Latest Post:
Loading...

1.3 Computer Security (Grade 10)

byEdutech Khem -
0

 1.3 Computer Security



Computer Security / Cyber Security

  • Computer security, also known as cyber security, refers to the practice of protecting computer systems, networks, and data from various forms of threats, attacks, and unauthorized access. 
  • It is the protection of computer systems and information from harm, theft, and unauthorized use.
  • Proper computer security helps prevent viruses and malware, which allows programs to run quicker and smoother.

Tips for Best Computer Security

a) Use the best antivirus software, which not only provides protection to your PC but also internet protection and guards against cyber threats.

b) Do not download un trusted email attachments as these may carry harmful malware.

c) Never download software from unreliable sites as they may come with a virus that may infect your system as soon as you install the software.

Information Security (infosec)

The processes and methodologies which are designed and implemented to protect print, electronic, or any other form of confidential, private and sensitive information or data from unauthorized access, use, misuse, disclosure, destruction, modification, or disruption.

Key principles of Information Security

a) Confidentiality:- Only authorized users can access the data resources and information.

b) Integrity:- Only authorized users should be able to modify the data when needed.

c) Availability:- Data should be available to users when needed.

Security Threats

  • A risk which can potentially harm computer systems and organization.
  • The cause could be physical such as someone stealing a computer that contains vital data.
  • The cause could also be non-physical such as a virus attack.

Possible Security Threats

  • Internal: The threats include fire, unstable power supply, humidity in the rooms housing the hardware, etc.
  • External: These threats include Lightning, floods, earthquakes, etc.
  • Human: These threats include theft, vandalism of the infrastructure and/or hardware, disruption, accidental or intentional errors.
  • Loss or corruption of system data.
  • Disrupt business operations that rely on computer systems.
  • Loss of sensitive information.
  • Unauthorized access to computer systems resources such as data.

Malicious code (Malware)

  • Malicious code, also known as malware, refers to any software or code that is designed to harm, or gain unauthorized access to computer systems, networks, or data.
  • Includes computer viruses, worms, Trojan horses and spyware.
  • Perform a variety of different functions such as stealing, encrypting or deleting sensitive data, altering or hijacking (taking control) core computing functions and monitoring users' computer activity without their permission.

Types of malware

a) Virus: A virus is a man made destructive program which disturbs the normal functioning of the computer system. It is the most common type of malware which can execute itself and spread by infecting other programs or files.

b) Worm: Worms are self-replicating programs that can spread across networks without human intervention.

c) Trojan horse: Trojans appear as legitimate software but contain hidden malicious functionality. They can perform actions like stealing data, providing unauthorized access, or installing other malware

d) Spyware: Spyware monitors a user's activities without their knowledge, often collecting sensitive information such as passwords, credit card details, and browsing habits..

e) Keyloggers, also called system monitors, are used to see nearly everything a user does on their computer. This includes emails, opened web-s, programs and keystrokes.

f) Adware: Adware displays unwanted advertisements to users, often generating revenue for attackers through pay-per-click schemes. While not always explicitly harmful, it can be disruptive and compromise user privacy.

g) Ransomware: Ransomware encrypts a victim's data and demands a ransom in exchange for the decryption key. It can lead to data loss and operational disruption.

Protect a system from infection

a) Never download files from unknown or suspicious sources.

b) Install antivirus software that features automatic updates and has the capability to detect all types of infections.

c) Delete spam and junk emails without forwarding.

d) Always scan a pen drive from an unknown source for viruses before using it.

e) Regularly back up your documents, photos, and important email messages to the cloud or to an external hard drive. In the event of an infection, your information will not be lost.

Security mechanisms

A mechanism that is designed to detect, prevent, or recover from a security attack. It includes

  • Authentication Systems
  • Firewalls
  • Cryptography
  • Antivirus Software
  • Backup System

Authentication System

Authentication is the process of verifying the identity of a person or device.

Authentication system makes sure that right people enters the system and access the right information.

Types of Authentication

  • Password
  • Biometric

Password

  • A set of secret characters or words used to authenticate access to a digital system.
  • Password ensures that unauthorized users do not access the computer.
  • Password secures the data by protecting the data from unauthorized access.
  • To protect a system from unauthorized access, password should be kept in a system which provides security to the system.
  • A password should be difficult to guess and determine and should be changed regularly and memorized.

Any four criteria for strong password are:

a) Do not keep a password which can be easily guessed such as date of birth, nickname, etc.

b) Do not keep word as password that is currently popular.

c) Keep a password with mixture of alphabet and numbers which is difficult to guess.

d) Keep changing your password regularly.

Biometric

  • Biometrics are physical or behavioral human characteristics that can be used to digitally identify a person to grant access to systems, devices or data.
  • Examples of these biometric identifiers are fingerprints, facial patterns and voice.
  • Computers and devices can unlock automatically when they detect the fingerprints of an approved user.
  • Apple's Face ID (introduced with the iPhone X) authenticates users by facial recognition.
  • Retinal scanners, which require an eye scan to allow authorized individuals to access secure areas.

Firewall

A firewall is a network security device or software application designed to monitor, filter, and control incoming and outgoing network traffic based on predetermined security rules.

  • Firewall blocks unwanted traffic as well as malicious software from infecting your computer.
  • Firewalls helps to prevent unauthorized access.
  • Software firewalls are designed to protect a computer by blocking certain programs from sending
  • and receiving information from a local network or the Internet.
  • Hardware firewalls are found on most network routers and can be configured through the router setup screen.

Cryptography

  • A technique of securing information and communications through use of codes so that only those person for whom the information is intended can understand it and process it.
  • Thus preventing unauthorized access to information.
  • The prefix “crypt” means “hidden” and suffix graphy means “writing”.
  • It involves the use of mathematical algorithms and methods to convert plain, readable data (plaintext) into a coded, unreadable form (ciphertext) to ensure confidentiality, integrity, authentication, and non-repudiation. 
  • Cryptography is used to secure and protect data during communication.

Features of Cryptography

a) Confidentiality: Information can only be accessed by the person for whom it is intended and no

other person except him can access it.

b) Integrity: Information cannot be modified in storage or transition between sender and intended receiver without any addition to information being detected.

c) Non-repudiation: The creator/sender of information cannot deny his or her intention to send information at later stage.

d) Authentication: The identities of sender and receiver are confirmed. As well as destination/origin of information is confirmed.

Encryption

  • Encryption is a process which transforms the original information into an unrecognizable form.
  • This new form of the message is entirely different from the original message.
  • That's why a hacker is not able to read the data as senders use an encryption algorithm.
  • Encryption is usually done using key algorithms.
  • Data is encrypted to make it safe from stealing. However, many known companies also encrypt data
  • to keep their trade secret from their competitors.

Decryption

Decryption is a process of converting encoded/encrypted data in a form that is readable and understood by a human or a computer.

This method is performed by un-encrypting the text manually or by using keys used to encrypt the original data.

KEY DIFFERENCE BETWEEN ENCRYPTION AND DECRYPTION

a) Encryption is a process of converting normal data into an unreadable form whereas Decryption is a method of converting the unreadable/coded data into its original form.

b) Encryption is done by the person who is sending the data to the destination, but the decryption is done at the person who is receiving the data.

c) The same algorithm with the same key is used for both the encryption-decryption processes.

Antivirus software

  • Antivirus software is software designed to detect and remove virus from computer system and ensures virus free environment.
  • E.g. Kaspersky, NAV, MSAV, McAfee, NOD 32 etc.
  • Main use of antivirus is to protect computer from viruses and remove viruses that are detected and also protects data and programs from being corrupted.

Backup system

  • It is the system of copying data and programs into another location or creating a duplicate copy of it in a secured place.
  • A copy of a file which is used in the event of the original file being corrupted.
  • Backup is vital to computer security system in order to save the data from being lost or damaged due to accidental or intentional harm. When data and software are lost or damaged, we can easily recover through backup.
  • These files are kept on hard disks, CDs and tapes and on the internet.

Hardware Security

The security given to the machine and peripheral hardware from theft and from electronic intrusion (interruption) and damage.

Different hardware security measures are:

a) Regular Maintenance

b) Insurance

c) Dust free environment

d) Protection from Fire

e) Protection from Thief

f) Air condition system

g) Power Protection device (Volt guard, Spike guard, UPS)

Regular Maintenance

  • Computer system need regular maintenance to keep the computer hardware in good working condition and it also helps to find out problems in hardware and correct the problems before they cause several damages.
  • The hardware components of computer systems are very delicate and gets damaged if proper care is not taken.
  • E.g. CPU cooler not working properly and if we don't repair or replace on time then the computer system may get halted and can damage microprocessor.
  • Another E.g. Computer Hard disk which needs to be checked frequently in order to find errors and keep in good condition.

Insurance

  • A means of protection from financial loss.
  • If a computer is damaged or stolen or any kind of harm done then we can claim for the insurance amount and get the economic support.

Dust Free Environment

  • Dust particles can cause the failure of hardware components.
  • Computer room should be absolutely free from dust and air pollution.
  • Use dust cover to prevent our computer from dust particles.

Protection from Fire

  • Due to faulty wiring, loose connection, smoking in the computer room and overload on power socket can cause fire in a room.
  • Using fire alarms, fire doors, fire detectors and fire extinguishers can minimize the damage of hardware components and loss of information from fire.

Protection from Theft

  • Use of Lighting system, Grills on the windows, Safety Lock on the doors, Alarms, CCTV (Closed Circuit Television) helps to protect from thieves.

Air Condition System

  • A system for controlling the temperature and humidity (wetness) of the air
  • Maintains suitable temperature or humidity in the computer room.
  • Room Temperature should be maintained between 210C to 240C.

Power Protection Device

  • An electric device that controls electric voltage and provides enough backup to the computer system when there is power failure.
  • Computer needs 220 volts to 240 volts constantly.

Some common power protection devices are:

a) UPS

b) Volt Guard

c) CVT

d) Stabilizer

e) Spike Guard

f) Surge Suppressor

Why Power Protection Device needed?

To protect computer system from damage, expensive data loss and unnecessary down time (is out of action or unavailable for use).

Volt Guard

A power protection device that provides constant output voltage to the computer system in case of high input voltage coming from the source.

UPS

  • UPS is a battery supported power protection device which controls the electric voltage and supplies clean and continuous power to the computer system even during power failures.
  • The importance of UPS in computer security system is that it controls fluctuation of electric voltage and provides enough backup electric power to the computer system when there is power failure.

Spike Guard

  • A device designed to protect electrical devices from voltage spikes.
  • Automatically maintains a constant voltage level.


Post a Comment