SECURITY MEASURE

Definition of security measures:

The precautionary measures taken toward possible danger or damage.

TYPES OF SECURITY MEASURE

DATA BACKUP

The backup system is needed to backup all data and application in the computer. With the backup system, data can be recovered in case an emergency.

CRYPHOGRAPHY

The process of hiding information by altering the actual information into different representation for sample an APA can be written as 1?X.

ANTIVIRUS

Antivirus is a program that protects a computer against viruses by identifying and removing any computer viruses found.It will identify, prevent and eliminate computer viruses and other malicious software.Examples of antivirus are VirusScan, Norton AntiVirus, Trend Micro PC-cillin, and Doctor Solomon.

ANTI-SPYWARE

Anti-spyware software is a program that detects, quarantines and removes spyware to prevent them from getting into your computer.Examples of anti-spyware software are Lavasoft Ad-Aware SE Personal, PC Health Plan, and Malware Scanner.

FIREWALL 

A firewall is hardware or software that protects a network’s resources from instrusion by users on another network such as internet.A firewall restricts information that comes to your computer from other computers.It gives you more control over the data on your computer and provides a defense against people or programs that try to connect to your computer without invitation. 

HUMAN ASPECTS

Measure that can prevent from theft are by using locks, smart-card, or password.Prevent portability by restricting the hardware from being moved. Detect and guard all exits and record any hardware transported.Example of human aspects are Organisation Self Awereness, Organisation User Self Awereness, Individual User Self Awereness.

BIOMETRIC

BIOMETRIC DEVICES

Biometric is the technology of authenticating a person’s identity by verifying a personal charactristic.Biometric devices grant users access to programs, systems, or rooms by analyzing some biometric identifier.

COMPUTER SECURITY RISKS

Definition of computer security risk:

Any event or action that could cause a loss of or damage to computer hardware, software, data, information or processing capability.

TYPES OF COMPUTER SECURITY THREATS AND RISKS

1. Trojan. Trojan is one of the most complicated threats among all. Most of the popular banking threats come from the Trojan family such as Zeus and SpyEye. It has the ability to hide itself from antivirus detection and steal important banking data to compromise your bank account. If the Trojan is really powerful, it can take over your entire security system as well. As a result, a Trojan can cause many types of damage starting from your own computer to your online account.

2. Virus. Looking at the technology 10 years back, Virus is something really popular. It is a malicious program where it replicates itself and aim to only destroy a computer. The ultimate goal of a virus is to ensure that the victim’s computer will never be able to operate properly or even at all. It is not so popular today because Malware today is designed to earn money over destruction. As a result, Virus is only available for people who want to use it for some sort of revenge purpose.

3. Worms. One of the most harmless threats where it is program designed only to spread. It does not alter your system to cause you to have a nightmare with your computer, but it can spread from one computer to another computer within a network or even the internet. The computer security risk here is, it will use up your computer hard disk space due to the replication and took up most of your bandwidth due to the spread.

4. Spyware. Is a Malware which is designed to spy on the victim’s computer. If you are infected with it, probably your daily activity or certain activity will be spied by the spyware and it will find itself a way to contact the host of this malware. Mostly, the use of this spyware is to know what your daily activity is so that the attacker can make use of your information. Such as if you browse on sex toys for a week every day, the attacker will try to come out with a sex toy scam to cheat on your money.

5. Scareware. Scareware is something that plant into your system and immediately inform you that you have hundreds of infections which you don’t have. The idea here is to trick you into purchasing a bogus anti-malware where it claims to remove those threats. It is all about cheating your money but the approach is a little different here because it scares you so that you will buy.

6. Keylogger. Something that keeps a record of every keystroke you made on your keyboard. Keylogger is a very powerful threat to steal people’s login credential such as username and password. It is also usually a sub-function of a powerful Trojan.

7. Adware. Is a form of threat where your computer will start popping out a lot of advertisement. It can be from non-adult materials to adult materials because any ads will make the host some money. It is not really harmful threat but can be pretty annoying.

8. Backdoor. Backdoor is not really a Malware, but it is a form of method where once a system is vulnerable to this method, attacker will be able to bypass all the regular authentication service. It is usually installed before any virus or Trojan infection because having a backdoor installed will ease the transfer effort of those threats.

9. Wabbits. Is another a self-replicating threat but it does not work like a Virus or Worms. It does not harm your system like a Virus and it does not replicate via your LAN network like a Worms. An example of Wabbit’s attack is the fork bomb, a form of DDoS attack.

10. Exploit. Exploit is a form of software which is programmed specifically to attack certain vulnerability. For instance if your web browser is vulnerable to some out-dated vulnerable flash plugin, an exploit will work only on your web browser and plugin. The way to avoid hitting into exploit is to always patch your stuff because software patches are there to fix vulnerabilities.

[How to remove virus]

11. Botnet. Botnet is something which is installed by a BotMaster to take control of all the computer bots via the Botnet infection. It mostly infects through drive-by downloads or even Trojan infection. The result of this threat is the victim’s computer, which is the bot will be used for a large scale attack like DDoS.

12. Dialer. This threat is no longer popular today but looking at the technology 10 years back or more where we still access the internet using a dial-up modem, it is quite a popular threat. What it does is it will make use of your internet modem to dial international numbers which are pretty costly. Today, this type of threat is more popular on Android because it can make use of the phone call to send SMS to premium numbers.

13. Dropper. Looking at the name, a Dropper is designed to drop into a computer and install something useful to the attacker such as Malware or Backdoor. There are two types of Dropper where one is to immediately drop and install to avoid Antivirus detection. Another type of Dropper is it will only drop a small file where this small file will auto trigger a download process to download the Malware.

14. Fake AV. Fake Antivirus threat is a very popular threat among Mac user about 10 months ago. Due to the reason that Mac user seldom faces a virus infection, scaring them with message which tells them that their computer is infected with virus is pretty useful where it results them into purchasing a bogus antivirus which does nothing.

15. Phishing. A fake website which is designed to look almost like the actual website is a form of phishing attack. The idea of this attack is to trick the user into entering their username and password into the fake login form which serves the purpose of stealing the identity of the victim. Every form sent out from the phishing site will not go to the actual server, but the attacker controlled server.

16. Cookies.Cookies is not really a Malware. It is just something used by most websites to store something into your computer. It is here because it has the ability to store things into your computer and track your activities within the site. If you really don’t like the existence of cookies, you can choose to reject using cookies for some of the sites which you do not know.

17. Bluesnarfing. Bluesnarfing  is all about having an unauthorized access to a specific mobile phones, laptop, or PDA via Bluetooth connection. By having such unauthorized access, personal stuff such as photos, calender, contacts and SMS will all be revealed and probably even stolen.

18. Bluejacking. Bluejacking is also uses the Bluetooth technology but it is not as serious as Bluesnarfing. What it does is it will connect to your Bluetooth device and send some message to another Bluetooth device. It is not something damaging to your privacy or device system compared to the Bluesnarfing threat.

19. DDoS. One of the most famous thing done by Anonymous, which is to send millions of traffic to a single server to cause the system to down with certain security feature disable so that they can do their data stealing. This kind of trick which is to send a lot of traffic to a machine is known as Distributed Denial of Service, also known as DDoS.

[10 Symptoms of a Computer Infected with Malware]

20. Boot Sector Virus. It is a virus that places its own codes into computer DOS boot sector or also known as the Master Boot Record. It will only start if there it is injected during the boot up period where the damage is high but difficult to infect. All the victim need to do if they realize there is a boot sector virus is to remove all the bootable drive so that this particular virus will not be able to boot.

21. Browser Hijackers. A browser hijacker uses the Trojan Malware to take control of the victim’s web browsing session. It is extremely dangerous especially when the victim is trying to send some money via online banking because that is the best time for the hijacker to alter the destination of the bank account and even amount.

22. Chain Letters. When I was small, I got tricked with chain letters written by my friend. But chain letters does not stop at that era. It brings to adult life as well where people like to send chain letter such as Facebook account delete letter. It usually says if you don’t forward that particular message or email to 20 people or more, your account will be deleted and people really believe that.

23. Virus Document. Virus today can be spread through document file as well especially PDF documents. Last time, people will only advice you not to simply execute an EXE file but in today’s world with today’s technology, document file should also be avoided. It is best if you use an online virus scanner to scan first before opening any single file which you feel it is suspicious.

24. Mousetrapping. I am not too sure whether you had encountered a Mousetrapping Malware before where what it does is it will trap your web browser to a particular website only. If you try to type another website, it will automatically redirect you back. If you try clicking forward/backward of the navigation button, it will also redirect you back. If you try to close your browser and re-open it, it will set the homepage to that website and you can never get out of this threat unless you remove it.

25. Obfuscated Spam. To be really honest, obfuscated Spam is a spam mail. It is obfuscated in the way that it does not look like any spamming message so that it can trick the potential victim into clicking it. Spam mail today looks very genuine and if you are not careful, you might just fall for what they are offering.

26. Pharming. Pharming works more or less like phishing but it is a little tricky here. There are two types of pharming where one of it is DNS poisoning where your DNS is being compromised and all your traffic will be redirected to the attacker’s DNS. The other type of pharming is to edit your HOST file where even if you typed www.google.com on your web browser, it will still redirect you to another site. One thing similar is that both are equally dangerous.

27. Crimeware. Crimeware is a form of Malware where it takes control of your computer to commit a computer crime. Instead of the hacker himself committing the crime, it plants a Trojan or whatever the Malware is called to order you to commit a crime instead. This will make the hacker himself clean from whatever crime that he had done.

28. SQL Injection. SQL injection does not infect the end users directly. It is more towards infecting a website which is vulnerable to this attack. What it does is it will gain unauthorized access to the database and the attacker can retrieve all the valuable information stored in the database.

Netiquette

NETIQUETTE

       •Netiquette, or net etiquette, refers to etiquette on the Internet. 

       •Is the code of acceptable behaviours users should follow while on the Internet or online or cyberspace.

       •It is the conduct expected of individuals while online.

       •Rules for all aspects of the:

      ➶World Wide Web

       ➶E-mail 

      ➶Instant Messaging

      ➶Chat rooms

      ➶Newsgroups & message board.

      •Electronic communication lacks the facial expression, gestures and tone of voice to convey your meaning. It’s easy to misinterpret meaning of words.

        •Remember, when you communicate through cyberspace your words are written.

       •Chances are they're stored somewhere and they can come back and haunt you.•Any message you send could be saved or forwarded by its recipient. You have no control over where it goes.

      •When you enter a domain of cyberspace that's new to you, take a look around and spend a while listening to the chat or reading the archives.

     •Get a sense of how the people who are already there act, then go ahead and participate.

        •Don’t expect instant responses to all your questions and don't assume that all readers will agree with or care about your passionate arguments.

COMPUTER ETHICS AND SECURITY

 Definition of Computer Ethics:

➤The moral guidelines that govern the use of computers, mobile devices and information systems.

INTELLECTUAL PROPERTY 

                                     ⤸

\

INTERNET SERVICES

WORLD WIDE WEB (WWW)

• Consists of a worldwide collection of electronic documents.

E-MAIL

• Not real-time internet communication.
• Consists simple text (attachment such as graphics, audio, video clips).

INSTANT MESSAGING (IM)

• Real-time internet communication.
• exchange messages or file or join private chat.
• Eg: Yahoo Messenger

VOICE OVER INTERNET PROTOCOL (VoIP)

• Enables users to speak to other user over the internet.

MESSAGE BOARD

• Easier to use.
• Does not require a newsreader.

FILE TRANSFER PROTOCOL (FTP)

• Software use to upload and download file on the internet.

TYPES OF WEBSITE

1. Portal
2. Business
3. Blog
4. Wiki
5. Online Social Network

Explanation about web browser, web adress,web page navigation, web searching

WEB BROWSER

•A Web browser, or browser, is application software that allows users to access and view Web pages.

Example of web browser:
-Firefox
-Internet Explorer
-Opera
-Safari
-Google Chrome

The component of Web address are
-Protocol
-Domain name
-Path
-Web page name

Picture 1:

Picture 2:

WEB PAGE NAVIGATION

There are two ways of navigation.

1. HYPERTEXT : links in textbased documents
2. HYPERMEDIA : combines text-based links with graphic, audio, and video links.

Picture 1:

Picture 2:

WEB SEARCHING

-There are two different ways of information searching.


      1.SEARCH ENGINE : find information related to a specific topic.

-Result of search is called hits .

HITS : any web site name thet is listed as the result of a search.
-Result from the search engine can be in the form of :

• web pages
• articles
• images
• audio
• video and etc.

Picture 1

      2.SUBJECT DIRECTORY : classifies web pages in an organized set of categories.

-Examples of search tools:

• AltaVista
• Yahoo!
• Google
• Excite

Picture 2

what is web browser ?
definition web browser  ?
what is web address ?
what is web page navigation ?
explanation about web page navigation .
what is difference between webpage,website, web server and search engine?

DIFFERENT TYPES OF INTERNET CONNECTION

DIAL UP CONNECTION

-internet connection over phone lines

-much slower than broadband

-generally avoided

example:

             1) Conventional Dail Up

picture 1

              2) Integrated Services Digital Network (ISDN)

picture 2

BROADBAND INTERNET CONNECTION

-always connected internet

-much faster than dial-up

-several different types

-example:

                1) Digital Subscriber Line (DSL)

picture 3

                2) Cable Internet Service/ Cable Modem

picture 4

               3) Fixed Wireless

picture 5

               4) Satellite Internet Services

picture 6

               5) WiFi

picture 7

               6) Fiber To The Premises (FTTP)

picture 8

               7) Cellular Radio Network

picture 9

INTERNET SERVICES PROVIDER

-Internet Service Provider: A company that provides Internet connections and services   to individuals and organizations.

- Access Provider: A business that provides individuals and organization access to the internet for free or for a fee.

-Example: 

picture 10

THE INTERNET ADDRESS

IP Address:

ØA number that uniquely identifies each computer or device connected to the Internet.

ØIP addresses are also referred to as IP numbers and Internet addresses.

ØIP address sometimes is called a dotted decimal number or dotted quad.

picture 11

IP Version

                      IPv4

picture 12

                     IPv6

picture 13

OVERVIEW OF THE INTERNET 

ADVANTAGES AND DISADVANTAGES OF INTERNET, INTRANET, AND EXTRANET

NETWORK TOPOLOGY

NETWORK TOPOLOGY

A network topology refers to the layout of the computers and devices in a communications network.

• It refers to the physical and logical layout of a network.

Physical topology: The arrangement of cabling is the physical topology.

Logical topology: The path that data travels between computers on a network is the logical topology.

TYPES OF NETWORK TOPOLOGY

1. STAR NETWORK 
2. BUS NETWORK
3. RING NETWORK

STAR NETWORK TOPOLOGY

Definition: All the computers and others devices on the network connect to a central device, thus forming a star.
Advantages :
👉If one devices fails, only that device is affected.
👉Devices can be added or removed from network with no discruption.
👉Easy to troubleshoot and isolate problem.
Disadvantages:
👉If the hub or a switch fails, the entire network will be inoperabled.
👉Requires more cables than most of the other topologies.
👉More expensive because of the cost of hub/switch.

BUS NETWORK TOPOLOGY

Definition: A bus network consists of a single central cable (backbone), to which all computers and other devices connect.

Advantages:

👉Inexpensive and easy to install.

👉Other devices ca be attached or detached without disturbing the network.

👉Failure of one device usually does not affect the rest of the network.

Disadvantages:

👉There might be disruption when computer or other devices are added or removed.

👉The break in the main cable(backbone) will prevent all systems from accessing the network.

👉It is difficult to identify the problem if the entire network Shut down.

Definition:On a ring network, a cable forms a closed loop (ring) with all computers and devices arranged along the ring.
Advantages:
👉Transmission of data is simple as packets travel in one direction only.

👉Cable faults are easily located, making troubleshooting easier.

👉All devices in ring topolgy share the network resources fairly.Disadvantages:
👉A failure in any cable or device breaks the loop and can take down entire network.
👉Data packets must pass through every computer, thus make it slower
👉More difficult to install than a bus network

NETWORK ARCHITECTURE

WHAT IS NETWORK ARCHITECTURE ?

The configuration of computers, devices and media on a network.

CATEGORIES OF NETWORK ARCHITECTURE

1. Peer-to-Peer network
2. Client/server network

PEER-TO-PEER NETWORK

•All computers on the network share any peripheral devices attached to any

 computer.

•Peer-to-peer networks are ideal for very small businesses and home users.

•Some operating systems, such as Windows, include a peer to-peer networking utility that

 allows users to set up a peer-to-peer network.

•Peers are both suppliers and consumers of resources.

•Each node is a computer on the network which acts and communicates with other

 peers to make a portion of their resources, such as processing power, disk storage or

 network bandwidth.

•Directly available to other network participants, without the need for central 

 coordination by servers or stable hosts.

CLIENT/SERVER NETWORK

•One or more computers act as a server, and the other computers on the network request      services from the server.
•Server, sometimes called a host computer, controls access to the hardware, software,
 and other resources on the network and provides a centralized storage area for programs,    data and information.
•The clients are other computers and mobile devices on the network that rely on the server  for its resources.
•For example, a server might store a database of customers. Clients on the network  (company employees) access the customer database on the server.
•Client/server architecture works when the client computer sends a resource or process  request to the server over the network connection, which is then processed and delivered  to the client.
•A server can manage several clients simultaneously, whereas one client can be connected  to several servers at a time, each providing a different set of services.
•The Internet is also based on client/server architecture where the Web server serves many  simultaneous users with Web page and or website data.

DIFFERENCES BETWEEN PEER-TO PEER AND CLIENT/SERVER NETWORK