Chapter 1 Notes

Terms

computer security

The generic name for the collection of tools designed to protect data and to thwart hackers.

network security (often Internet Security)

Tools that protect data in transit

X.800 Security Architecture for OSI

defines a security service as a service provided by a protocol layer of communicating open systems, which ensures adequate security of the systems data transfers

Questions

What are three aspects of information security?

  1. Security Attack: Any action that compromises the security of information.
  2. Security Mechanism: A mechanism that is designed to detect, prevent, or recover from a security attack.
  3. Security Service: A service that enhances the security of the data processing systems and the information transfers of an organization. Services make use of one or more security mechanisms.

Name three challenges faced by electronic documents not faced by paper documents.

  1. Digital copies are identical.
  2. Alterations are not evident
  3. Proof of authenticity must be provided as a function of the content instead of seals or physical signatures.

Resources

[http://www.faqs.org/rfcs/rfc2828.html Internet Security Glossary RFC 2828]