Welcome to Scribd!

Information Systems Security: Presented by Dr. Mohamed Marie

Uploaded by

0% found this document useful (0 votes)

32 views7 pages

This document provides an overview of an information systems security course presented by Dr. Mohamed Marie. The course covers 8 chapters on topics such as access control and accountability, attacks and monitoring, security management concepts, data and application security issues, and malicious code and application attacks. Each chapter describes key concepts and principles within the topic area.

Original Description:

Original Title

First Lecture

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

32 views7 pages

Information Systems Security: Presented by Dr. Mohamed Marie

Uploaded by

Ali Mahmood

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 7

Search inside document

Information Systems Security

Presented By
Dr. Mohamed Marie
1
Course Overview
✓ 1 Accountability and Access Control
✓ 2 Attacks and Monitoring
✓ 5 Security Management Concepts and Principles
✓ 7 Data and Application Security Issues
✓ 8 Malicious Code and Application Attacks

2
Chapter 1
Accountability and Access Control
This chapter presents the following:
❑Access Control Overview
❑ Access controls are security features that control how users and systems communicate
and interact with other systems and resources.
❑ Access is the flow of information between a subject and an object.
❑ Identification, Authentication, Authorization, and Accountability
❑Accountability Overview
❑Access Control Techniques
❑ Discretionary Access Controls. Access control is based on the discretion (in other
words, a decision) of the owner. Using access control lists (ACL). Each ACL defines
the types of access granted or restricted to individual or grouped subjects. Like
windows and Unix (read, write and execute).
❑ Nondiscretionary Access Control can be further subdivided into specific techniques,
such as mandatory, role-based, and task-based access controls.
❑Access Control Models
❑ Centralized and Decentralized Access Control.
❑Access Control Administration
❑ Collection of tasks and duties assigned to an administrator to manage user accounts,
access, and accountability.
❑Identification and Authentication Techniques
❑Access Control Methodologies and Implementation
3
❑ How to implement Centralized and Decentralized Access Control.
Chapter 2
Attacks and Monitoring
This chapter presents the following:
❑Monitoring
❑ Using log files
❑Intrusion Detection
❑ An intrusion detection system (IDS) is a product that automates the inspection of
audit logs and real- time system events.
❑ Intrusion prevention Systems (IPS)
❑ Host-Based and Network-Based IDSs
❑ Knowledge-Based and Behavior-Based Detection
❑ IDS-Related Tools
❑ honey pots,
❑ padded cells,
❑ vulnerability scanners
❑Penetration Testing
❑ Penetration testing seeks to find any and all detectable weaknesses in your existing
security perimeter.
❑Access Control Attacks
❑ Brute-force and dictionary attacks
❑ Denial-of-service attacks
❑ Spoofing
❑ Man-in-the-middle attacks
❑ Spamming
4
❑ Sniffers
❑ Crackers, Hackers, and Attackers
Chapter 5
Security Management Concepts and Principles
This chapter presents the following:
❑Security Management Concepts and Principles
❑Protection Mechanisms
❑ Layering
❑ Abstraction
❑ Data Hiding
❑ Encryption

❑Change Control/Management
❑Data Classification
❑ Data classification is the primary means by which data is protected
based on its need for secrecy, sensitivity, or confidentiality.

5
Chapter 7
Data and Application Security Issues
This chapter presents the following:
❑Application Issues
❑ Local/Nondistributed Environment
❑ Viruses
❑ Trojan Horses
❑ Logic Bombs
❑ Worms
❑ Distributed Environment
❑ Agents
❑ Applets
❑ Java Applets
❑ ActiveX Controls
❑ Object Request Brokers
❑ Microsoft Component Models
❑Databases and Data Warehousing
❑Data/Information Storage
❑Knowledge-Based Systems
❑Systems Development Controls
❑Security Control Architecture
6
Chapter 8
Malicious Code and Application Attacks
This chapter presents the following:
❑Malicious Code
❑ Sources
❑ Viruses
❑ Multipartite Viruses
❑ Stealth Viruses
❑ Polymorphic Viruses
❑ Encrypted Viruses
❑ Logic Bombs
❑ Trojan Horses
❑ Worms
❑ Spyware and Adware
❑Methods of Attack
❑ Password Attacks
❑ Password Guessing
❑ Dictionary Attacks
❑ Social Engineering
❑ Denial-of-Service Attacks
❑ SYN Flood
❑ Distributed DoS Toolkits
❑ Smurf
❑Application Attacks
❑ Buffer Overflows
❑ Trap Doors
❑ Rootkits
❑Web Application Security
❑ Cross-Site Scripting (XSS)
7
❑ SQL Injection

Troubleshooting and Repair
Document12 pages
Troubleshooting and Repair
sorintatar
100% (1)
Murphy Switch Wiring Diagram
Document2 pages
Murphy Switch Wiring Diagram
Anonymous B97852
No ratings yet
Chapter 1 Information Security Governance Final
Document84 pages
Chapter 1 Information Security Governance Final
dgeeklord
No ratings yet
The Certified Ethical Hacker Exam - version 8 (The concise study guide)
From Everand
The Certified Ethical Hacker Exam - version 8 (The concise study guide)
alasdair gilchrist
Rating: 3 out of 5 stars
3/5 (9)
Module 1 - Security Fundamentals New
Document77 pages
Module 1 - Security Fundamentals New
clyde bautista
No ratings yet
Cybersecurity Professional Training PDF
Document2 pages
Cybersecurity Professional Training PDF
Tester Mahe
No ratings yet
Security Fundamentals: Predict - Preempt - Protect
Document27 pages
Security Fundamentals: Predict - Preempt - Protect
Ferry
100% (1)
Accomplished By: Supervised By: Mr. AFAK
Document53 pages
Accomplished By: Supervised By: Mr. AFAK
Yassine Abb
No ratings yet
Cyber Security: Mrs. V. Nikitha
Document78 pages
Cyber Security: Mrs. V. Nikitha
nikitha veeramalla
No ratings yet
Especificaiones Iveco Daily 2.8 TD Motor 8140.43.37 XX (E2)
Document2 pages
Especificaiones Iveco Daily 2.8 TD Motor 8140.43.37 XX (E2)
paezcoco
100% (2)
The Chartered Cyber Security Officer
From Everand
The Chartered Cyber Security Officer
Dr. Zulk Shamsuddin
Rating: 5 out of 5 stars
5/5 (1)
Certified Ethical Hacker (CEH) Preparation Guide: Lesson-Based Review of Ethical Hacking and Penetration Testing
From Everand
Certified Ethical Hacker (CEH) Preparation Guide: Lesson-Based Review of Ethical Hacking and Penetration Testing
Ahmed Sheikh
Rating: 5 out of 5 stars
5/5 (4)
Module 3 - Managing Data, Application, and Host Security New
Document61 pages
Module 3 - Managing Data, Application, and Host Security New
troll master
No ratings yet
2 Principles and Concepts Data Security Upload
Document39 pages
2 Principles and Concepts Data Security Upload
Divyesh yadav
No ratings yet
For Data Center Power Systems: Mitsubishi Generator Series
Document8 pages
For Data Center Power Systems: Mitsubishi Generator Series
mas zak daniel
No ratings yet
NMCSP 2008 Batch-I: Introduction To Ethical Hacking
Document41 pages
NMCSP 2008 Batch-I: Introduction To Ethical Hacking
Jitendra Kumar Dash
100% (1)
Chapter 1 - Introduction & Overview
Document42 pages
Chapter 1 - Introduction & Overview
Firas Zawaideh
No ratings yet
Cyber Security Fundamentals - VT
Document34 pages
Cyber Security Fundamentals - VT
Sushma Negi
No ratings yet
Fundamental Cyber Security Training
Document9 pages
Fundamental Cyber Security Training
YılmazDeğirmenci
No ratings yet
Cyber Security: Basic - Starting Point
Document14 pages
Cyber Security: Basic - Starting Point
abulfaiziqbal
No ratings yet
Ethical Hacking Updted
Document15 pages
Ethical Hacking Updted
vamshimatangi
No ratings yet
Litvinavicius T. Exploring Blazor... Applications in .NET 7. 2ed 2023
Document111 pages
Litvinavicius T. Exploring Blazor... Applications in .NET 7. 2ed 2023
weng xiao yee
No ratings yet
Introduction To Cybersecurity
Document15 pages
Introduction To Cybersecurity
Jozebel Cardoso
100% (1)
(Class Note) Module 1 - Introduction To Cybersecurity
Document79 pages
(Class Note) Module 1 - Introduction To Cybersecurity
Yao Xia Li
No ratings yet
Cyber Security
Document14 pages
Cyber Security
Manish Choudhury
No ratings yet
Lecture#01 - Introduction To Information Security COncepts
Document47 pages
Lecture#01 - Introduction To Information Security COncepts
fasih
No ratings yet
Information Systems Security: Presented by Dr. Mohamed Marie
Document7 pages
Information Systems Security: Presented by Dr. Mohamed Marie
Ali Mahmood
No ratings yet
Security Fundamentals: Predict - Preempt - Protect
Document26 pages
Security Fundamentals: Predict - Preempt - Protect
EL MAMOUN ABDELLAH
100% (1)
Application Security
Document65 pages
Application Security
Adil
No ratings yet
AIS Chapter 6.2
Document15 pages
AIS Chapter 6.2
deguu alam
No ratings yet
Chapter 1
Document10 pages
Chapter 1
Ramesh Rams
No ratings yet
Application Security - Unit 3 PDF
Document146 pages
Application Security - Unit 3 PDF
Viswantah
No ratings yet
Fundamental Cyber Security Training
Document9 pages
Fundamental Cyber Security Training
Kenjie Sama
No ratings yet
Lecture 2 - Risk Analysis
Document31 pages
Lecture 2 - Risk Analysis
lavanya.puri14
No ratings yet
C B Patel Computer Collage: "Sel F Defendin G Network"
Document21 pages
C B Patel Computer Collage: "Sel F Defendin G Network"
299 Shingala Mirali
No ratings yet
Chapter 1 - 1: Prof. Joseph Wilfred Dela Cruz
Document9 pages
Chapter 1 - 1: Prof. Joseph Wilfred Dela Cruz
KATHLENE CORPUS
No ratings yet
Week 3
Document20 pages
Week 3
Muhammad Hassan Awan
No ratings yet
The Truth About Vulnerability
Document16 pages
The Truth About Vulnerability
Habanos Cubano
No ratings yet
Cyber Security Roadmap
Document50 pages
Cyber Security Roadmap
amoako_cisco
No ratings yet
Secure Coding - PHP v.1.1
Document137 pages
Secure Coding - PHP v.1.1
Bond James
No ratings yet
ISAM Midterm
Document16 pages
ISAM Midterm
Lovely Sheen
No ratings yet
Identity and Access Management With Cybersecurity
Document17 pages
Identity and Access Management With Cybersecurity
Sathiya
No ratings yet
Cetiprof Cyber Security Consolidated V3
Document120 pages
Cetiprof Cyber Security Consolidated V3
ross simbiak
100% (5)
Information Security 1
Document21 pages
Information Security 1
Sithara Bandara
No ratings yet
Vulnerability Assessment and Penetration Testing
Document25 pages
Vulnerability Assessment and Penetration Testing
Yonas Mengistu
No ratings yet
EMCS-602: Cybersecurity Policies & Issues
Document60 pages
EMCS-602: Cybersecurity Policies & Issues
amna zia
No ratings yet
Software Security
Document59 pages
Software Security
sowmya jonnalagadda
No ratings yet
IS336 Lecture 0
Document3 pages
IS336 Lecture 0
j art ,education,and lifestyle
No ratings yet
Introduction To Information Security: Week 1 (8 Sept 2014)
Document39 pages
Introduction To Information Security: Week 1 (8 Sept 2014)
Abdulelah Alnhari
No ratings yet
CySA+ Cheat Sheet
Document12 pages
CySA+ Cheat Sheet
Aung Myo Khant
No ratings yet
Week 1
Document8 pages
Week 1
Mr Product
No ratings yet
Mama Clarits
Document15 pages
Mama Clarits
hunter kurosaki
No ratings yet
Unit I Information Security
Document91 pages
Unit I Information Security
Manas Jain
No ratings yet
2 Attacks & Services 04-05-2023
Document68 pages
2 Attacks & Services 04-05-2023
Dipanshu Mandal
No ratings yet
Module 11 - Software Development
Document45 pages
Module 11 - Software Development
Don Jino
No ratings yet
2023+CISSP+Domain+1+Study+guide+by+ThorTeaches Com+v3 1
Document31 pages
2023+CISSP+Domain+1+Study+guide+by+ThorTeaches Com+v3 1
Sandesh Raut
No ratings yet
Serverless Security Attackers and Defenders
Document43 pages
Serverless Security Attackers and Defenders
Candra Widiatmoko
No ratings yet
Cybersecurity
Document3 pages
Cybersecurity
jnwahangidjol
No ratings yet
Security Quick Review 2020
Document84 pages
Security Quick Review 2020
Ahmed Ali
No ratings yet
Cyber Security Lesson 2
Document26 pages
Cyber Security Lesson 2
Ushna Abrar
No ratings yet
Course Outline
Document3 pages
Course Outline
Fasiledes
No ratings yet
I Jcs It 2014050467
Document4 pages
I Jcs It 2014050467
Ofrates Siringan
No ratings yet
Day 2
Document28 pages
Day 2
a
No ratings yet
CCNA Enterprise 200 301 Modul5
Document79 pages
CCNA Enterprise 200 301 Modul5
Foryanto J. Wiguna
100% (2)
Module 3 - Managing Data, Application, and Host Security New-Merged
Document137 pages
Module 3 - Managing Data, Application, and Host Security New-Merged
troll master
No ratings yet
CSE-SS Unit 3 QB
Document43 pages
CSE-SS Unit 3 QB
JK
No ratings yet
Multi Threading Shrikant
Document106 pages
Multi Threading Shrikant
Komal Ransing
No ratings yet
FS - MM-EN-026 - PO Form Conversion Into PDF - V0.2
Document7 pages
FS - MM-EN-026 - PO Form Conversion Into PDF - V0.2
SUBHOJIT BANERJEE
No ratings yet
Ranjitha
Document15 pages
Ranjitha
recruiterkk
No ratings yet
Module IV - Construction
Document120 pages
Module IV - Construction
Aatsan Aathil
No ratings yet
Slot 22-23-24 Real Time Communication
Document50 pages
Slot 22-23-24 Real Time Communication
Linh Bui
No ratings yet
Anudeep SR Java1
Document8 pages
Anudeep SR Java1
Sainath Akula
No ratings yet
Book Bank
Document10 pages
Book Bank
02 - Adwin Prajisha
No ratings yet
Notes Abaqus 5
Document6 pages
Notes Abaqus 5
Putu Widiantara
No ratings yet
Solar Saturn Gas Turbine Generator Drive Application Control Package
Document3 pages
Solar Saturn Gas Turbine Generator Drive Application Control Package
Sara Vacca
No ratings yet
Renault 12 S
Document17 pages
Renault 12 S
Tadeusz Antoni Chudzik
No ratings yet
Topic 7 Annex 11 Air Traffic Services
Document7 pages
Topic 7 Annex 11 Air Traffic Services
Soumyadip Sheet
No ratings yet
IFlight MRO Flyer
Document2 pages
IFlight MRO Flyer
rohitsingh_81
No ratings yet
Engine Power Test Code PDF
Document1 page
Engine Power Test Code PDF
zona amrulloh
No ratings yet
Istqb F.L. Glossary Chapter 2
Document8 pages
Istqb F.L. Glossary Chapter 2
karishma10
0% (1)
Learning Objectives: Csc128 - Fundamentals of Computer Problem Solving Chapter 1: Introduction
Document22 pages
Learning Objectives: Csc128 - Fundamentals of Computer Problem Solving Chapter 1: Introduction
Zamir Nadzim
No ratings yet
Robot Safety Analysis Methods
Document11 pages
Robot Safety Analysis Methods
CHUTIYA
No ratings yet
IATF16949+Chapter+22 +Design+&+Development
Document22 pages
IATF16949+Chapter+22 +Design+&+Development
Awadh Alharbi
No ratings yet
Project Management - Scope Definition and Requirement Management
Document19 pages
Project Management - Scope Definition and Requirement Management
MOHAMMED ELKADIKI
No ratings yet
System Analysis and Design
Document47 pages
System Analysis and Design
Salman Patel
33% (3)
API Governance
Document7 pages
API Governance
tamiloppo321
No ratings yet
Threat Report
Document31 pages
Threat Report
M N ZAKI
No ratings yet
SE Project Report
Document34 pages
SE Project Report
Shubham Patel
No ratings yet
GM FloPro Programming
Document1 page
GM FloPro Programming
Enrique Emmanuel
No ratings yet
Jigyasa Sharma: Ust Global (May' 21-Till Date)
Document4 pages
Jigyasa Sharma: Ust Global (May' 21-Till Date)
Shashank Bisen
No ratings yet