Components of an information system, Computer Network Security

Assignment Help:

COMPONENTS OF AN INFORMATION SYSTEM

The components of an information system are software, data, hardware, people, procedures and Networks. These 6 components are critical to enable information to be input, then processed, output and finally stored. Each of these components of information system has its own weakness and strength.

Software


The software components of information system are consisting of applications, operating system and utility programs. This software is the most difficult to information system component to secure. Unfortunately, Software is at root of all the common computer security problems. If your software does not behave properly, a number of diverse sorts of problems can crop up: availability, reliability, safety, and security. The extra twist in security situation is that a bad guy is actively trying to make your software misbehave. This makes security certainly a tricky proposition.

Hardware

Security should be intertwined with every part of the system; the hardware is no exception. The interaction between software and hardware must be carefully planned. While doing so, the security of the whole system is strengthened. Hardware Security Module (abbreviated as HSM) is a physical device in form of a plug-in card or an external security device which can be attached to general purpose computer and servers.

The goals of an HSM are the:

a) Secure generation,
b) Secure storage, and
c) The use of cryptographic and data material which is sensitive.

HSMs provide logical and physical protection both of these materials from non- authorized use and potential adversaries. Several HSM systems have means to securely backup the keys they handle either in a wrapped form by means of the computer’s operating system or externally using a smartcard or some of the other security token. HSMs should never allow secrets exportation in the plaintext form, even when migrating between HSMs and performing the backup operations

Data Security

Data stored, processed, and transmitted through computer system should be protected. Data is the valuable asset possessed by an organization and it is the key target of intentional attacks.

People

People are the critical link in the information security program. Though often overlooked in computer security considerations, people have always acted as a thread to information security. Unless policy, training, education, awareness and technology are properly employed to prevent people from accidentally or intentionally damaging or losing the information, they will remain the weak link. Social network engineering can prey on potential to cut corners and the commonplace nature of human error. It can be used to manipulate actions of people to obtain access information about the system. It is imperative that managers continuously recognize the important role that people play in information security program

Procedures

Procedures are written instructions for accomplishing the specific task. When unauthorized user obtains an organization’s procedures, this poses a threat to integrity of the information. Procedures are information in their rights. Thus, knowledge of procedure, as with all critical information should be disseminated among the members of organization only on a need to know basis.

Networks

The IS component which created much of the requirement for the increased computer and information security is networking. When information systems are linked to each other to form the local area network (LAN), and these LAN’s, and these LAN’s are connected to the other networks like the Internet, new security challenges emerges rapidly.


Related Discussions:- Components of an information system

Future threats to network security and planning for those th, I need a help...

I need a help on how to write good assignment on the above topic

Elliptic Curves, #questioAn elliptic curve y^2=x^3+ax+b(mod29) includes poi...

#questioAn elliptic curve y^2=x^3+ax+b(mod29) includes points P=(7, 15) and Q=(16, 13) a)Determine the equation of the crve b) Determine all values of x for which there is no point

What is information-information security, What is information Informatio...

What is information Information comprises the meanings and interpretations which people place upon the facts, or data. The value of information springs from the ways it can be i

Packets and frames, PACKETS: Packet is a generic word that define to sma...

PACKETS: Packet is a generic word that define to small code of data. Packet have different format. Each hardware needs different packet format.  FRAME: A hardware frame or

Attackers motives behind the cyber attack, Attacker's Motives behind the Cy...

Attacker's Motives behind the Cyber Attack Before adapting the necessary measures to deal with the problem, understanding and evaluating the blogger's psyche and his motivation

Elements of cryptosystems-cryptography, Elements of Cryptosystems Crypto...

Elements of Cryptosystems Cryptosystems is characteristically made up of algorithms, data handling techniques, and procedures which are combined in multiple ways to ensure confi

Pinging a web server, Ask quIf you are pinging a web server from a user’s c...

Ask quIf you are pinging a web server from a user’s client PC, how might the statistical information provided by ping be useful to you?estion #Minimum 100 words accepted#

Ip address, How to find an ip address?

How to find an ip address?

Why is this setup not secure, Question: a) You are using Active Directo...

Question: a) You are using Active Directory Users under Windows Server 2003 and Computers to configure user objects in your domain, and you are able to change the address and

Processing an incoming arp message, PROCESSING AN INCOMING ARP MESSAGE ...

PROCESSING AN INCOMING ARP MESSAGE When an ARP message reaches, the protocol specifies that the receiver must operate two basic steps. First the receiver finds the sender's add

Write Your Message!

Captcha
Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd