CIA: Confidentiality, Integrity & Availability
Domains:
1. user domain
2. workstation domain
3. LAN domain
4. LAN-to-WAN domain
5. WAN domain *
6. System/Application Domain **
7. Remote Access Domain
*Common threats in WAN domain
1. Vulnerable to malicious attacks
2. Vulnerable to eavesdropping
3. Vulnerable to DoS (Denial of service) or DDoS (Distributed Denial of service) attack
4. Vulnerable to corruption of data & information
5. Insecure TCP/IP application
6. Trojans, worms & malicious software emailing from hackers/attackers
**Common threats in System/Application Domain
1. Unauthorised access to data centres, computer rooms & wiring closet
2. Difficult to manage server that require high availability
3. Corrupt or lost data
4. Server OS software vulnerability management
5. Security required by cloud computing virtual environment
沒有留言:
張貼留言