• Home

  • Documents

  • Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret...
26
Information Security

Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Tags:

Embed Size (px)

Citation preview

Page 1: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Information Security

Page 2: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

The CIA TriadConfidentialitConfidentialit

yy

IntegritIntegrityy

AvailabiliAvailabilityty

The state of being secret

The state or quality of being

entire or complete

Present and ready for use

SecuritySecurity

Page 3: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

The Job

http://technet.microsoft.com/en-us/library/cc723507.aspx

Page 4: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Agenda

Some Threats

Some Controls

Page 5: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

San Francisco – Terry Childs

http://articles.sfgate.com/2008-12-27/bay-area/17133065_1_computer-network-mr-childs-passwords

Page 6: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

UBS – Roger Duronio

http://www.cbsnews.com/stories/2002/12/18/tech/main533450.shtml

Page 7: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Certegy Check Services

Page 8: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Lost Backup Tapes

Page 9: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Australia – Vitek Boden

“…marine life died, the creek water turned black and the stench was unbearable for residents…”

- Australian EPA

This file is licensed under the Creative Commons Attribution-Share Alike 2.5 Generic license

Page 10: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

California – Mario Azar

Page 11: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Google and China

Page 12: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Waheed Mahmood

http://news.bbc.co.uk/

Page 13: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Lost Laptop

Page 14: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Scottish Council Loses Pay Details

Page 15: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Customer Information in Bins

Page 16: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

The Biggie …

Page 17: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete
Page 18: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

SMART

Page 19: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Where is Security?

IT Security?

Information Security?

Physical Security?

Business Security? Business Assurance?

Page 20: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Some Problems

IT Vendors

People – IT, employees, others …

Complexity

Technology

Control Systems

Anyone who thinks that I am responsible for Information Security

Page 21: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Agenda

Some Problems

Some Solutions

Page 22: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

- 22 -

Security Golden Rules

Accept Challenges

Display Your Badge

Assess Risks

Protect Your Identity

Thirty Minute Rule

Page 23: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Security Program

Risk Management

Policy … Standards

Business Engagement

Culture / Behaviour Change

Security Architecture

Metrics and Measurements

Management System

Money / Staff

Controls

Page 24: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Further Reading

Bruce Schneier

SANS Internet Storm Centre / Newsbites

SecurityFocus

Titan Rain

Advanced Persistent Threat

Jericho Forum

Page 25: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Questions

Page 26: Information Security. The CIA Triad Confidentiality Integrity Availability The state of being secret The state or quality of being entire or complete

Reading List

Ross Anderson: Security Engineering

Bruce Schneier: Secrets & Lies


TRIAD: Triad-based Rich Internet Application Design

TRIAD: Triad-based Rich Internet Application Design

Technology
Female Athelet Triad

Female Athelet Triad

Documents
Triad Diminished

Triad Diminished

Documents
Glucose triad

Glucose triad

Health & Medicine
Triad VoiceLeading

Triad VoiceLeading

Documents
Music in Theory and Practice Volume 1 · 2018-08-21 · Chords 73 Important Concepts 73 Harmony 73 Chord 73 Triad 73 Triad Root 73 Major Triad 74 Minor Triad 74 Diminished Triad 74

Music in Theory and Practice Volume 1 · 2018-08-21 · Chords 73 Important Concepts 73 Harmony 73 Chord 73 Triad 73 Triad Root 73 Major Triad 74 Minor Triad 74 Diminished Triad 74

Documents
Female Triad

Female Triad

Documents
Triad Christian Fellowship Loving God, Loving Others, Reaching the World Welcometo Triad Christian Fellowship Triad Christian Fellowship

Triad Christian Fellowship Loving God, Loving Others, Reaching the World Welcometo Triad Christian Fellowship Triad Christian Fellowship

Documents
State Well-Being Committees Directory

State Well-Being Committees Directory

Documents
Triad Sus2

Triad Sus2

Documents
Force Triad

Force Triad

Documents
Triad Epidemiologi

Triad Epidemiologi

Documents
PLTC, ITC AND TC - BAHRA ELECTRIC...Triad: Black/White/Red, Numbered for multi triad • Individual Pair/Triad Assembly: Insulated cores are twisted into a pair/ triad • Individual

PLTC, ITC AND TC - BAHRA ELECTRIC...Triad: Black/White/Red, Numbered for multi triad • Individual Pair/Triad Assembly: Insulated cores are twisted into a pair/ triad • Individual

Documents
Triad Business Plan.doc

Triad Business Plan.doc

Documents
TRANSFORMATION - Triad

TRANSFORMATION - Triad

Documents
Triad News

Triad News

News & Politics
TRIAD · triad ® series vs360 and vs360esw - 6000 psi rated ball valves triad ® series vs360 and vs360esw - 6000 psi rated ball valves. process equipment. triad

TRIAD · triad ® series vs360 and vs360esw - 6000 psi rated ball valves triad ® series vs360 and vs360esw - 6000 psi rated ball valves. process equipment. triad

Documents
Solutions About Triad Residential Triad and opportunity ... · About Triad Triad Residential Solutions provides personalized care to adults with intellectual disabilities. We support

Solutions About Triad Residential Triad and opportunity ... · About Triad Triad Residential Solutions provides personalized care to adults with intellectual disabilities. We support

Documents
Introduction - California State University, Northridgelisagor/Fall 2014/608/6 608 Triad Presentation.pdf · Mencias, T. , Noon, M. , & Hoch, A. (2012). Female athlete triad screening

Introduction - California State University, Northridgelisagor/Fall 2014/608/6 608 Triad Presentation.pdf · Mencias, T. , Noon, M. , & Hoch, A. (2012). Female athlete triad screening

Documents
Piedmont Triad Regional Development Corporation Piedmont …06190D52...Business Investment Fund Piedmont Triad Regional Development Corporation Piedmont Triad Regional Development

Piedmont Triad Regional Development Corporation Piedmont …06190D52...Business Investment Fund Piedmont Triad Regional Development Corporation Piedmont Triad Regional Development

Documents
Triad Color Guide - Triad Associates, Inctriadassociatesinc.com/pdf-files/Triad-Color-Guide.pdf · Triad Color Guide Pool Decks Driveways Patios walkways. 1 Contents SEA GLASS OPTIONS

Triad Color Guide - Triad Associates, Inctriadassociatesinc.com/pdf-files/Triad-Color-Guide.pdf · Triad Color Guide Pool Decks Driveways Patios walkways. 1 Contents SEA GLASS OPTIONS

Documents
15-AUG-13 Company Confidential - Triad Technology …€¦ · Today’s session is being recorded. Today’s Agenda • Introductions • Triad Corporate Overview • Tableau Software

15-AUG-13 Company Confidential - Triad Technology …€¦ · Today’s session is being recorded. Today’s Agenda • Introductions • Triad Corporate Overview • Tableau Software

Documents
Reiki a state of being

Reiki a state of being

Documents
Triad Sus4

Triad Sus4

Documents
Triad Pairs

Triad Pairs

Documents
We’ve got the Triad covered. · Greensboro / Winston-Salem / High Point 2017 Media Kit triad-city-beat.com OUR MISSION: Triad City Beat chronicles the Triad cities as low-cost incubators

We’ve got the Triad covered. · Greensboro / Winston-Salem / High Point 2017 Media Kit triad-city-beat.com OUR MISSION: Triad City Beat chronicles the Triad cities as low-cost incubators

Documents
Triad Project Profiles - Federal Remediation … 12/9/2004 2 Overview Triad and the Triad Resource Center Triad Project Profiles »Profile content »Projects – current, planned »Accessing

Triad Project Profiles - Federal Remediation … 12/9/2004 2 Overview Triad and the Triad Resource Center Triad Project Profiles »Profile content »Projects – current, planned »Accessing

Documents
TRIAD INSTALLATION GUIDE TRIAD ONE SINGLE …api.yatun.cz/docs/Y002162/dokumentace/Installation Guide...TRIAD INSTALLATION GUIDE TRIAD ONE SINGLE ONE HIGHRESOLUTION STREAMING AMPLIFIER

TRIAD INSTALLATION GUIDE TRIAD ONE SINGLE …api.yatun.cz/docs/Y002162/dokumentace/Installation Guide...TRIAD INSTALLATION GUIDE TRIAD ONE SINGLE ONE HIGHRESOLUTION STREAMING AMPLIFIER

Documents
AIGA Triad NC State of the Chapter 2013-2014 Presentation

AIGA Triad NC State of the Chapter 2013-2014 Presentation

Design
Athlete Triad

Athlete Triad

Documents