IT 223 Lecture Notes - Systems Development Life Cycle, Information Assurance, Non-Repudiation
Document Summary
Information: processed and organized, communication or reception of knowledge. Security: definitions (freedom from danger, fear of anxiety; thing, measure) Thus, designers and manufacturers of resource-sharing systems are concerned with the fundamental problem of protecting information. : likelihood of attack: Components of information security: cia= confidentiality, integrity, availability, network security, computer and data, management information security, policy, Privacy: non-repudiation: the person is really him. Integrity: no unauthorized changes (additions, deletions, modifications, copies) Information security implementation: driven top-down, at each point in the sdlc( systems development life cycle) Information assurance vs information security: protection of information asset /vs\ correctness of information: government agency: role in defines policy and adapting technologies, job in govt agencies. Protect/detect/react:information assurance: information assurance can be understood as the information operations (io) that protect and defend information and information systems (is) by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation. This includes providing for restoration of information systems by incorporating protection, detection, and reaction capabilities.