Download Internet Security - UOWM Open eClass

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
Document related concepts

Computer security wikipedia , lookup

Transcript 
Internet Security
Internet security is a branch of computer security specifically related to the Internet,
often involving browser security but also network security on a more general level as it
applies to other applications or operating systems on a whole. Its objective is to
establish rules and measures to use against attacks over the Internet. The Internet
represents an insecure channel for exchanging information leading to a high risk of
intrusion or fraud, such as phishing. Different methods have been used to protect the
transfer of data, including encryption and from-the-ground-up engineering.
A computer user can be tricked or forced into downloading software onto a
computer that is of malicious intent. Such software comes in many forms, such as
viruses, Trojan horses, spyware, and worms. Malware, short for malicious software, is
any software used to disrupt computer operation, gather sensitive information, or gain
access to private computer systems. Malware is defined by its malicious intent, acting
against the requirements of the computer user, and does not include software that causes
unintentional harm due to some deficiency. The term badware is sometimes used, and
applied to both true (malicious) malware and unintentionally harmful software.
A botnet is a network of zombie computers that have been taken over by a robot
or bot that performs large-scale malicious acts for the creator of the botnet. Computer
Viruses are programs that can replicate their structures or effects by infecting other
files or structures on a computer. The common use of a virus is to take over a computer
to steal data. Computer worms are programs that can replicate themselves throughout
a computer network, performing malicious tasks throughout. Ransomware is a type of
malware which restricts access to the computer system that it infects, and demands a
ransom paid to the creator(s) of the malware in order for the restriction to be removed.
Scareware is scam software with malicious payloads, usually of limited or no
benefit, that are sold to consumers via certain unethical marketing practices. The selling
approach uses social engineering to cause shock, anxiety, or the perception of a threat,
generally directed at an unsuspecting user. Spyware refers to programs that
surreptitiously monitor activity on a computer system and report that information to
others without the user's consent. A Trojan horse, commonly known as a Trojan, is a
general term for malicious software that pretends to be harmless, so that a user willingly
allows it to be downloaded onto the computer.
Phishing occurs when the attacker pretends to be a trustworthy entity, either via
1
email or web page. Victims are directed to fake web pages, which are dressed to look
legitimate, via spoof emails, instant messenger/social media or other avenues. Often
tactics such as email spoofing are used to make emails appear to be from legitimate
senders, or long complex subdomains hide the real website host. Insurance group RSA
said that phishing accounted for worldwide losses of $1.5 billion in 2012.
TCP/IP protocols may be secured with cryptographic methods and security
protocols. These protocols include Secure Sockets Layer (SSL), succeeded by
Transport Layer Security (TLS) for web traffic, Pretty Good Privacy (PGP) for email,
and IPsec for the network layer security. Internet Protocol Security (IPsec) is designed
to protect TCP/IP communication in a secure manner. It is a set of security extensions
developed by the Internet Task Force (IETF). It provides security and authentication at
the IP layer by transforming data using encryption.
Two main types of transformation that form the basis of IPsec: the
Authentication Header (AH) and ESP. These two protocols provide data integrity, data
origin authentication, and anti-replay service. These protocols can be used alone or in
combination to provide the desired set of security services for the Internet Protocol (IP)
layer. The set of security services provided at the IP layer includes access control, data
origin integrity, protection against replays, and confidentiality. The algorithm allows
these sets to work independently without affecting other parts of the implementation.
The IPsec implementation is operated in a host or security gateway environment giving
protection to IP traffic.
Decide whether the following sentences are True (T) or False (F):
1. Internet security is a branch of engineering security specifically related to the
Internet.
2. The aim of the Internet Security is to establish rules to use against attacks over
the Internet.
3. The Internet does not represent a secure channel for exchanging information
leading to a high risk of intrusion.
4. Encryption is a method used to harass the transfer of data.
5. Malware, defined by its malicious intent, takes place when the attacker pretends
to be a trustworthy entity.
2
6. Scareware is a software which restricts access to the computer system that it
infects.
7. Ransomware refers to programs that surreptitiously monitor activity on a
computer system.
8. Computer worms are programs that can replicate their structures or effects by
infecting other files or structures on a computer.
9. TCP/IP protocols may be secured with authentication codes and security
protocols.
10. AH and ESP are protocols which provide data integrity, data origin
authentication, and anti-replay service.
In paragraph 1, the word branch could be replaced by:
a. Division
b. Field
c. Part
d. All the above
In paragraph 1, the phrase related to could be replaced by:
a. Connected with
b. Divided to
c. Classified
d. All the above
e. Nothing of the above
In paragraph 1, the word involving is near the synonym of:
a. Entailing
b. Featuring
c. Including
d. All the above
e. Nothing of the above
3
In paragraph 1, the word objective is near the meaning of:
a. Target
b. Goal
c. Aim
d. All the above
In paragraph 1, the word establish is near the meaning of:
a. Make recognized
b. Install
c. Promulgate
d. All the above
e. Nothing of the above
In paragraph 1, the word fraud is near the meaning of:
a. Feud
b. Scam
c. Scallop
d. Scamp
e. All the above
f. Nothing of the above
In paragraph 2, the word malicious is near the meaning of:
a. Kind
b. Benevolent
c. Charitable
d. Advantageous
e. All the above
f. Nothing of the above
4
5
Related documents
File
File
Open ended challenge rationale
Open ended challenge rationale
Cyber attack! Could you run services without IT for a week?
Cyber attack! Could you run services without IT for a week?
Malicious Cryptography : Exposing Cryptovirology
Malicious Cryptography : Exposing Cryptovirology
Read More - Wauchula State Bank
Read More - Wauchula State Bank
Dan A CSC 345 Term Paper
Dan A CSC 345 Term Paper
Android Application Permission Manager
Android Application Permission Manager
英語
英語
Comparing: Han and Sui Dynasty
Comparing: Han and Sui Dynasty
Math vs. Malware
Math vs. Malware