Chapter 11 Computers and Society, Security, Privacy, and Ethics



Similar documents
Chapter 11 Manage Computing Securely, Safely and Ethically. Discovering Computers Your Interactive Guide to the Digital World

Computers and Society: Security and Privacy

Chapter 12 Objectives. Chapter 12 Computers and Society: Security and Privacy

Part I: Ethics. Moral guidelines that govern use of computers and information systems. Unauthorized use of computer systems

10- Assume you open your credit card bill and see several large unauthorized charges unfortunately you may have been the victim of (identity theft)

ITSC Training Courses Student IT Competence Programme SIIS1 Information Security

Network Security and the Small Business

E-commerce. Security. Learning objectives. Internet Security Issues: Overview. Managing Risk-1. Managing Risk-2. Computer Security Classifications

COB 302 Management Information System (Lesson 8)

Computer Viruses: How to Avoid Infection

Online Security Awareness - UAE Exchange - Foreign Exchange Send Money UAE Exchange

CHAPTER 10: COMPUTER SECURITY AND RISKS

PC Security and Maintenance

2. From a control perspective, the PRIMARY objective of classifying information assets is to:

Content Teaching Academy at James Madison University

Security+ Guide to Network Security Fundamentals, Third Edition. Chapter 2 Systems Threats and Risks

Cyber Security Awareness

ensure prompt restart of critical applications and business activities in a timely manner following an emergency or disaster

4. Identify the security measures provided by Microsoft Office Access. 5. Identify the methods for securing a DBMS on the Web.

TEMPLE UNIVERSITY POLICIES AND PROCEDURES MANUAL


9. Information Assurance and Security, Protecting Information Resources. Janeela Maraj. Tutorial 9 21/11/2014 INFO 1500

OCT Training & Technology Solutions Training@qc.cuny.edu (718)

Computer Security Maintenance Information and Self-Check Activities

PROTECT YOUR COMPUTER AND YOUR PRIVACY!

Infocomm Sec rity is incomplete without U Be aware,

Cyber Security Awareness

Technology in Action. Alan Evans Kendall Martin Mary Anne Poatsy. Eleventh Edition. Copyright 2015 Pearson Education, Inc.

The Information Security Problem

Chapter 15: Computer Security and Privacy

Chapter 8: Security Measures Test your knowledge

COMPUTER-INTERNET SECURITY. How am I vulnerable?

Contents. McAfee Internet Security 3

When you listen to the news, you hear about many different forms of computer infection(s). The most common are:

Section 12 MUST BE COMPLETED BY: 4/22

WEB SECURITY. Oriana Kondakciu Software Engineering 4C03 Project

HIPAA Security COMPLIANCE Checklist For Employers

NOS for IT User and Application Specialist. IT Security (ESKITU04) November 2014 V1.0

(Self-Study) Identify How to Protect Your Network Against Viruses

FBLA Cyber Security aligned with Common Core FBLA: Cyber Security RST RST RST RST WHST WHST

Secure Your Information and Communication Technology Devices

Rajan R. Pant Controller Office of Controller of Certification Ministry of Science & Technology rajan@cca.gov.np

Information Security Basic Concepts

Lectures 9 Advanced Operating Systems Fundamental Security. Computer Systems Administration TE2003

Data Security 2. Implement Network Controls

Spyware. Michael Glenn Technology Management 2004 Qwest Communications International Inc.

Introduction to Computer Security Table of Contents

What are Viruses, Trojans, Worms & Spyware:

Decryption. Palo Alto Networks. PAN-OS Administrator s Guide Version 6.0. Copyright Palo Alto Networks

BE SAFE ONLINE: Lesson Plan

Security Policy JUNE 1, SalesNOW. Security Policy v v

BCS IT User Syllabus IT Security for Users Level 2. Version 1.0

Internet Security. For Home Users

CBI s Corporate Internet Banking Inquiry Services gives you the ability to view account details and transactions anytime, anywhere.

Client Guide for Symantec Endpoint Protection and Symantec Network Access Control

HP ProtectTools Embedded Security Guide

Information Security

Technical Safeguards is the third area of safeguard defined by the HIPAA Security Rule. The technical safeguards are intended to create policies and

The Practice of Internal Controls. Cornell Municipal Clerks School July 16, 2014

Cyber Security: Beginners Guide to Firewalls

HIPAA Security. assistance with implementation of the. security standards. This series aims to

How to stay safe online

Secure and Safe Computing Primer Examples of Desktop and Laptop standards and guidelines

ViRobot Desktop 5.5. User s Guide

SUBJECT: SECURITY OF ELECTRONIC MEDICAL RECORDS COMPLIANCE WITH THE HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA)

General tips for increasing the security of using First Investment Bank's internet banking

Airtel PC Secure Trouble Shooting Guide

References NYS Office of Cyber Security and Critical Infrastructure Coordination Best Practices and Assessment Tools for the Household

Network Security. Demo: Web browser

Alexander Nikov. 9. Information Assurance and Security, Protecting Information Resources. Learning Objectives. You re on Facebook? Watch Out!

Malicious Programs. CEN 448 Security and Internet Protocols Chapter 19 Malicious Software

Cyber Security Beginners Guide to Firewalls A Non-Technical Guide

Common Cyber Threats. Common cyber threats include:

DATABASE SECURITY, INTEGRITY AND RECOVERY

System Compatibility. Enhancements. Operating Systems. Hardware Requirements. Security

Server Protection Policy 1 1. Rationale 1.1. Compliance with this policy will help protect the privacy and integrity of data created by and relating

Information Security Policy September 2009 Newman University IT Services. Information Security Policy

E-Business, E-Commerce

Protecting your business from fraud

Chapter 8 Types of Utility Programs and Operating Systems. Discovering Computers Your Interactive Guide to the Digital World

Contact details For contacting ENISA or for general enquiries on information security awareness matters, please use the following details:

Client Guide for Symantec Endpoint Protection and Symantec Network Access Control

October Is National Cyber Security Awareness Month!

Step-by-Step Guide to Securing Windows XP Professional with Service Pack 2 in Small and Medium Businesses

Information Technology Security Policies

McAfee.com Personal Firewall

Certified Secure Computer User

Transcription:

Objectives Computers and Society, Security, Privacy, and Ethics Describe the the types of of computer security risks Identify ways to to safeguard against computer viruses, worms, and and Trojan horses Discuss techniques to to prevent unauthorized computer access and and use use Identify safeguards against hardware theft and and vandalism Explain the the ways software manufacturers protect against software piracy Define encryption and and explain why it it is is necessary Discuss the the types of of devices available that protect from system failure Explain the the options available for for backing up up computer resources Identify safeguards that protect against Internet security risks Recognize issues related to to information accuracy, rights, and and conduct Discuss issues surrounding information privacy Discuss ways to to prevent health-related disorders and and injuries due due to to computer use use Next Computer Security Risks What is a computer security risk? Action that causes loss of or damage to computer system What are viruses, worms, and Trojan horses? Virus is a potentially damaging computer program Can spread and damage files Worm copies itself repeatedly, using up resources and possibly shutting down computer or network Trojan horse hides within or looks like legitimate program until triggered Does not replicate itself on other computers Payload (destructive event) that is delivered when you open file, run infected program, or boot computer with infected disk in disk drive p. 568 Fig. 11-1 Next p. 569 Next How can a virus spread through an e-mail message? Step 1. Unscrupulous programmers create a virus program. They hide the virus in a Word document and attach the Word document to an e-mail message. Step 3a. Some users open the attachment and their computers become infected with the virus. Step 3b. Other users do not recognize the name of the sender of the e-mail message. These users do not open the e-mail message. Instead they delete the e-mail message. These users computers are not infected with the virus. Step 2. They use the Internet to send the e-mail message to thousands of users around the world. How can you protect your system from a macro virus? Set macro security level in applications that allow you to write macros At medium security level, warning displays that document contains macro Macros are instructions saved in an application, such as word processing or spreadsheet program p. 570 Fig. 11-2 Next p. 571 Fig. 11-3 Next 1

What is an antivirus program? Identifies and removes computer viruses Most also protect against worms and Trojan horses What is a virus signature? Specific pattern of virus code Also called virus definition Antivirus programs look for virus signatures p. 571 Fig. 11-4 Next p. 572 Fig. 11-5 Next How does an antivirus program inoculate a program file? Records information about program such as file size and Uses creation information date Attempts to detect if to remove virus tampers any detected with file virus Quarantines infected files that it Keeps file cannot in separate remove area of hard disk p. 572 Next What is a recovery disk? Removable disk that contains uninfected copy of key operating system commands that enables computer to restart Also called rescue disk Once computer restarts, antivirus program can attempt to repair damaged files p. 572 Next What are some tips for preventing virus, worm, and Trojan horse infections? Set the macro security in programs so you can enable or disable macros If the antivirus program flags an e-mail attachment as infected, delete the attachment immediately Install an antivirus program on all of your computers Check all downloaded programs for viruses, worms, or Trojan horses Never open an e-mail attachment unless you are expecting it and it is from a trusted source Install a personal firewall program then click Virus Hoaxes below p. 573 Next What is unauthorized access and how is it achieved? Use of a computer or network without permission Hackers typically break into computer by connecting to it and then logging in as a legitimate user Hacker, or cracker, is someone who tries to access a computer or network illegally p. 573 Next 2

What is a firewall? Security system consisting of hardware and/or software that prevents unauthorized network access What is a personal firewall? Program that protects personal computer and its data from unauthorized intrusions Monitors transmissions to and from computer Informs you of attempted intrusion p. 574 Fig. 11-7 Next p. 575 Fig. 11-8 Next What are other ways to protect your personal computer? Disable file and printer sharing on Internet connection Use online security service Web site that File and printer sharing evaluates computer turned off to check for Web and e-mail vulnerabilities How can companies protect against hackers? Intrusion detection software analyzes network traffic, assesses Access control defines who system vulnerabilities, and identifies can access computer and intrusions and suspicious behavior what actions they can take Audit trail records access attempts p. 575 Fig. 11-9 Next then click Intrusion Detection Software below p. 576 Next What is a user name? Unique combination of characters that identifies user Password is private combination of characters associated with the user name that allows access to computer resources How can you make your password more secure? Longer passwords provide greater security p. 576 Fig. 11-10 Next p. 577 Fig. 11-11 Next 3

What is a possessed object? Item that you must carry to gain access to computer or facility Often used with numeric password called personal identification number (PIN) What is a biometric device? Authenticates person s identity using personal characteristic Fingerprint, hand geometry, voice, signature, and iris p. 578 Fig. 11-12 Next p. 578 Fig. 11-13 Next What is a callback system? User connects to computer only after the computer calls that user back at a previously established telephone number Callback systems work best for users who regularly work at the same remote location, such as at home or branch office Some networks utilize callback systems as an access control method to authenticate remote or mobile users Hardware Theft and Vandalism What are hardware theft and hardware vandalism? Hardware theft is act of stealing computer equipment Cables sometimes used to lock equipment Some notebook computers use passwords, possessed objects, and biometrics as security methods For PDAs, you can passwordprotect the device Hardware vandalism is act of defacing or destroying computer equipment p. 579 Next p. 579 Fig. 11-14 Next Software Theft Software Theft What is software theft? Act of stealing or illegally copying software or intentionally erasing programs Software piracy is illegal duplication of copyrighted software What is a license agreement? Right to use software Single-user license agreement allows user to install software on one computer, make backup copy, and sell software after removing from computer then click Software Piracy below p. 580 Next p. 580 Fig. 11-15 Next 4

Software Theft What are some other safeguards against software theft? Product activation allows user to input product identification number online or by phone and receive unique installation identification number Information Theft What is encryption? Safeguards against information theft Process of converting plaintext (readable data) into ciphertext (unreadable characters) Encryption key (formula) often uses more than one method To read the data, the recipient must decrypt, or decipher, the data Business Software Alliance (BSA) promotes better understanding of software piracy problems then click Business Software Alliance below p. 581 Next click, Click Web Link then click Encryption below p. 582 Fig. 11-16 Next Information Theft What does an encrypted file look like? System Failure What is a system failure? Prolonged malfunction of computer Can cause loss of hardware, software, or data Noise unwanted electrical signal Caused by aging hardware, natural disasters, or electrical power disturbances Undervoltage drop in electrical supply Overvoltage or power surge significant increase in electrical power p. 583 Fig. 11-17 Next p. 584 Next System Failure What is a surge protector? Protects computer and equipment from electrical power disturbances Uninterruptible power supply (UPS) is surge protector that provides power during power loss Backing Up The Ultimate Safeguard What is a backup? Duplicate of file, program, or disk Three-generation Selective Full Full backup backup backup backup backup backup select all all files files in in computer select which which files files preserves to to back back up up three three copies copies of of important files files then click Uninterruptible Power Supply below p. 584 Figs. 11-18 11-19 Next In case of system failure or corrupted files, restore files by copying to original location p. 586 Next 5

Internet Security Risks What is a denial of service attack? Internet Security Risks How do Web browsers provide secure data transmission? Also called DoS attack Hacker uses unsuspecting computer, called zombie, to execute attack on other systems Many Web browsers use encryption Secure site is Web site that uses encryption to secure data Distributed DoS (DDoS) attack is more devastating DoS attack in which multiple computers attack multiple networks Computer Emergency Response Team Coordination Center (CERT/CC) assists with DDoS attacks Digital certificate is notice that guarantees Web site is legitimate then click Emergency Response Team Coordination Center below p. 587 Next p. 587 Next Internet Security Risks What is a certificate authority (CA)? Authorized person or company that issues and verifies digital certificates Users apply for digital certificate from CA Internet Security Risks What is Secure Sockets Layer (SSL)? Provides encryption of all data that passes between client and Internet server Web addresses beginning with https indicate secure connections p. 588 Fig. 11-20 Next p. 588 Fig. 11-21 Next Internet Security Risks What are methods for securing e-mail messages? Ethics and Society What are computer ethics? Moral guidelines that govern use of computers and information systems Pretty Good Privacy (PGP) is popular e-mail encryption program Digital signature is encrypted code attached to e-mail message to verify identity of sender Freeware for personal, noncommercial use click, Click Web Link from left navigation, then click PGP below p. 588 Next Unauthorized use of computers and networks Intellectual property rights rights to which creators are entitled for their work Software theft Codes of conduct Information accuracy Information privacy then click Intellectual Property Rights below p. 589 Next 6

Ethics and Society What is an IT code of conduct? Written guideline that helps determine whether computer action is ethical Employers can distribute to employees What is information privacy? Right of individuals and companies to restrict collection and use of information about them IT CODE OF CONDUCT Difficult to maintain today because data is stored online Employee monitoring is using computers to observe employee computer use Click to view video Legal for employers to use monitoring software programs p. 591 Fig. 11-24 Next p. 591 and 597 Next What are some ways to safeguard personal information? Fill in necessary information on rebate, warranty, and registration forms Avoid shopping club and buyers cards Inform merchants that you do not want them to distribute your personal information Limit the amount of information you provide to Web sites; fill in only required information Install a cookie manager to filter cookies Clear your history file when you are finished browsing Set up a free e-mail account; use this e-mail address for merchant forms Turn off file and print sharing on your Internet connection Install a personal firewall Sign up for e-mail filtering through your Internet service provider or use an antispam program, such as Brightmail Do not reply to spam for any reason Surf the Web anonymously with a program such as Freedom Web Secure or through an anonymous Web site such as Anonymizer.com What is an electronic profile? Data collected when you fill out form on Web Merchants sell your electronic profile Often you can specify whether you want personal information distributed p. 592 Next p. 592 Fig. 11-26 Next What is a cookie? User preferences How regularly you visit Web sites Small file on your computer that contains data about you Interests and browsing habits Some Web sites sell or trade information stored in your cookies Set browser to accept cookies, prompt you to accept cookies, or disable cookies then click Cookies below p. 593 Next How do cookies work? Step 1. When you type Web address of Web site in your browser window, browser program searches your hard disk for a cookie associated with Web site. Step 3. If Web site does not receive cookie information, and is expecting it, Web site creates an identification number for you in its database and sends that number to your browser. Browser in turn creates a cookie file based on that number and stores cookie file on your hard disk. Web site now can update information in cookie files whenever you access the site. Web server for www.company.com Unique ID Cookies Step 2. If browser finds a cookie, it sends information in cookie file to Web site. Unique ID Request Home Page p. 594 Fig. 11-27 Next 7

What is a cookie manager? Software program that selectively blocks cookies What are spyware and spam? Spyware is program placed on computer without user s knowledge Secretly collects information about user Spam is unsolicited e-mail message sent to many recipients p. 594 Fig. 11-28 Next p. 595 Fig. 11-29 Next How can you control spam? What privacy laws have been enacted? Service that blocks e-mail messages from designated sources E-mail filtering Collects spam in central location that you can view any time Attempts to remove spam Anti-spam program Sometimes removes valid e-mail messages p. 595 Next p. 596 Fig. 11-30 Next What privacy laws have been enacted? (cont d) What is content filtering? Process of restricting access to certain material Internet Content Rating Association (ICRA) provides rating system of Web content Web filtering software restricts access to specified sites p. 596 Fig. 11-30 Next then click Internet Content Rating Association below p. 597 Fig. 11-31 Next 8

Health Concerns of Computer Use What are some health concerns of computer use? Computer vision syndrome (CVS) eye and vision problems Repetitive strain injury (RSI) Computer addiction when computer consumes entire social life Carpal tunnel syndrome (CTS) inflammation of nerve that connects forearm to palm Tendonitis inflammation inflammation of tendon due to repeated motion Health Concerns of Computer Use What precautions can prevent tendonitis or carpal tunnel syndrome? Take frequent breaks during computer session Use wrist rest Exercise hands and arms Minimize number of times you switch between mouse and keyboard p. 598, 599, and 601 Next p. 599 Fig. 11-32 Next Health Concerns of Computer Use How can you ease eyestrain when working at the computer? Health Concerns of Computer Use What is ergonomics? Applied science devoted to comfort, efficiency, and safety in workplace keyboard height: 23 to 28 elbows at 90 and arms and hands parallel to floor adjustable backrest adjustable seat Click to view video adjustable height chair with 5 legs for stability p. 599 Fig. 11-33 Next p. 600 Fig. 11-34 feet flat on floor Next Health Concerns of Computer Use Summary of Computers and Society, Security, Privacy, and Ethics What is green computing? Reducing electricity and environmental waste while using computer Potential computer risks Safeguards that schools, business, and and individuals can can implement to to minimize these risks Internet security risks and and safeguards Ethical issues surrounding information accuracy, intellectual property rights, codes of of conduct, and and information privacy Computer-related health issues, their preventions, and and ways to to keep the the environment healthy then click Green Computing below p. 601 Fig. 11-35 Next Complete 9

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information