| Information security refers to all levels of | | | | control decreases the computer's attack via |
| cyber security. Information storage is of | | | | static rules and decisions. It acts as the |
| primary importance for corporations, states | | | | last defense technology and is helpful in the |
| and individuals as users of the Internet. | | | | space that reduces the number of threats when |
| Information cyber security is aimed at | | | | other defense tools do not act. For instance, |
| securing data. Corporations, states and | | | | a static environment can have limited program |
| individuals implement security policies, | | | | control regulations. |
| plans and strategies in order to prevent a | | | | |
| cyber attack and keep the information safe. | | | | The usage of application compliance refers to |
| Information cyber security differs from | | | | another developing area of application |
| national and corporate security as it has the | | | | control technology. It gives the chance 'to |
| only purpose - maintaining the information | | | | apply a corporate policy on application |
| and its security. The information security | | | | compliance, operating system level and |
| strategy is a part of a corporation's | | | | peer-to-peer applications before network |
| strategic planning, a part of the security | | | | access is given'. Enforcing this application |
| tools used by an individual. The strategy | | | | model makes the system state and the whole |
| serves as a plan of actions for implementing | | | | network space enhanced. Thus, application |
| and maintaining the security level. The | | | | control tools are like firewall technology |
| strategy denotes the information security | | | | based on the possibility to find a threat by |
| program and contains activities and processes | | | | applying necessary regulations. Application |
| that are required for effective work and data | | | | control is a necessary tool in a |
| storage. Information cyber security strategic | | | | multi-layered computer protection system, |
| plan includes the protection of data | | | | however, it is not recommended to apply it as |
| considering the operating conditions, culture | | | | a single defense technology of a dynamic |
| and mission of a corporation. | | | | system. |
| | | | |
| Information security policy is a collection | | | | Network security is a primary issue for every |
| of major principles of a corporation that | | | | company, organization or individual. There |
| establishes the limits of information usage. | | | | exist various types and levels of network |
| Some corporations have a strict policy | | | | attacks. The main differences between |
| concerning collecting data by its employees. | | | | national, corporate and information cyber |
| They prohibit opening and copying any files | | | | security lie in the level of network security |
| on a working computer in order to protect the | | | | and attack prevention tools applied. The |
| organization from any kind of threat. | | | | national data requires the highest possible |
| Moreover, there exists a security control, | | | | level of network security. The corporation |
| such as separation of duties, access control, | | | | has to use a multilayered approach in order |
| authentification and authorization, etc. | | | | to protect the information located on the |
| | | | computer from network attacks. The level of |
| Application control covers the protection | | | | information security depends on an |
| tools created to prevent network attacks on | | | | organization, state or individual. Thus, the |
| the computer. Application control tools | | | | level of network security is defined |
| protect computers from network attacks during | | | | according to this principle. |
| all the stages of an attack. Application | | | | |