Basics: Information & Network Security
Basics: Information & Network Security is the important topic of the Computer & Science field.
In daily life, we use information for various purposes and use the network for communication and exchange information between different parties.
In many cases, this information are sensitive so we need to take care that only authorized party can get that information.
For maintaining such privacy we require some mechanism or physical device which ensures that it is Such mechanism or physical devices known as a security system.
Computer Security: The protection afforded to an automated information system in order to attain the applicable objectives of preserving the integrity, availability, and confidentiality of information system.
This definition of computer security introduces three key objectives that are at the heart of computer security:
Data Confidentiality: Assures that private or confidential information not made available or disclosed to unauthorized individuals.
Privacy: Assures that individuals control or influence what information related to them may collect and stored. And by whom and to whom that information may disclose.
Data Integrity: Assures that information and programs changed only in a specified and authorized manner.
System Integrity: Assures that a system performs its intended function in an unimpaired manner. Free from deliberate or inadvertent unauthorized manipulation of the system.
Assures that systems work promptly and service is not denied to the authorized user.
Unconditionally secure algorithm: An algorithm or an encryption scheme is unconditionally secure. Moreover, If the attacker cannot obtain the corresponding plaintext from ciphertext no matter how much ciphertext is available.
Computationally secure algorithm: An encryption scheme said to computationally secure if either of the following criteria met:
- The cost of breaking the cipher exceeds the value of the encrypted information.
- The time required to break the cipher exceeds the useful lifetime of the information.
Threat: A potential for violation of security, which exists when there is a circumstance. capability, action, or event that could breach security and cause harm.Moreover, That is, a threat is a possible danger that might exploit the vulnerability.