Open navigation menu

Scribd

0% found this document useful (0 votes)

80 views

Pengantar Security Sangat Singkat: Budi Rahardjo

The document discusses security as a non-functional requirement that is often overlooked or deprioritized compared to business needs, leaving systems vulnerable. It outlines the elements of network, computer, and application security and visualizes potential security holes. The document also lists the main aspects of security as confidentiality, integrity, and availability along with additional controls of non-repudiation, authentication, and access control.

Uploaded by

Copyright

© Attribution Non-Commercial (BY-NC)

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

80 views

Pengantar Security Sangat Singkat: Budi Rahardjo

The document discusses security as a non-functional requirement that is often overlooked or deprioritized compared to business needs, leaving systems vulnerable. It outlines the elements of network, computer, and application security and visualizes potential security holes. The document also lists the main aspects of security as confidentiality, integrity, and availability along with additional controls of non-repudiation, authentication, and access control.

Uploaded by

Copyright

© Attribution Non-Commercial (BY-NC)

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 7

Pengantar Security Sangat Singkat

Budi Rahardjo
[email protected] blog: http://rahard.wordpress.com twitter: @rahard

7/15/12

Security Sangat Singkat - BR

Security
... merupakan non-functional requirement ... dikalahkan oleh business requirement ... pengganjal penerimaan layanan

=>trust

7/15/12

Security Sangat Singkat - BR

security sering dilupakan | dinomorduakan| diremehkan | Tinggal tunggu akibatnya saja!

7/15/12

Security Sangat Singkat - BR

Berdasarkan Elemen Sistem

Network security
fokus kepada saluran (media) pembawa informasi

Computer security
fokus kepada keamanan dari komputer (end system), termasuk operating system (OS)

Application security
fokus kepada aplikasinya sendiri, termasuk di dalamnya adalah database
7/15/12 Security Sangat Singkat - BR 5

Visualisasi Potensi Security Holes

ISP
Network sniffed, attacked

Internet
Network sniffed, attacked Network sniffed, attacked

HOLES System (OS) Network Applications (db)

Users
Trojan horse

Web Site
- Applications (database, Web server) hacked -OS hacked

Userid, Password, PIN, credit card #

www.bank.co.id
Security Sangat Singkat - BR

7/15/12

Security Aspects | Controls

Utama Tambahan

Confidentiality Integrity Availability

Non-repudiation Authentication Access Control

7/15/12

Security Sangat Singkat - BR

You might also like

Industrial Automation and Control System Security Principles
From Everand
Industrial Automation and Control System Security Principles
Ronald L. Krutz
4.5/5 (7)
CEH: Certified Ethical Hacker v11 : Exam Cram Notes - First Edition - 2021
From Everand
CEH: Certified Ethical Hacker v11 : Exam Cram Notes - First Edition - 2021
IP Specialist
No ratings yet
The Certified Ethical Hacker Exam - version 8 (The concise study guide)
From Everand
The Certified Ethical Hacker Exam - version 8 (The concise study guide)
alasdair gilchrist
3/5 (9)
Mobile Offensive Security Pocket Guide: A Quick Reference Guide For Android And iOS
From Everand
Mobile Offensive Security Pocket Guide: A Quick Reference Guide For Android And iOS
James Stevenson
1/5 (1)
Hacking for Beginners: Mastery Guide to Learn and Practice the Basics of Computer and Cyber Security
From Everand
Hacking for Beginners: Mastery Guide to Learn and Practice the Basics of Computer and Cyber Security
Richard Dorsel
No ratings yet
Hacking: Having Fun With SH, Perl, and Python Scripts
No ratings yet
Hacking: Having Fun With SH, Perl, and Python Scripts
21 pages
CompTia Security 701: Fundamentals of Security
From Everand
CompTia Security 701: Fundamentals of Security
AS Snipes
No ratings yet
Cyber Security in Business and Financial Services
From Everand
Cyber Security in Business and Financial Services
IRENE JEBET
No ratings yet
CISSP Domain 1 Study Guide Security and Risk Management: CISSP Study Guide - Updated 2024, #1
From Everand
CISSP Domain 1 Study Guide Security and Risk Management: CISSP Study Guide - Updated 2024, #1
Gandiv
No ratings yet
InduSoft Application Design and SCADA Deployment Recommendations for Industrial Control System Security
From Everand
InduSoft Application Design and SCADA Deployment Recommendations for Industrial Control System Security
Richard Clark
No ratings yet
Framework for SCADA Cybersecurity
From Everand
Framework for SCADA Cybersecurity
Richard Clark
5/5 (1)
CISSP in 21 Days - Second Edition
From Everand
CISSP in 21 Days - Second Edition
M. L. Srinivasan
3/5 (1)
Cybersecurity Fundamentals Explained
From Everand
Cybersecurity Fundamentals Explained
Brian Mackay
No ratings yet
Cybersecurity for Beginners : Learn the Fundamentals of Cybersecurity in an Easy, Step-by-Step Guide: 1
From Everand
Cybersecurity for Beginners : Learn the Fundamentals of Cybersecurity in an Easy, Step-by-Step Guide: 1
Kevin Clark
No ratings yet
IDS and IPS with Snort 3: Get up and running with Snort 3 and discover effective solutions to your security issues
From Everand
IDS and IPS with Snort 3: Get up and running with Snort 3 and discover effective solutions to your security issues
Ashley Thomas
No ratings yet
Security Engineering: CISSP, #3
From Everand
Security Engineering: CISSP, #3
Selwyn Classen
No ratings yet
Fascination: Honeypots and Cybercrime
From Everand
Fascination: Honeypots and Cybercrime
Armin Snyder
No ratings yet
Challenges and Ethical Issues in Artificial Intelligence
From Everand
Challenges and Ethical Issues in Artificial Intelligence
akosnemeth
No ratings yet
Ethical Hacking and Computer Securities for Beginners
From Everand
Ethical Hacking and Computer Securities for Beginners
Elaiya Iswera Lallan
No ratings yet
Cybersecurity Fundamentals: Best Security Practices: cybersecurity beginner, #1
From Everand
Cybersecurity Fundamentals: Best Security Practices: cybersecurity beginner, #1
bruce brown
No ratings yet
CompTIA Security+ SY0-601 Exam Practice Tests
From Everand
CompTIA Security+ SY0-601 Exam Practice Tests
CertSquad Professional Trainers
No ratings yet
The Business Owner's Guide to Cybersecurity: Protecting Your Company from Online Threats
From Everand
The Business Owner's Guide to Cybersecurity: Protecting Your Company from Online Threats
Neil King
No ratings yet
GUARDIANS OF THE BOTTOM LINE: Demystifying Cybersecurity for Today’s Leaders
From Everand
GUARDIANS OF THE BOTTOM LINE: Demystifying Cybersecurity for Today’s Leaders
Brenda Taylor MS PMP
No ratings yet
(ISC)2 Certified Information Systems Security Professional CISSP Realistic Practice Test
From Everand
(ISC)2 Certified Information Systems Security Professional CISSP Realistic Practice Test
CertSquad Professional Trainers
No ratings yet
Software Development Security: CISSP, #8
From Everand
Software Development Security: CISSP, #8
Selwyn Classen
No ratings yet
Cybersecurity for Small Businesses: Comprehensive Guide to Protecting a Small Business from Various Types of Cyber Threats
From Everand
Cybersecurity for Small Businesses: Comprehensive Guide to Protecting a Small Business from Various Types of Cyber Threats
Business Success Shop
No ratings yet
Your System's Sweetspots: CEO's Advice on Basic Cyber Security: CEO's Advice on Computer Science
From Everand
Your System's Sweetspots: CEO's Advice on Basic Cyber Security: CEO's Advice on Computer Science
Warren H. Lau
No ratings yet
Network Security Traceback Attack and React in the United States Department of Defense Network
From Everand
Network Security Traceback Attack and React in the United States Department of Defense Network
Edmond K. Machie
No ratings yet
CISSP - Certified Information Systems Security Professional Exam Preparation Study Guide
From Everand
CISSP - Certified Information Systems Security Professional Exam Preparation Study Guide
Georgio Daccache
5/5 (1)
Learning Microsoft Windows Server 2012 Dynamic Access Control
From Everand
Learning Microsoft Windows Server 2012 Dynamic Access Control
Jochen Nickel
No ratings yet
Web Application Defender's Cookbook: Battling Hackers and Protecting Users
From Everand
Web Application Defender's Cookbook: Battling Hackers and Protecting Users
Ryan C. Barnett
No ratings yet
Cybersecurity for Everyday Users: A Practical Guide to a Safer Digital Life
From Everand
Cybersecurity for Everyday Users: A Practical Guide to a Safer Digital Life
E. Psaila
No ratings yet
CISSP Certification Exam Study Guide: (Cerified Information Systems Security Professional)
From Everand
CISSP Certification Exam Study Guide: (Cerified Information Systems Security Professional)
Kumud Kumar
No ratings yet
Introduction To Cybersecurity For Small Businesses
From Everand
Introduction To Cybersecurity For Small Businesses
Christopher Hines
No ratings yet
Cybersecurity for Remote Workers
From Everand
Cybersecurity for Remote Workers
A.I Woolley
No ratings yet
Building Telephony Systems with OpenSER
From Everand
Building Telephony Systems with OpenSER
Goncalves Flavio E.
No ratings yet
Hacking a computer
From Everand
Hacking a computer
'Herr Meier'
No ratings yet
Learning iOS Penetration Testing: Secure your iOS applications and uncover hidden vulnerabilities by conducting penetration tests
From Everand
Learning iOS Penetration Testing: Secure your iOS applications and uncover hidden vulnerabilities by conducting penetration tests
Swaroop Yermalkar
No ratings yet
Managing Modern Security Operations Center & Building Perfect Career as SOC Analyst
From Everand
Managing Modern Security Operations Center & Building Perfect Career as SOC Analyst
Publicancy Ltd
No ratings yet
Cybersecurity for Small Businesses: Step-by-Step Guides to Protect Against Phishing, Ransomware, and Data Breaches
From Everand
Cybersecurity for Small Businesses: Step-by-Step Guides to Protect Against Phishing, Ransomware, and Data Breaches
Marjo Alkula
No ratings yet
Ethical Hacking
From Everand
Ethical Hacking
Elias Mutegi
No ratings yet
Cybersecurity:
From Everand
Cybersecurity:
Henrique Xavier Oliveira
No ratings yet
ChatGPT and Data security
From Everand
ChatGPT and Data security
Stefan Mielich
No ratings yet
Cyber Security
From Everand
Cyber Security
Lucas Lee
No ratings yet
SSL VPN : Understanding, evaluating and planning secure, web-based remote access
From Everand
SSL VPN : Understanding, evaluating and planning secure, web-based remote access
Tim Speed
No ratings yet
The Browser Hacker's Handbook
From Everand
The Browser Hacker's Handbook
Wade Alcorn
No ratings yet
Digital Fortress
From Everand
Digital Fortress
Mahmoud Taha
No ratings yet
Cyber Safe: Protecting Your Digital Life in an Interconnected World
From Everand
Cyber Safe: Protecting Your Digital Life in an Interconnected World
Nolan Blackwood
No ratings yet
The Ultimate Musician’s Website Guide-Step-by-Step Tutorials to Engage Fans and Showcase Your Talent
From Everand
The Ultimate Musician’s Website Guide-Step-by-Step Tutorials to Engage Fans and Showcase Your Talent
Neil J Milliner
No ratings yet
Concise Guide to CompTIA Security +
From Everand
Concise Guide to CompTIA Security +
alasdair gilchrist
3/5 (2)
Security and Cyber Laws Digital Defenders
From Everand
Security and Cyber Laws Digital Defenders
Manish Soni
No ratings yet
Comprehensive Guide to Personal Cybersecurity: Personal Cybersecurity Practices for a Safer Digital Life
From Everand
Comprehensive Guide to Personal Cybersecurity: Personal Cybersecurity Practices for a Safer Digital Life
Rick Spair
No ratings yet
Data Protection 101: A Beginner's Guide to Digital Security
From Everand
Data Protection 101: A Beginner's Guide to Digital Security
Neil King
No ratings yet
JavaScript Programming: 3 In 1 Security Design, Expressions And Web Development
From Everand
JavaScript Programming: 3 In 1 Security Design, Expressions And Web Development
Richie Miller
No ratings yet
02 Secure Prinsip
No ratings yet
02 Secure Prinsip
14 pages
3KB04 MuhammadSandhiKhadafi T1
No ratings yet
3KB04 MuhammadSandhiKhadafi T1
127 pages
Di Rizky Pratama.T1
No ratings yet
Di Rizky Pratama.T1
33 pages
Apa Yang Organisasi Lakukan Untuk Melindungi Sumber Informasi?
No ratings yet
Apa Yang Organisasi Lakukan Untuk Melindungi Sumber Informasi?
4 pages
Basic Computer Security, (DT)
No ratings yet
Basic Computer Security, (DT)
8 pages
11-Access Control Structures, Firewalls.-06!05!2023
No ratings yet
11-Access Control Structures, Firewalls.-06!05!2023
27 pages
FALLSEM2023-24 BCSE353E ETH VL2023240100850 2023-06-01 Reference-Material-I
No ratings yet
FALLSEM2023-24 BCSE353E ETH VL2023240100850 2023-06-01 Reference-Material-I
27 pages
Indonesian IoT Ecosystem v.0.2
No ratings yet
Indonesian IoT Ecosystem v.0.2
2 pages
Bandung Software / Animation / Games 2013
No ratings yet
Bandung Software / Animation / Games 2013
16 pages
Budi Rahardjo's CV v.14
No ratings yet
Budi Rahardjo's CV v.14
20 pages
IT Security HR BR Update
No ratings yet
IT Security HR BR Update
10 pages
I Just Wanna Stop
No ratings yet
I Just Wanna Stop
2 pages
Membedah Classic Rock 2.13
No ratings yet
Membedah Classic Rock 2.13
120 pages
Membedah Classic Rock 2.14
No ratings yet
Membedah Classic Rock 2.14
125 pages
Itpreneurship: Budi Rahardjo
No ratings yet
Itpreneurship: Budi Rahardjo
14 pages
Product Development: Budi Rahardjo For The Founder Ins Tute Jakarta - 21 December 2011
No ratings yet
Product Development: Budi Rahardjo For The Founder Ins Tute Jakarta - 21 December 2011
8 pages
IT and Entrepreneurship
No ratings yet
IT and Entrepreneurship
7 pages
Quiz KU 1073 - Introduction To Information Technology
No ratings yet
Quiz KU 1073 - Introduction To Information Technology
7 pages