Ctrl + F is the shortcut in your browser or operating system that allows you to find words or questions quickly.
Ctrl + Tab to move to the next tab to the right and Ctrl + Shift + Tab to move to the next tab to the left.
On a phone or tablet, tap the menu icon in the upper-right corner of the window; Select "Find in Page" to search a question.
Share UsSharing is Caring
It's the biggest motivation to help us to make the site better by sharing this to your friends or classmates.
Are detail-oriented, technology savvy and committed to securing accurate data that will love spreadsheets, databases and enforcing security policies.
Assure that the identity of some party is remain anonymous
RSA stand for
Outline of what the organization considers to be the appropriate / inappropriate use of company resources.
study of encryption principles/methods
confidentiality is to prevent unauthorized disclosure of information to third parties. This is important in a number of areas including the disclosure of personal information such as medical, financial, academic, and criminal records.
RA 10175 punishes content-related offenses such as cybersex, child pornography and libel which may be committed through a computer system. It also penalizes unsolicited commercial communication or content that advertises or sells products or services.
DES exhibits strong __.
Prevent information from being exposed to unintended party
Flaws in system and/or networks that could be exploited to violate the security policy of system or network
the field of both cryptography and cryptanalysis
info used in cipher known only to sender/receiver
Often referred to as the secret-key encryption, it uses a common key and the same cryptographic algorithm to scramble and unscramble the message. One problem with symmetric encryption is the security of the keys which must be passed from the sender to the receiver.
Child pornography via computer carries a penalty one degree higher than that provided by RA 9775, or the Anti-Child Pornography Act of 2009. Under RA 9775, those who produce, disseminate or publish child pornography will be fined from P50,000 to P5 million, and slapped a maximum jail term of reclusion perpetua, or 20 to 40 years.
Where a change of one input or key bit results in changing more than half output bits
is a piece of programming code, usually disguised as something else, that causes a computer to behave in an unexpected and usually undesirable manner.
Ensures tasks are broken down and are accomplished / involve by more than one individual.
is a program in which malicious code is hidden inside a seemingly harmless program
It uses two different keys, a public key known by all and a private key known by only the sender and the receiver. Both the sender and the receiver each have a pair of these keys, one public and one private. It is commonly known as public-key encryption.
Availability is to prevent unauthorized withholding of information from those who need it when they need it.
is a harmful program that resides in the active memory of the computer and duplicates itself.
Emphasis on the data; Our assurance (confidence) in the protection of our information / Information Security Services.
Hash functions
Ensure computer systems are secure
converting plaintext to ciphertext
DES stands for
Secret key cryptography
Assure that the information has not been tempered
AES stands for
Firewalls - it is hardware or software used to isolate the sensitive portions of an information system facility from the outside world and limit the potential damage that can be done by a malicious intruder.
is the act of using e-mail fraudulently to try to get the recipient to reveal personal data. In a phishing scam, con artists send legitimate looking e- mails urging the recipient to take action to avoid a negative consequence or to receive a reward.
Block ciphers process messages a bit or byte at a time when en/decrypting
MD5 stand for
Denial of service attacks, commonly known as distributed denial of service (DDoS) attacks, are a new form of computer attacks. They are directed at computers connected to the Internet. They are not penetration attacks, and therefore, they do not change, alter, destroy, or modify system resources. However, they affect the system by diminishing the system’s ability to function; hence, they are capable of bringing a system down without destroying its resources.
Protection of multiple connected (networked) computer systems
The step in an attack which exploit service
recovering ciphertext from plaintext
Public key cryptography
Rotation individuals through jobs / tasks.
The step in an attack which identify targets
A facility is physically secure if it is surrounded by a barrier such as a fence, has secure areas both inside and outside the facility, and can resist penetration by intruders.
Private/secret/single key cryptography uses two keys – a public & a private key
is a set of programs that enables its user to gain administrator level access to a computer without the end user’s consent or knowledge.
an example of cyber technology vulnerability is unauthorized access to data, which are either resident in or exchanged between computer systems.
Assure that unused service or resource is available to legitimate users
The Operational Model of Computer Security
Passwords – it is a string of usually six or more to verify a user to an information system facility, usually digital system. Therefore, system security is the responsibility of every individual user of the system.
Hackers penetrate a computer system for a number of reasons and uses a variety of techniques. Using the skills they have, they download attack scripts and protocols from the Internet and launch them against victim sites
Hackers are individuals that use legal means to obtain trade secrets from competitors of their sponsor. It can involve the theft of new product designs, production data, marketing information, or new software source code.
Persons found guilty of unsolicited communication face arresto mayor (imprisonment for 1 month and 1 day to 6 months) or a fine of at least P50,000 but not more than P250,000, or both.
Companies are exposed to a wide range of fraud risks, including diversion of company funds, theft of assets, fraud connected with bidding processes, invoice and payment fraud, computer fraud, and credit card fraud. Often, frauds involve some form of collusion, or cooperation, between an employee and an outsider
Private-Key Cryptography
Verifies what a subject is authorized to do.
Stream ciphers process messages in into blocks, each of which is then en/decrypted
the intentional or reckless alteration, damaging, deletion or deterioration of computer data, electronic document, or electronic data message, without right, including the introduction or transmission of viruses.
Assure that the party of concern is authentic - it is what it claims to be
Authentication is a process whereby the system gathers and builds up information about the user to assure that the user is genuine. In computer systems, authentication protocols based on cryptography use either secret-key or public-key schemes to create an encrypted message digest that is appended to a document as a digital signature.
Insiders are a major source of computer crimes because they do not need a great deal of knowledge about the victim computer system. Insiders are not necessarily employees; they can also be consultants and contractors.
These hide the message by rearranging the letter order, without altering the actual letters used
Cracking is a form of hacking that is clearly criminal activity. Crackers break into other people’s networks and systems to cause harm.
__ a way to classify and refer to threats (and attacks) by names/categories
_____________ look like an extremely large substitution
Individuals found guilty of cybersex face a jail term of prision mayor (6 years and one day to 12 years) or a fine of at least P200,000 but not exceeding P1 million.
integrity is to prevent unauthorized modification of files and maintain the status quo. It includes system, information, and personnel integrity. The alteration of information may be caused by a desire for personal gain or a need for revenge.
The art and science of identify attempted intrusions
Hash used to detect changes to message
The protection of systems that store, transmit, and process information.
Information security includes the integrity, confidentiality, and availability of information at the servers, including information in files and databases and in transition between servers and between clients and servers. The security of information can be ensured in a number of ways.
the study of principles/ methods of deciphering ciphertext without knowing key
the use, production, sale, procurement, importation, distribution, or otherwise making available, without right.
algorithm for transforming plaintext to ciphertext
the original message
Contractual agreements between entities that describe specified levels of service.
The physical barrier can be a fence made of barbed wire, brick walls, natural trees, mounted noise or vibration sensors, security lighting, close circuit television (CCTV), buried seismic sensors, or different photoelectric and microwave systems.
Assure that authenticated party has indeed done something and it can not deny it
the coded message
Public-Key Cryptography
Control what a subject can perform or what objects the subject can interact with.
The digital signature is similar to a handwritten signature in printed documents. Just like handwritten signatures, digital signatures ensure that the person whose signature the system is authenticating is indeed the true person, but digital signatures provide a greater degree of security than handwritten signatures.
A penetration attack involves breaking into a computer system using known security vulnerabilities to gain access to a cyberspace resource. Penetration can be done in both local (using a computer on a LAN) or global (by means of the internet).
the access to the whole or any part of a computer system without right.
the intentional alteration or reckless hindering or interference with the functioning of a computer or computer network by inputting, transmitting, damaging, deleting, deteriorating, altering or suppressing computer data or program, electronic document, or electronic data message, without right or authority, including the introduction or transmission of viruses.
What is Malware?
In the Philippines it is known as Republic Act No. 10175 or the Cybercrime Prevention Act of 2012. It was signed into law by President Aquino on Sept. 12, 2012. Its original goal was to penalize acts like cybersex, child pornography, identity theft and unsolicited electronic communication in the country.
Data security is concerned with vulnerabilities pertaining to unauthorized access to data.
Encryption is a method that protects the communications channel from sniffers — programs written for and installed on the communication channels to eavesdrop on network traffic, examining all traffic on selected network segments.
If we can’t completely prevent attack from happening, detection is the only option
the acquisition of a domain name on the Internet in bad faith or with the intent to profit, mislead, destroy one’s reputation or deprive others from registering the same domain name.
Cyber criminals are motivated by the potential for monetary gain and hack into corporate computers to steal, often by transferring money from one account to another to another
the interception made by technical means without right of any non-public transmission of computer data to, from, or within a computer system including electromagnetic emissions from a computer system carrying such computer data.
Electronic terrorism by individuals or groups are targeting enterprise systems, institutions and governments. But cyber terrorism is not only about obtaining information; it is also about instilling fear and doubt and compromising the integrity of the data, which leads to extortion.
To keep up this site, we need your assistance. A little gift will help us alot.
Donate- The more you give the more you receive.
Related SubjectObject Oriented Programming Laboratory
Mobile Programming
Management Information Systems
Managing Information and Technology
Living in the Information Technology Era
Mail and Web Services
Introduction to Computing
Intro to Hardware Description Language
Introduction to Human Computer
Integrative Programming and Technology 2
Information Assurance and Security 2
Information Security and Management
Information Systems Operations and Maintenance
Fundamentals of Database System
Fundamentals of Investigation and Intelligence
Digital Imaging
Computer Fundamentals
Animation Project
3D Game Art Development
Computer Programming
Network Security
Mobile Application Design and Development
Mobile Application Design and Development 2
Information Technology Practicum
Information Technology Capstone Project
Introduction to Information Systems
Introduction to Multimedia
Internet Marketing and Entrepreneurship
Internet Technology in Real Estate
Data Communications and Networking
Cyber Security: Theories and Practice
Data Communications and Networking 2
Data Structures and Algorithms
Database Management System
Chemistry for Engineers
Load Testing
Auditing and Assurance Concepts and Applications
Integrative Programming and Technology
Linux Administration
Software Engineering
Applied Business Tools and Technologies
System Administration and Maintenance
Current Trends and Issues
Data Communications and Networking 4
Principles of Operating System and its Application
Systems Integration and Architecture
Application Lifecycle Management
Data Communications and Networking 3
Information Assurance and Security
Intrusion Detection System
Operating System Functions
Web Application Development
Web Systems Technologies
Web Development
Network Administration
Health Information Technology
Computer Information Systems
Computer Support Technician
Risk Management Applied to Safety Security and Sanitation
Property Management System
Investment and Portfolio Management
Information Management
Advanced Database Management Systems
Quality Assurance Testing
Office Assistant
Medical Office Administration
Administrative Assistant
Public Service
Relational Database Systems
Professional Ethics and Values
Shopee Helmet
Shopee 3D Floor
Lazada Smart TV Box