-


Tree key concepts of Information Security  every  IT expert must know.

Image result for 3 pillars of information security

  1. Confidentiality: Refers to protect information from disclosure to unauthorized parties.
    Method used  are :
  • Encryption
  • Enforcing  file permissions
  • Access Control list to restrict access to sensitive information.
   2. Integrity: Refers to protect information from being modified by unauthorized parties.
     Method used  is:
  • Hashing Data you receive and comparing it with the hash of the original message.
   3. Availability: Refers  to ensuring that authorized parties are able to access the information    
        when needed.
  1. Methods used are:
  • Back up is key Priority
  • Redundancy might be appropriate
  • Having an off-site location ready to restore services in case anything happens to primary data center.
      Other main terms referring information security are :
  • Authentication
  • Authorization
  • Non- Repudiation.

  

Comments

Post a Comment

Popular posts from this blog

Introduction To Big Data Forensics

-
Image
Introduction Big Data forensics is a new type of forensics, just as Big Data is a new way of solving the challenges presented by large, complex data. Thanks to the growth in data and the increased value of storing more data and analyzing it fast—Big Data solutions have become more common and more prominently positioned within organizations. As such, the value of Big Data systems has grown, often storing data used to drive organizational strategy, identify sales, and many different modes of electronic communication. The forensic value of such data is obvious: if the data is useful to an organization, then the data is valuable to an investigation of that organization. The information in a Big Data system is not only inherently valuable, but the data is most likely organized and analyzed in such a way to identify how the organization treated the data. Big Data forensics is the forensic collection and analysis of Big Data systems. Traditional computer forensics typically foc...
Read more

CYBER SECURITY: Improving Cyber Defense Through Coherent Joint Red Team and Blue Team

-
Image
CYBER SECURITY:   Improving Cyber Defense Through Coherent Joint Red Team and Blue Team by David Mugisha,  Student of  Ms.Digital Forensics and Information Security (Gujarat Forensic Sciences University) Abstract Over the years, the investments in security moved from nice to have to must have, and now organizations around the globe are realizing how important it is to continually invest in security. This investment will ensure that the company stays competitive in the market. Failure to properly secure their assets could lead to irreparable damage, and in some circumstances could lead to bankruptcy. Due to the current threat landscape, investing only in protection isn't enough. Organizations must enhance their overall security posture. This means that the investments in protection, detection, and response must be aligned. Due to the emerging threats and cyber security challenges, it is necessary to change the methodology from prevent breach to ass...
Read more

Digital Forensics: Investigation VS Security

-
Image
Digital Forensics: Investigation VS Security  by David Mugisha,  Student of  Ms.Digital Forensics and Information Security (Gujarat Forensic Sciences University) Abstract : The past decade has seen previously unimagined advances in technology, and although those developments have benefited individuals and businesses alike, they have also become tools for fraudsters and cyber criminals to steal money and data, and avoid detection. Hackers use technology to hide their illicit activities and to move funds across jurisdictions and around the globe. Their operations are complex and they have significant resources to help them evade detection. This means that those tasked with investigating cyber criminal activity have had to keep pace. We are seeing a new breed of investigators, the digital forensic practitioner, Cyber Security professionals who traces these criminals and their activities. As with other types of evidence, the courts make no presumption tha...
Read more