Professional Documents
Culture Documents
Course: INTRODUCTION TO
MANAGEMENT INFORMATION SYSTEMS
2023 -2024
Learning Objectives
2
KHOA CÔNG NGHỆ THÔNG TIN
Introduction
3
KHOA CÔNG NGHỆ THÔNG TIN
Information Security Triad - CIA Triad
lity
authorized individuals
tia Integrity – data has not been altered in an
In t
unauthorized manner
n
e gr
de
i ty
Co
an appropriate timeframe
Availability
4
KHOA CÔNG NGHỆ THÔNG TIN
Tools for Information Security
• Authentication
• Access Control
• Encryption
• Passwords
• Backup
• Firewalls
• Virtual Private Networks (VPN)
• Physical Security
• Security Policies
5
KHOA CÔNG NGHỆ THÔNG TIN
Authentication
6
KHOA CÔNG NGHỆ THÔNG TIN
Access Control
7
KHOA CÔNG NGHỆ THÔNG TIN
Encryption
8
KHOA CÔNG NGHỆ THÔNG TIN
Passwords
9
KHOA CÔNG NGHỆ THÔNG TIN
Backup
12
KHOA CÔNG NGHỆ THÔNG TIN
Physical Security
13
KHOA CÔNG NGHỆ THÔNG TIN
Security Policies
• Starting point in developing an overall security plan
• Formal, brief, and high-level statement issued by senior management
• Guidelines for employee use of the information resources
• Embraces general beliefs, goals, objectives, and acceptable procedures
• Includes company recourse if employees violate the policy
• Security policies focus on confidentiality, integrity, and availability
• Includes applicable government or industry regulations
• Bring Your Own Device (BYOD) policies for mobile devices
• Use when accessing/storing company information
• Intellectual property implications
• Difficult to balance the need for security and users’ needs
14
KHOA CÔNG NGHỆ THÔNG TIN
Personal Information Security
15
KHOA CÔNG NGHỆ THÔNG TIN
Summary
16
KHOA CÔNG NGHỆ THÔNG TIN
Question – Lecture 6
17
KHOA CÔNG NGHỆ THÔNG TIN