| Although the term 'computer security' is used a lot, the | | | | the fact that users can only access the resources and |
| content of a computer is actually vulnerable to only a | | | | services they are entitled to, but also to the fact that |
| few risks unless the computer is connected to others | | | | they can't be denied to access the resources they |
| on a network. As the use of computer networks | | | | legitimately expect. Nonrepudiation means that a |
| (especially the Internet) has increased dramatically | | | | person who sends a message cannot deny he sent it |
| during the past few years, the term computer security | | | | and vice versa. |
| is now used to describe issues referring to the | | | | In addition to these technical aspects, the concept of |
| networked use of computers and their resources. | | | | computer security is very large. Computer security's |
| The major technical areas of computer security are | | | | roots are drawn from disciplines like ethics and risk |
| confidentiality, integrity and authentication/availability. | | | | analysis and the major topics that are concerning it are |
| - Confidentiality, also known as secrecy or privacy, | | | | computer crime (tries to prevent, detect and remedy |
| means that the information you own cannot be | | | | attacks) and identity/anonymity in cyberspace. |
| accessed by unauthorized parties. Breaches of | | | | Although confidentiality, integrity and authenticity are the |
| confidentiality range from the embarrassing to the | | | | most important things when it comes to computer |
| disastrous. | | | | security in general, for everyday internet users, privacy |
| - Integrity means that your information is protected | | | | is the most important one, because many people think |
| against unauthorized changes that are undetectable to | | | | that they have nothing to hide or the information they |
| authorized users. The integrity of databases and other | | | | give doesn't seem sensitive when they register with an |
| resources are usually compromised through hacking. | | | | internet service/site. |
| - Authentication means that an user is who he claims | | | | But remember that, on the internet, information is very |
| to be. | | | | easily shared among companies and small pieces of |
| - Availability means that the resources are accessible | | | | related information from different sources can be |
| by authorized parties. Examples of availability attacks | | | | linked together to form something alot more complex |
| are the 'denial of service' attacks. | | | | about a person. Because of this, nowadays, the ability |
| Other important things that the computer security | | | | to maintain control over what information is collected |
| professionals are concerned about are access control | | | | about them, who may use it and how it can be used is |
| and nonrepudiation. Access control refer not only to | | | | extremely important. |