58 lines
1.6 KiB
Markdown
58 lines
1.6 KiB
Markdown
#public
|
|
## Malware
|
|
Malicious software:
|
|
> Software written to Do [[Harm]]
|
|
## Harm
|
|
- Devices
|
|
- Data
|
|
- Alter
|
|
- Modify
|
|
- Delete
|
|
- Corruption
|
|
# Limit Access To Information
|
|
## Privacy
|
|
Limit the amount you permit to be shared
|
|
### Healthcare
|
|
I don't want public access to my info
|
|
Choose certain info to release or not
|
|
A trip to a crisis center is private
|
|
### Personally Identifiable Information (PII)
|
|
- Info that points Directly to you
|
|
- Protect as Cyber Prof.
|
|
|
|
## CIA Triad
|
|
### Confidentiality
|
|
Keep data hidden from those who should not access it
|
|
- Encryption
|
|
- People who can see it, can't understand if there not supposed to
|
|
- Hiding Existence
|
|
Not the same as [[Malware and cybersecurity#Privacy|Privacy]]
|
|
**Keep those who don't have access from having access**
|
|
### Integrity
|
|
Ensuring that Data and System Resources are trustworthy.
|
|
Eliminate unauthorized tampering
|
|
Eliminate accidental or malicious modifications.
|
|
Examples:
|
|
Financial Records
|
|
Medical Records
|
|
Can be more important than Confidentiality.
|
|
Banking must be accurate, may be public
|
|
#### 3 Categories of integrity
|
|
##### Data Integrity
|
|
Ensuring that the data is trustworthy
|
|
##### Origin Integrity
|
|
Understanding the author and verifying the source
|
|
The author created data and it has not been changed
|
|
##### System Integrity
|
|
Securing the processes that modify the data
|
|
Eliminate Accidental, deliberate, or malicious modifications of data through systems controlling that data
|
|
### Availability
|
|
Dealing with systems and data being available for use when needed
|
|
|
|
## Secrecy
|
|
Information that should not be disclosed outside of an in-group
|
|
`Maximum Secrecy = Minimun Availability`
|
|
|
|
|
|
|