JK
Uploaded byjayashri kolekar
PPTX, PDF4,716 views

Introduction to information security

This document discusses basics of information security including data security, network security, and information security. It defines information systems and explains the need for and importance of securing information. Reasons for information classification are provided along with criteria and levels of classification. The document also covers security basics such as confidentiality, integrity, availability, and authentication. Techniques for data obfuscation and event classification are described.

Downloaded 101 times
Basics of information  Computer security  Data  Data security  Information  Information security  Network security
Information system  Information  It is a resource fundamental to the success of any business.  Data  Knowledge  Action
Information Security  Need and importance of information  Damage to information can cause disruptions in a normal process .  Management is crucial to making good business decision.  Monitor and document the operations of other systems.  To satisfy the decision making capability.
Information Systems  Reasons for Information Classification  Protection of personal data  Protection of confidential data  Protecting Intellectual property  Protecting info. That supports public security and law enforcement  Supporting routine disclosure and active dissemination  Data of intergovernmental cooperation and integrated service delivery.
Information Classification  Criteria of information classification  Value  Age  Useful Life  Personal association
Information Classification  Levels of information classification  Unclassified  Sensitive But Unclassified  Confidential  Secrete  Top secret
security  Security means to protect information or system from unauthorized users.  Layers of security  Physical security  Personal Security  Operational Security  Communications security  Network security  Information security
security  Need of security  Application were developed to handle financial and personal data  Mechanism  Use userid and paswword  Encode information present in database
Security basics  Basics of computer security /Three pillars of IS includes :  Confidentiality  Integrity  Availability
Security basics  Confidentiality  Confidentiality means secrecy or concealment of information and resources.  Attempt to prevent the intentional or unintentional unauthorized disclosure of information.  Interception attack  Uses identification and authentication.
Security basics  Confidentiality  Breaches of confidentiality  Permitting someone to look over your shoulder  If the information containing device is stolen or sold  Giving out the confidential information over communication media.  Mechanism used for confidentiality  Resource hiding,  cryptography,  access control mechanism.
Security basics  Integrity  It involves maintaining the consistency, accuracy, and trustworthiness of data over its entire life cycle.  Data integrity and origin integrity.  Modification attack  Breaches of Integrity  Accidentally or with malicious intent deletes information  Computer virus  Mechanism used for Integrity  file permissions  user access control  cryptography
Security basics  Availability  Resources should be available to authorized parties at all times.  Availability is an important aspect of reliability as well as of system design  Interruption attack  High availability systems aim to remain available at all times(24x7) preventing service disruptions  DOS(denial-of-service) attack.
Security basics  Non-repudiation :  It refers to the ability to ensure that a party to a contract or a communication cannot deny the authenticity of their signature on a document or the sending of a message that they originated.  The best services for non repudiation are digital signature and encryption.  Authorization  Authorization is a process of verifying that a known person has the authority to perform a certain operation.
Security basics  Authentication :  It is the process of determining the identity of a user or other entity.  It requires to access secure data or enter a secure area.  Three method of authentication.  Something –you-know : user ID and password.  Something – you – have: lock and key.  Something –about –you : finger print, DNA , Samples etc.
Data obfuscation  Data obfuscation (DO) is a form of data masking where data is purposely scrambled to prevent unauthorized access to sensitive materials.  Used to prevent the intrusion of private and sensitive online data.  Sensitive info. : Employee data(salary info , review info.),customer data, bank and vendor data
Data obfuscation  Techniques for data obfuscation  Generate RSA(Rivest Shamir Adleman) private / public key pair  Masking  Character scrambling or masking out of certain fields  Substitution  another authentic looking value can be substituted for the existing value  Purge  applying a null value to a particular field
Event Classification  Viruses  Disaster  Crisis  Catastrophe

More Related Content

PPT
Information Security
byDhilsath Fathima
 
PPT
Information security and Attacks
bySachin Darekar
 
PPT
Basics of Information System Security
bychauhankapil
 
PPT
Information security
byrazendar79
 
PPTX
Information Security Lecture #1 ppt
byvasanthimuniasamy
 
PPT
Information security in todays world
bySibghatullah Khattak
 
PPT
Information security management
byUMaine
 
PPT
Introduction to Information Security
byDr. Loganathan R
 
Information Security
byDhilsath Fathima
 
Information security and Attacks
bySachin Darekar
 
Basics of Information System Security
bychauhankapil
 
Information security
byrazendar79
 
Information Security Lecture #1 ppt
byvasanthimuniasamy
 
Information security in todays world
bySibghatullah Khattak
 
Information security management
byUMaine
 
Introduction to Information Security
byDr. Loganathan R
 

What's hot

PPTX
Information security
byLusungu Mkandawire CISA,CISM,CGEIT,CPF,PRINCE2
 
PPTX
Introduction to Information Security
byShreedevi Tharanidharan
 
PPTX
Information security
byavinashbalakrishnan2
 
PPT
Introduction to Cyber Security
byStephen Lahanas
 
PPTX
INFORMATION SECURITY
byAhmed Moussa
 
PDF
Network Security Presentation
byAllan Pratt MBA
 
PDF
Introduction to Cybersecurity
byKrutarth Vasavada
 
PDF
Network Security Fundamentals
byRahmat Suhatman
 
PPTX
Cyber security
bymanoj duli
 
PPTX
Cyber security
byAman Pradhan
 
PPTX
System Security-Chapter 1
byVamsee Krishna Kiran
 
PPTX
Information Security Awareness
bySnapComms
 
PPT
End User Security Awareness Presentation
byCristian Mihai
 
PPTX
Cyber Security Introduction.pptx
byANIKETKUMARSHARMA3
 
PPTX
Cyber Security 101: Training, awareness, strategies for small to medium sized...
byStephen Cobb
 
PDF
Threat Intelligence
byDeepak Kumar (D3)
 
PPTX
Network security
byEstiak Khan
 
PPTX
Network security
byNkosinathi Lungu
 
PPT
Information System Security(lecture 1)
byAli Habeeb
 
PPT
Introduction To Information Security
bybelsis
 
Information security
byLusungu Mkandawire CISA,CISM,CGEIT,CPF,PRINCE2
 
Introduction to Information Security
byShreedevi Tharanidharan
 
Information security
byavinashbalakrishnan2
 
Introduction to Cyber Security
byStephen Lahanas
 
INFORMATION SECURITY
byAhmed Moussa
 
Network Security Presentation
byAllan Pratt MBA
 
Introduction to Cybersecurity
byKrutarth Vasavada
 
Network Security Fundamentals
byRahmat Suhatman
 
Cyber security
bymanoj duli
 
Cyber security
byAman Pradhan
 
System Security-Chapter 1
byVamsee Krishna Kiran
 
Information Security Awareness
bySnapComms
 
End User Security Awareness Presentation
byCristian Mihai
 
Cyber Security Introduction.pptx
byANIKETKUMARSHARMA3
 
Cyber Security 101: Training, awareness, strategies for small to medium sized...
byStephen Cobb
 
Threat Intelligence
byDeepak Kumar (D3)
 
Network security
byEstiak Khan
 
Network security
byNkosinathi Lungu
 
Information System Security(lecture 1)
byAli Habeeb
 
Introduction To Information Security
bybelsis
 

Viewers also liked

PPTX
Introduction to Information Security
byprimeteacher32
 
PPT
Introduction to information security
byKumawat Dharmpal
 
PDF
Introduction to Information Security
byDumindu Pahalawatta
 
PPTX
Hacktrikz - Introduction to Information Security & Ethical Hacking
byRavi Sankar
 
PPT
Information System Security introduction
byShu Shin
 
PPTX
Introduction to Information Security
byGareth Davies
 
PDF
Computer Security Threats
byQuick Heal Technologies Ltd.
 
PDF
Ethical hacking & Information Security
byAjay Dhamija
 
PDF
State of the Word 2011
byphotomatt
 
Introduction to Information Security
byprimeteacher32
 
Introduction to information security
byKumawat Dharmpal
 
Introduction to Information Security
byDumindu Pahalawatta
 
Hacktrikz - Introduction to Information Security & Ethical Hacking
byRavi Sankar
 
Information System Security introduction
byShu Shin
 
Introduction to Information Security
byGareth Davies
 
Computer Security Threats
byQuick Heal Technologies Ltd.
 
Ethical hacking & Information Security
byAjay Dhamija
 
State of the Word 2011
byphotomatt
 

Similar to Introduction to information security

PPTX
unit-1-is1.pptx
bysorabhsingh17
 
PPTX
02- Building blocks of Information security.pptx
bykrimjhim675
 
PDF
Basics of Data Security and Cryptographic techniques
byJay Sahoo
 
PPTX
COMPUTER SECURITY in Information Security
byEdFeranil
 
PPTX
INTERNETSECURITY with the different threats
byPrabinPathak5
 
PPTX
NIS-CH 1-PART 1 (1).pptx
bychandutidake
 
PPT
Data+security+sp10
byismaelhaider
 
PPTX
Information Security
byAlok Katiyar
 
PPTX
IT.pptx
byRaaviKapoor
 
PPTX
Chapter 1 information assurance and security
bygaredew32
 
PPTX
ISM-CS5750-01.pptx
byRashidSahito1
 
PPTX
Intro Foundations of Information Security.pptx
byAssadLeo1
 
PDF
information security introduction for campus students.pdf
byhailegebrielgeta6
 
PPTX
informations_security_presentations.pptx
byFAKHARZAMANPROUD
 
PPTX
Computer security concepts
byPrachi Gulihar
 
PPTX
information system and infor,ation management .pptx
byalok1936556sahu
 
PPTX
1. Introduction to Information Security.pptx
bynoura53269
 
PPTX
Information Security : Is it an Art or a Science
byPankaj Rane
 
PPTX
Information Security introduction and management.pptx
bydaudevarist18
 
PPT
Ch1 cse
bybhaskard8
 
unit-1-is1.pptx
bysorabhsingh17
 
02- Building blocks of Information security.pptx
bykrimjhim675
 
Basics of Data Security and Cryptographic techniques
byJay Sahoo
 
COMPUTER SECURITY in Information Security
byEdFeranil
 
INTERNETSECURITY with the different threats
byPrabinPathak5
 
NIS-CH 1-PART 1 (1).pptx
bychandutidake
 
Data+security+sp10
byismaelhaider
 
Information Security
byAlok Katiyar
 
IT.pptx
byRaaviKapoor
 
Chapter 1 information assurance and security
bygaredew32
 
ISM-CS5750-01.pptx
byRashidSahito1
 
Intro Foundations of Information Security.pptx
byAssadLeo1
 
information security introduction for campus students.pdf
byhailegebrielgeta6
 
informations_security_presentations.pptx
byFAKHARZAMANPROUD
 
Computer security concepts
byPrachi Gulihar
 
information system and infor,ation management .pptx
byalok1936556sahu
 
1. Introduction to Information Security.pptx
bynoura53269
 
Information Security : Is it an Art or a Science
byPankaj Rane
 
Information Security introduction and management.pptx
bydaudevarist18
 
Ch1 cse
bybhaskard8
 

More from jayashri kolekar

PPTX
FILE MANAGEMENT.pptx
byjayashri kolekar
 
PPTX
Architectural modeling chapter 5 of omd
byjayashri kolekar
 
PPTX
Advanced behavioral modeling chapter 4 of omd
byjayashri kolekar
 
PPTX
Basic behavioral modeling chapter 3 of OMD
byjayashri kolekar
 
PPTX
Object oriented modeling and design
byjayashri kolekar
 
PPT
OMD chapter 2 Class modelling
byjayashri kolekar
 
PPT
Macro
byjayashri kolekar
 
PPT
Parsing
byjayashri kolekar
 
PPT
Loader
byjayashri kolekar
 
PPTX
Assembler1
byjayashri kolekar
 
PPTX
Cryptography
byjayashri kolekar
 
PPTX
System programming
byjayashri kolekar
 
PPTX
Compilers
byjayashri kolekar
 
FILE MANAGEMENT.pptx
byjayashri kolekar
 
Architectural modeling chapter 5 of omd
byjayashri kolekar
 
Advanced behavioral modeling chapter 4 of omd
byjayashri kolekar
 
Basic behavioral modeling chapter 3 of OMD
byjayashri kolekar
 
Object oriented modeling and design
byjayashri kolekar
 
OMD chapter 2 Class modelling
byjayashri kolekar
 
Macro
byjayashri kolekar
 
Parsing
byjayashri kolekar
 
Loader
byjayashri kolekar
 
Assembler1
byjayashri kolekar
 
Cryptography
byjayashri kolekar
 
System programming
byjayashri kolekar
 
Compilers
byjayashri kolekar
 

Recently uploaded

PDF
asyad-shipping-esg-report0f7b3d1ec3f44f7c8cbea33ef21f4690.pdf
byJaszsingh
 
PDF
A Pocket Guide to Steering Gear System on Ships
byMahmoud Moghtaderi
 
PPTX
Presentation¹11111111111111111111111.pptx
byluvdarven
 
PPTX
network and communication on focus ppt .
bySakshiMarakana
 
PPTX
Develop and Implement a Maintenance Competency Plan | Build Skilled, Reliable...
byMaintWiz Technologies Private Limited
 
PPTX
Mastering Asynchronous Communication with Queues.pptx
byAdalberto Toledo
 
PPTX
Presentation "Risk Assessment of Essential Product Requirements by Example" a...
byBurkhard Stubert
 
PDF
Integrating_AI_in_React_Applications_Using_OpenAI_Gemini_and_Hugging_Face_Tec...
byJaydeep Kale
 
PDF
Create_a_Portfolio_Website_Showcasing_Projects_Skills_and_Contact_Info_Presen...
byJaydeep Kale
 
PPTX
Artificial-Intelligence-in-ICT-Information-and-Communication-Technology
byAnanyaPatel32
 
PDF
Praesentation Australian-Network-Mediachannel.pdf
byAustralian-Network-Mediachannel
 
PDF
Rapidly Varied Flow and culvert hydraulics
byGetacher Teshome
 
DOCX
Summer training report on plc and scada.docx
byharshgahlyan3108
 
PDF
DevSecOps - November + MCP Workshop @ Google
byLuiz Carneiro
 
PPTX
Artificial Intelligence in Information and communication Technology.pptx
byOmPatel109070
 
PDF
6.IPE431_KINEMATIC STRUCTURE2133e324.pdf
bygixaj71508
 
PPTX
Industrial Plant Safety Guide | Ensure Reliability, Compliance & Zero-Inciden...
byMaintWiz Technologies Private Limited
 
PPTX
Class 1 of Module 2 - Strings in Python Syllabus, VIT
byVijayanthVijay
 
PPTX
inbound2629607489386899299.pptxnwiwiwkkq
byhedjechevere
 
PPTX
Unlock Hidden Capacity: How TPM Supercharges Your OEE | MaintWiz CMMS
byMaintWiz Technologies Private Limited
 
asyad-shipping-esg-report0f7b3d1ec3f44f7c8cbea33ef21f4690.pdf
byJaszsingh
 
A Pocket Guide to Steering Gear System on Ships
byMahmoud Moghtaderi
 
Presentation¹11111111111111111111111.pptx
byluvdarven
 
network and communication on focus ppt .
bySakshiMarakana
 
Develop and Implement a Maintenance Competency Plan | Build Skilled, Reliable...
byMaintWiz Technologies Private Limited
 
Mastering Asynchronous Communication with Queues.pptx
byAdalberto Toledo
 
Presentation "Risk Assessment of Essential Product Requirements by Example" a...
byBurkhard Stubert
 
Integrating_AI_in_React_Applications_Using_OpenAI_Gemini_and_Hugging_Face_Tec...
byJaydeep Kale
 
Create_a_Portfolio_Website_Showcasing_Projects_Skills_and_Contact_Info_Presen...
byJaydeep Kale
 
Artificial-Intelligence-in-ICT-Information-and-Communication-Technology
byAnanyaPatel32
 
Praesentation Australian-Network-Mediachannel.pdf
byAustralian-Network-Mediachannel
 
Rapidly Varied Flow and culvert hydraulics
byGetacher Teshome
 
Summer training report on plc and scada.docx
byharshgahlyan3108
 
DevSecOps - November + MCP Workshop @ Google
byLuiz Carneiro
 
Artificial Intelligence in Information and communication Technology.pptx
byOmPatel109070
 
6.IPE431_KINEMATIC STRUCTURE2133e324.pdf
bygixaj71508
 
Industrial Plant Safety Guide | Ensure Reliability, Compliance & Zero-Inciden...
byMaintWiz Technologies Private Limited
 
Class 1 of Module 2 - Strings in Python Syllabus, VIT
byVijayanthVijay
 
inbound2629607489386899299.pptxnwiwiwkkq
byhedjechevere
 
Unlock Hidden Capacity: How TPM Supercharges Your OEE | MaintWiz CMMS
byMaintWiz Technologies Private Limited
 

Introduction to information security

  • 2.
    Basics of information Computer security  Data  Data security  Information  Information security  Network security
  • 3.
    Information system  Information It is a resource fundamental to the success of any business.  Data  Knowledge  Action
  • 4.
    Information Security  Needand importance of information  Damage to information can cause disruptions in a normal process .  Management is crucial to making good business decision.  Monitor and document the operations of other systems.  To satisfy the decision making capability.
  • 5.
    Information Systems  Reasonsfor Information Classification  Protection of personal data  Protection of confidential data  Protecting Intellectual property  Protecting info. That supports public security and law enforcement  Supporting routine disclosure and active dissemination  Data of intergovernmental cooperation and integrated service delivery.
  • 6.
    Information Classification  Criteriaof information classification  Value  Age  Useful Life  Personal association
  • 7.
    Information Classification  Levelsof information classification  Unclassified  Sensitive But Unclassified  Confidential  Secrete  Top secret
  • 8.
    security  Security meansto protect information or system from unauthorized users.  Layers of security  Physical security  Personal Security  Operational Security  Communications security  Network security  Information security
  • 9.
    security  Need ofsecurity  Application were developed to handle financial and personal data  Mechanism  Use userid and paswword  Encode information present in database
  • 10.
    Security basics  Basicsof computer security /Three pillars of IS includes :  Confidentiality  Integrity  Availability
  • 11.
    Security basics  Confidentiality Confidentiality means secrecy or concealment of information and resources.  Attempt to prevent the intentional or unintentional unauthorized disclosure of information.  Interception attack  Uses identification and authentication.
  • 12.
    Security basics  Confidentiality Breaches of confidentiality  Permitting someone to look over your shoulder  If the information containing device is stolen or sold  Giving out the confidential information over communication media.  Mechanism used for confidentiality  Resource hiding,  cryptography,  access control mechanism.
  • 13.
    Security basics  Integrity It involves maintaining the consistency, accuracy, and trustworthiness of data over its entire life cycle.  Data integrity and origin integrity.  Modification attack  Breaches of Integrity  Accidentally or with malicious intent deletes information  Computer virus  Mechanism used for Integrity  file permissions  user access control  cryptography
  • 14.
    Security basics  Availability Resources should be available to authorized parties at all times.  Availability is an important aspect of reliability as well as of system design  Interruption attack  High availability systems aim to remain available at all times(24x7) preventing service disruptions  DOS(denial-of-service) attack.
  • 15.
    Security basics  Non-repudiation:  It refers to the ability to ensure that a party to a contract or a communication cannot deny the authenticity of their signature on a document or the sending of a message that they originated.  The best services for non repudiation are digital signature and encryption.  Authorization  Authorization is a process of verifying that a known person has the authority to perform a certain operation.
  • 16.
    Security basics  Authentication:  It is the process of determining the identity of a user or other entity.  It requires to access secure data or enter a secure area.  Three method of authentication.  Something –you-know : user ID and password.  Something – you – have: lock and key.  Something –about –you : finger print, DNA , Samples etc.
  • 17.
    Data obfuscation  Dataobfuscation (DO) is a form of data masking where data is purposely scrambled to prevent unauthorized access to sensitive materials.  Used to prevent the intrusion of private and sensitive online data.  Sensitive info. : Employee data(salary info , review info.),customer data, bank and vendor data
  • 18.
    Data obfuscation  Techniquesfor data obfuscation  Generate RSA(Rivest Shamir Adleman) private / public key pair  Masking  Character scrambling or masking out of certain fields  Substitution  another authentic looking value can be substituted for the existing value  Purge  applying a null value to a particular field
  • 19.
    Event Classification  Viruses Disaster  Crisis  Catastrophe