PPT-Introduction to Information Security

03683065 Spring 2013 Lecture 4 Access control cont information flow control Eran Tromer Slides credit John Mitchell Stanford Max Krohn MIT Ian Goldberg and Urs Hengartner. Introduction to Computer Security. Books:. An . Inroduction. to Computer Security: The NIST Handbook. Johannes . Buchmann. : Introduction to Cryptography. Douglas Stinson: Cryptography Theory and Practice. Georgia Tech Introduction Over the last year, information and technology have become more tightly intertwined in our lives. The ubiq - uity of mobile devices has increased citizens’ reliance on Network Security. Chapter #1 in the text book ( Stallings). Introduction to Computer and Network Security. Computer security concepts. The OSI security architecture. Security attacks. Security services. to. Security. . Computer Networks . Term . A15. Intro to Security Outline. Network Security. Malware. Spyware, viruses, worms and . trojan. horses, botnets. Denial of Service and Distributed DOS Attacks. ECE 422 / CS 461 - Fall 2013. *Acknowledgment: Thanks to Susan . Hinrichs. for her slides. Outline. Administrative Issues. Class Overview. Introduction to Computer Security. What is computer security?. Introduction . & Overview. Contents from Prof. . . Kwangjo. . Kim and Other Sources. Syllabus Overview. Basic . terms . Quick . overview on information security . Course Detail. Objectives:. . CHAPTER OUTLINE. Ethical Issues in Information Systems. Threats to Information Security. Protecting Information Resources. 2. Ethical Issues in Information Systems. Issues and standards of conduct pertaining to the use of information systems. MIS Business Concerns. SECTION 4.1. Ethics. DEVELOPING INFORMATION MANAGEMENT POLICIES. Organizations strive to build a corporate culture based on ethical principles that employees can understand and implement. Why there’s more to protect than you might think and why protecting it is a lot tougher than you ever dreamed of in your wildest, most paranoid nightmare. Copyright 2002 by M.S. jaffe. 8/15/2002. MSJ-. 1. Creating a Cohesive Framework. Who We Are. 2. Information Security – What does that mean?. As stated within ISO 27001:2013. “The information security management system preserves the confidentiality, the integrity, and availability of information by applying a risk management process and gives confidence to interested parties that risks are adequately managed.”. Relevance. Background. Terms. General procedures. 2. Relevance. Why study information security?. Demand. BLS estimates. Bureau of Labor Studies. US . Govt. data collection organization. Classified as 15-1122. INTERNAL USE. 2. Top Security Items for 2011-2012. Passwords. Social Networking. Phishing. Malware, Spyware, & Anti-virus. Confidential Data. What is Confidential Data?. Protection of Mobile Confidential Data. Also privacy issues that are relevant to security may be discussed.. Security Is Big News. https://www.theregister.co.uk/security/. https://catless.ncl.ac.uk/Risks/. https://krebsonsecurity.com/. https://www.ctvnews.ca/canada/credit-card-skimmers-found-at-vancouver-transit-stations-1.4010396. Thursday October 14. th. 2010. 2. Information Security Officers (ISO). Terry Peters . (352)376-1611 x4114. Patrick Cheek . (352)376-1611 x4492. 3. Overview. Protocol Approval. Sensitive Information.