 160 countries, ISACA (. www.isaca.org) is a leading . global . provider . of knowledge, certifications, community, advocacy and education on information systems assurance . ConclusionsOHSU146s information security controls for enterprise information systems meet the controlbaselines for lowimpact systems as detailed in Recommended Security Controls for FederalInformation The Desired Brand Effect Stand Out in a Saturated Market with a Timeless Brand Reinforcing the Requirements for Security Awareness Training. . Dr. Ron Ross. Computer Security Division. Information Technology Laboratory. Today’s Climate. Highly interactive environment of powerful computing devices and interconnected systems...