Superior Computer Security

Computer Security

admin — Fri, 06 Apr 2012 00:57:04 +0000

Computer Security is a branch of technology known as information security as applied to computers. Information security means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction. The objective of computer security varies and can include protection of information from theft or corruption, or the preservation of availability, as defined in the security policy.

Technological and managerial procedures applied to computer systems to ensure the availability, integrity and confidentiality of information managed by the computer system

Computer security imposes requirements on computers that are different from most system requirements because they often take the form of constraints on what computers are not supposed to do.

Typical approaches to improving computer security can include the following:

o Physically limit access to computers to only those who will not compromise security.
o Hardware mechanisms that impose rules on computer programs, thus avoiding depending on computer programs for computer security.
o Operating system mechanisms that impose rules on programs to avoid trusting computer programs.
o Programming strategies to make computer programs dependable and resist subversion.

Computer Security has three Layers:

o Hacking
o Cracking
o Phreaking

Hacking:

Unauthorized use or attempts to circumvent or bypass the security mechanisms of an information system or network.

Computer hacking always involves some degree of infringement on the privacy of others or damage to computer-based property such as files, web pages or software. The impact of computer hacking varies from simply being simply invasive and annoying to illegal.

Cracking:

The act of breaking into a computer system.
Software Cracking is the modification of software to remove protection methods: copy prevention, trial/demo version, serial number, hardware key, CD check or software annoyances like nag screens and adware.

The most common software crack is the modification of an application’s binary to cause or prevent a specific key branch in the program’s execution.

Phreaking:

The art and science of cracking the phone network.

Security by design:

The technologies of computer security are based on logic. There is no universal standard notion of what secure behavior is. “Security” is a concept that is unique to each situation. Security is extraneous to the function of a computer application, rather than ancillary to it, thus security necessarily imposes restrictions on the application’s behavior.

There are several approaches to security in computing; sometimes a combination of approaches is valid:

1. Trust all the software to abide by a security policy but the software is not trustworthy (this is computer insecurity).

2. Trust all the software to abide by a security policy and the software is validated as trustworthy (by tedious branch and path analysis for example).

3. Trust no software but enforce a security policy with mechanisms that are not trustworthy (again this is computer insecurity).

4. Trust no software but enforce a security policy with trustworthy mechanisms.

12 tips for computer security:

1. Update / patch ALL your software every now and then!

2. Check / adjust ALL your settings so they are safe, since they ARENT by default!

3. Use firewall, like ZoneAlarm to control what goes in and out from your computer!

4. Use good passwords: at least 13marks long, containing both letters and numbers. Remember to change your password every few months atleast and dont ever use the same password in two places!

5. Get a good antivirus program: NOD32, F-Secure or Norton Antivirus and keep it updated!

6. Don’t open or execute files that you are not 100% sure are absolutely safe nomatter where or how you get them.

7. Wipe your historyfiles (like cookies, internet history and temporary files, etc.), logs and personal files, with specific wiping program (like Eraser) instead of just deleting them.

8. Use encryption to enhance your privacy! Use encrypted email (like Hushmail or Ziplip), www-surfing and encrypt sensitive files on your computer (PGP).

9. When you are finished using some internet-based service like email, sign out of it rather than just closing your browser! Also, when you leave your computer, make sure that none of such programs or connections are left open that someone could abuse. In WindowsNT/2k/XP, press Windowskey+L to lock the workstation.

10. Don’t use public computers for anything you need to type in your logins, they usually have Trojan horses that capture your passwords.

11. Make backups and store them in safe place! Easiest way to do a total-backup is to make an “Image” of your harddrive or partition and store it on safe location, but floppies will usually be just fine for storing documents, etc.

12. Install and Use a Hardware Firewal

Internet Security

admin — Fri, 06 Apr 2012 00:10:54 +0000

As more computers become part of the world wide network thanks to high-speed internet connections, internet security is becoming an issue everyone needs to be concerned about. These malicious programs can do an endless array of bad things: Steal passwords, steal credit card numbers, send spam from your computer, use your computer to attack other computers and much more. Many people feel overwhelmed or lost by what they perceive to be a complex and daunting task, others ignore the issue entirely. Once you understand the threats and know a few basic concepts, the problem is simple.

Long gone are the days when simply being careful about clicking on a file or a link was enough to protect you. Once this was only a problem for people who traded illegal software, nowadays viruses and trojans regularly infect systems with no input from the user. Attacks are now cross platform and cross browser, using security holes present in helper applications. A trojan can target user regardless of browser or operating system.

Antivirus software is a good first step but has limited effectiveness. You want to keep the criminal out of your house not tackle him once he is in your living room. The number one way to prevent infections is to make sure every piece of software on your system is up to date and keeping itself up to date. Don’t ignore messages telling you that a piece of software needs to be updated. The vast majority of updates are to close known security holes, these holes almost always have active exploits taking advantage of them.

Another security step that is ignored even by most security professionals is using secure DNS servers. DNS servers are used to direct traffic to the correct web addresses. DNS servers can protect you in a number of ways. First, they can scan for and block sites for you; preventing your computer from even being able to get to a site trying to compromise your system. Second, just like anything else DNS servers can have security holes; many ISPs are lax about applying security patches to their DNS servers. Lastly, changing your default DNS server may make it harder for a virus to change it for you; many viruses will direct your computer to their own DNS server taking over all your internet activity. There are many free and secure DNS servers out there and setting one up on your system takes seconds.

How to Improve Network Security

admin — Fri, 06 Apr 2012 00:09:02 +0000

Naturally, with the growing benefits of technology, the Internet and network configurations comes the growing danger of security breaches, identity theft and cyber crimes. Unfortunately, electronic theft is becoming a greater danger to many businesses across the globe, so how do business owners keep their data safe and secure? One way to keep sensitive information secure is to constantly improve network security and to stay ahead of the game.

Every day we hear that computer viruses, hacker, and other security breaches have found new ways to steal identities, financial records and other information we thought previously secure. Because of the increase in such cyber crimes, data protection laws have tightened and the punishments hardened. With this comes the need for all businesses to take data security very seriously.

It is extremely important to improve network security for your business on a regular basis. Aside from encrypted pages and passwords, there is a multitude of ways to improve network security for your business which include firewalls and other infrastructure protective measures. Education, information and action are key elements to improving any network’s security.

Before a business can adequately protect its network, it is important to understand that there is no such thing as a completely secure system, as technology is always changing. However, to stay one step ahead and keep the network secure, business owners and their IT department should learn and understand any and all risks associated with security standards and network systems.

Network security can always be improved. After understanding the risks involved in any network, network operators should be educated and informed. It is important for network operators to keep an eye out for operational anomalies. Any anomaly is usually an indication that something is wrong and there may be a security breach. In addition to educating operators, it is important for operators to know and understand the risks associated with your existing security standards. Risk mitigation is essential in improving network security.

Organisation is also crucial to improving network security. It is an excellent idea to employ both control system engineers and IT specialists to work together to maintain the network. If you are unable to employ individuals, you may outsource the positions. The team should schedule risk analyses on a regular basis, implement change control and monitor the network regularly. Additionally, create policies and procedures that describe and outline risk mitigation, alert vectors and actions to be taken if and when any type of security breach is detected is smart. Furthermore, your operating staff should know exactly who to contact in the case of a breach or attack on the security of the network.

Following industry guidance and suggestions is also a good way to improve network security. One of these suggestions is to create a single point failure matrix, which is often critical during possible threats or attacks. The network security industry is always announcing new ways to secure and protect networks, configurations and information.

Staying informed has never been more important than when a business needs to improve network security. Though integrating the latest technologies and protections for your network is smart, regular security audits, education, and monitoring are all key ways to improve network security.