CIA Data Violation
CIA Data Violation
There is a need to keep information systems and the networks which carry the associated information or data secure. There are many names for these type of security mechanisms, ranging from information security to information assurance. The overriding set of principles are those of C I A (Confidentiality, Integrity, Availability), which are considered by many to be the tenets or principles of computer security.
Firstly Confidentiality prevents unauthorised disclosure of data items. That is only those who should have access to something will actually get that access. This means, not only reading but also viewing, printing, or simply knowing that a particular asset exists. Secondly Integrity prevents unauthorised modification. In this context, modification includes writing, changing status, deleting and creating. Finally, Availability means that data or assets are accessible to an authorised user at appropriate times. In other words, if users have legitimate access to a particular set of resources, that access should not be denied.
Furthermore, computer systems work in highly dynamic and distributed environments and require the protection mechanisms to prevent intentional or unintentional violation of security policies. Often the intruders are able to circumvent the access control mechanisms exploiting the application’s flaws. As an example, in many cases the intruders tend to hijack the control of privileged processes, such as the Daemon processes. A well known family of this kind of attack is called buffer overflow attack.
For more on tools and services to mitigate this threat, please visit the network security advisors at http://www.honeyjet.co.uk/GFI.html. There you will find an ever expanding database of security articles, tools, useful links and network security services.
Article Source:http://www.articlesbase.com/security-articles/cia-data-violation-1585458.html