User Account

All Pages

Logic bombs - attacks information security, Computer Network Security

Assignment Help:

Example 3: Logic bombs

In the year 2000, Timothy Lloyd was found responsible of causing $10 million and $12 million of damage to Omega Engineering, an American company specializing in the precision engineering for clients, comprising the US Navy and NASA. The Lloyd had been employed with Omega for eleven years, increasing to the post of system administrator, and was not only responsible for the day to day operation of the company’s computers but also for the process of disaster recovery.

In the year 1996, Lloyd became aware that he was to be sacked and wrote a logic bomb – a 6-line destructive program – which he installed on Omega’s servers. After ten days later, Lloyd was dismissed and his logic bomb exploded, destroying all the company contracts and proprietary software which was used by Omega’s manufacturing tools. Although Omega had a backup procedure, Lloyd’s account had allowed him to disable these recovery systems. The damage which was done by his logic bomb was permanent.

When the logic bomb exploded it wiped out information that was required for the company to operate. Due to the result of lost business, Omega was mandatory to lay off some 80 employees and found itself rewriting the software which had once given it a competitive edge over its rivals. In effect, which Lloyd managed to do, in most decisive manner possible, was to prevent the vital information which was being shared. Now we will define information security several ways. Some of them are stated below

Def1: Information security means protecting information and information systems from the unauthorized disclosure, access, disruption, modification, use, or destruction. The terms computer security, information security and information assurance, are often used interchangeably. These fields are related internally and share the common goals of protecting the integrity, confidentiality and availability of information; although, there are some subtle differences between them. These differences primarily lie in the approach to subject, methodologies used, and areas of concentration. Information security can be concerned with integrity, confidentiality, and availability of data regardless of the form the data may take: print, electronic, or other forms.

Def2: The protection of data against unauthorized access. Programs and data can be secured by using passwords and digital certificates to authorized users. However, passwords validate only that a correct number has been entered, not that it is the genuine person. Digital certificates and techniques which are biometric (fingerprints, voice, eyes, etc.) and authentication provide a more secure method. When a user has been authenticated, the sensitive data can be encrypted to prevent eavesdropping by using cryptography technique.

Related Discussions:- Logic bombs - attacks information security

Packet filtering firewall-dynamic packet filtering, Dynamic Packet Filterin...

Dynamic Packet Filtering Dynamic Packet Filtering is also referred to as stateful firewalling. Here the firewall maintains the status of connections as well. When a connection

Produce a pcap file from a wireshark capture, Question requires you to prod...

Question requires you to produce a pcap file from a Wireshark capture.  In addition, you must include a screen capture of Wireshark and some specific information regarding the fram

Gateways, Gateways They transfer packets among network machines that h...

Gateways They transfer packets among network machines that have different protocols (e.g. between a WAN and a LAN). They access a packet formatted for one protocol and change

Application-based ids, Application-Based IDS Application-based IDS (AppI...

Application-Based IDS Application-based IDS (AppIDS) is an advanced version of HIDS. It examines application for abnormal events. The ability to view encrypted data is the uniqu

Representation of a tcp header, (a) Figure is a representation of a TCP hea...

(a) Figure is a representation of a TCP header. For each of the fields lettered from A to G, state the name of the field and provide a brief explanation for the function of each fi

Cloud computing security infrastructure, i want to know about cloud computi...

i want to know about cloud computing server security infrastructure development process

Locality of reference , LOCALITY OF REFERENCE PRINCIPLE:  Principle of...

LOCALITY OF REFERENCE PRINCIPLE:  Principle of "Locality of Reference" use to predict computer interaction patterns. There are two patterns shown as follows: a) Spatial loca

Network intrusion system, In this work a network intrusion system (package)...

In this work a network intrusion system (package) must implement based on high interaction honeypots. There are two honeypots with different platforms (ubuntu and windows server 20

Categories of controls-risk management, Categories of Controls Controlli...

Categories of Controls Controlling risk through mitigation, avoidance or transference is accomplished by implementing controls. There are 4 effective approaches to select the co

The Security Systems Development Life Cycle (SecSDLCtle.., #Under what circ...

#Under what circumstances would the use of a SecSDLC be more appropriate than an SDLC?

Write Your Message!

Captcha
Order Assignment

Featured Services

Order Now

Popular Subjects

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +91-977-207-8620

Phone: +91-977-207-8620

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd