Distributed Networks Home
DBWebApplications eWebProgrammer
prev next prev next
  Course navigation
 
Lesson 9
Security Standards Conclusion
   
This module discussed the concept of security and demonstrated several security threats.
You also learned about the categories of resources that need protection, the attributes of an effective security system, and the types of people who make security systems necessary.

Now that you have completed this module, you should be able to:
  1. Describe security and security statistics
  2. Define risk analysis
  3. List the attributes of an effective security system
  4. Describe security standards in current use
  5. Plan a security policy for your business
  6. Increase security effectiveness by establishing organizational training
Key terms and concepts
  1. Back door: An intentional hole in a firewall or security apparatus that allows access around security measures.
  2. Brute-force attack: An attempt by a hacker to defeat authentication by obtaining a legitimate user' s password.
  3. Buffer overflow: A popular bug-based attack that works by sending more data than the target system is intended to receive at one time.
  4. Bug: A computer program or hardware error that causes recurring malfunctions.
  5. Computer Emergency Response Team (CERT): An organization devoted to dealing with computer-related security issues. Based at the Carnegie Mellon University, CERT is a part of the Internet Society which establishes the protocols that govern the Internet. (http://www.cert.org)
  6. Computer Security Division (www.itl.nist.gov): One of eight divisions within NIST\'s Information Technology Laboratory. The mission of the Division is to enable organizations and individuals to use information technology with the assurance and trust that the confidentiality, integrity, reliability and availability of information resources are protected.
  7. Denial-of-service: An attempt by attackers to prevent legitimate users of a service from using that service by flooding a network, or by disrupting connections or services.
  8. Dictionary program: A program specifically written to break into a password-protected system. A dictionary program has a relatively large list of common password names that the program repeatedly uses to gain access.
  9. Front-door attack
  10. Hacker
  11. Internet Service Provider (ISP)
  12. IP spoofing
  13. Open network
  14. Password cracking
  15. Password sniffing
  16. Security system
  17. Social engineering
  18. Sniffer
  19. Spoofing
  20. System snooping: The action of a hacker who enters a computer network and begins mapping the contents of the system.
  21. Trojan
  22. Virus
Security Basics - Quiz
Click the Quiz link below to take a multiple-choice quiz with respect to the material that was covered in this module.
Security Basics - Quiz
  Course navigation