CE Lecture 6
CE Lecture 6
SECURITY
sender receiver
Confidentiality: unauthorized Disclosure of information
Integrity: unauthorized modification of information
Authenticity: unauthorized use of service
Security Threats:
Destruction
Disclosure
Modification of
data
Denial of service
Elements of Information
Security
Confidentiality
Confidentiality is the term used to prevent the disclosure
of information to unauthorized individuals or
systems.
Data should be keep secret. The owner of
data has to decide who can only access the data
and who can't. Example: Password hacking in online
money transaction systems .
Prevention: Backup
systems
Authenticity
1. SQL Injection
2. Dictionary attack
3. Phishing
4. Cross site scripting
(XSS)
5. UI redressing
Security in different
aspects:
Data Security
Computer
Security
Network Security
Data Security