Computer Security - Exam II

three elements of information system (IS) security

protects computer-based data from software-based and communication-based threats

protects the information systems that contain data and the people who use, operate, and maintain the systems and prevent any type of physical access or intrusion

protects the people and property within an entire area, facility, or building(s), and is usually required by laws

includes data processing and storage equipment, transmission and networking facilities, and offline storage media

the buildings and other structurs housing the system and network components

facilities that underpin the operation of the information system - includes electrical power, communication services, and environmental controls (heat, humidity, etc.)

humans involved in the control, maintenance, and use of the information systems

three categories of threats

categories of natural disasters

types of environmental threats

category that encompasses conditions in the environment that can damage or interrupt the service of information systems and the data they contain

category that encompases threats related to electrical power and electromanetic emission

types of technical threats

condition that occurs when the IS equipment receives less voltage than is required for normal operation - ex: dip in power supply, brownouts (prolonged), & outages

surge of voltage - damage is a function of intensity and duration

spurius signals that can endure through the filtering circuitry of the power supply and interfere with signals inside electronic devices, causing logical errors

electrical noise that can cause intermittent problems with the computer you are using - or high-intensity emissions from nearby commercial radio stations & microwave relay antennas

categories of human-caused physical threats

those without the proper authorization are allowed access to certain portions of a building or complex, and can lead to other threats

security threat that includes eavesdropping and wiretapping

threat that includes destruction of equipment and data

threat that includes improper use of resources by those who are authorized to use them, as well as use of resources by individuals not aurhorized to use the resources at all

PIV

includes components responsible for determining a particular PIV cardholder's access to a physical or logical resource

supports up to three-factor authentication:

• some confidence - use of card reader & PIN
• high confidence - adds biometric comparison of fingerprint
• very high confidence - adds official observer

CHUID

takes authentication to a new level and includes an expiration date and optional digital signature in addition to the typical card number/facility code encoded on most access control cards

authentication implemented by using a fingerprint or iris data object sent from the PIV card to the PACS

PACS

authentication mechanism that uses BIO authentication but also uses an attendant to supervise the use of the PIV card and submission of the PIN and the sample biometric by the cardholder

two-factor authentication that requires the cardholder to enter a PIN to unlock the card in order to successfully authenticate

an optional key that may be present on any PIV card used to authenticate the card and therefore its possessor - may be used on contactless or contact interface, and does not require PIN entry

authentication mechanisms

authentication done by a human guard - checking to see that the PIV card looks genuine and compares cardholder's facial features to those on the card, checks expiration, etc.

degrees of security and control for protected areas

an area of a facility that has no security interest

that portion of a restricted area usually near or surrounding a limited or exclusion area - restricted to personnel with a need for access

restricted area within close proximity of a security interest

a restricted area containing a security interest