cybersecurity 1 intro to cybersecurity

20
Cybersecurity 1: Introduction to cybersecurity 2013 Slide 1 Cybersecurity 1 Introduction to cybersecurity

Upload: sommerville-videos

Post on 22-Jan-2015

293 views

Category:

Technology


5 download

DESCRIPTION

Introduces and defines cybersecurity and explains why it is important Accompanies YouTube video

TRANSCRIPT

  • 1. Cybersecurity 1 Introduction to cybersecurityCybersecurity 1: Introduction to cybersecurity 2013Slide 1

2. What is cybersecurity? A very wide-ranging term with no standard definition. It covers all aspects of ensuring the protection of citizens, businesses and critical infrastructures from threats that arise from their use of computers and the internet. Cybersecurity 1: Introduction to cybersecurity 2013Slide 2 3. Internet-enabled crime Criminals see lower risks and high rewards from cyber crime than through physical crime Stealing confidential and national secrets by intelligence agencies and others now involves illegally accessing digitised information. Cybersecurity 1: Introduction to cybersecurity 2013Slide 3 4. Internet-enabled crime Nation states have the potential to disrupt an enemys economy and perhaps reach their strategic objectives without risk to their armed forces There are fewer online barriers to antisocial behaviour on the net than in face to face interaction. Cybersecurity 1: Introduction to cybersecurity 2013Slide 4 5. Scope of cybersecurity Techniques of threat and attack analysis and mitigation Protection and recovery technologies, processes and procedures for individuals, business and government Policies, laws and regulation relevant to the use of computers and the Internet Cybersecurity 1: Introduction to cybersecurity 2013Slide 5 6. Cybersecurity is not Computer security Security engineering Encryption Computer crime Computer forensics Cybersecurity 1: Introduction to cybersecurity 2013Slide 6 7. Cybersecurity is A socio-technical systems problem Security problems almost always stem from a mix of technical, human and organisational causesCybersecurity 1: Introduction to cybersecurity 2013Slide 7 8. Cyber attack A malicious attempt, using digital technologies, to cause personal or property loss or damage, and/or steal or alter confidential personal or organisational dataCybersecurity 1: Introduction to cybersecurity 2013Slide 8 9. Insider attacks Attacks to an organisation carried out by someone who is inside that organisation Difficult to counter using technical methods as the insider may have valid credentials to access the system Cybersecurity 1: Introduction to cybersecurity 2013Slide 9 10. External attacks Attacks to an organisation carried out by an external agent Requires either valid credentials or the exploitation of some vulnerability to gain access to the systems Cybersecurity 1: Introduction to cybersecurity 2013Slide 10 11. Infosecurity magazine 2012 Cybersecurity 1: Introduction to cybersecurity 2013Slide 11 12. Malware Software that has some malicious intent and which is installed on a users computer without that users consentCybersecurity 1: Introduction to cybersecurity 2013Slide 12 13. Malware Key loggers Software installed on a computer that captures key strokes and sends these to a remote system Used to try and get personal information to gain access to sites such as banksCybersecurity 1: Introduction to cybersecurity 2013Slide 13 14. Malware Ransomware Software that runs on a users computer and demands that the user pays some other organisation. If they dont, the information on their computer will be destroyed. Cybersecurity 1: Introduction to cybersecurity 2013Slide 14 15. Malware transmission Malware can usually spread itself from one computer to another either as a virus or as a wormCybersecurity 1: Introduction to cybersecurity 2013Slide 15 16. Viruses and worms Virus malware attached to a carrier such as an email message or a word processing document Worm malware can autonomously spread itself without a carrier, using information about connected computers Cybersecurity 1: Introduction to cybersecurity 2013Slide 16 17. Malicious and accidental damage Cybersecurity is most concerned with Cyber attacks Cyber-accidents Accidental events that can cause loss or damage to to an individual, business or public bodyCybersecurity 1: Introduction to cybersecurity 2013Slide 17 18. Many of the same technologies used to protect against external attack also protect against cyber-accidents. However, sometimes protecting against cyber attacks increases the probability of cyber-accidents. Cybersecurity 1: Introduction to cybersecurity 2013Slide 18 19. Adding protection increases system complexity which increases the likelihood of introducing bugs into the system and for humans to make mistakes. For example An attack detection system might mistakenly detects an external attack and shut down part of the system in response to this. Cybersecurity 1: Introduction to cybersecurity 2013Slide 19 20. Summary Cybersecurity all about protecting, repelling and recovering from cyberattacks Need to be aware of the potential for both insider and external cyber attacks Malware is malicious code that is installed on a computer without the owners consent. Cybersecurity 1: Introduction to cybersecurity 2013Slide 20