One of the major categories of information security protection is data breach and/or data theft that causes loss of confidential client information. This risk can occur through various ways including unauthorized access of computer systems, which takes place through obtaining passwords, malware infection, and exploiting vulnerabilities and weaknesses (Hutchings, 2012)
The other protective measures include providing security for the business' Internet connection through regularly changed administrative password and installing and activating software firewalls. The business should also consider making backup copies of vital business information or data, controlling physical access to computers and network components, and providing training to employees on basic security principles (Kissel, 2009)
The business need for information security is fueled by the fact that these businesses make security decisions on a daily basis. Some of the most common security decisions made by these businesses include locking their doors, fitting alarm systems, and ensuring that trustworthy employees work behind their counters (Porter, 2009)
The hardware and software components of a network security system are essentially meaningless if the individual employees, managers, etc. who have access to the network do not maintain proper security procedures and remain well-informed regarding potential risks and updated procedures and policies (Cobb, 2011; Whitman & Mattord, 2011; ICR, 2008)
Three specific areas that most companies could focus on include building a stronger foundation for network security, paying more attention to the development and proficiency of the human resources involved in maintaining and progressing computer/information technology security, and making improvements to virus detection and reporting techniques. Three Areas of Change A company or organization's network is typically a central part of that organization's overall information technology system, and thus network security must take a central place in the organization's approach to overall computer/information technology security (Greene, 2006; Bishop, 2003; Kizza, 2009)
Three Areas of Change A company or organization's network is typically a central part of that organization's overall information technology system, and thus network security must take a central place in the organization's approach to overall computer/information technology security (Greene, 2006; Bishop, 2003; Kizza, 2009). While most organizations have at least some basic understanding of the importance of network security and some of the basic components that contribute to security in this area, many could also stand to pay more detailed attention to the many different components of network security and the different types and degrees of vulnerabilities that are necessarily a part of any network system (Kizza, 2009; Cobb, 2011)
In essence, the security system is to enhance the confidentiality, availability and integrity of the company customer critical information. (Abdel-Aziz, 2009)
Moreover, the hackers may attempt to steal workers' password using port scanner to penetrate the company network system. (Burr, Ferraiolo, & Waltermire, 2014)
The LAN and WAN assist the company to share files, and communicate across a specific or wider geographical regions. (Chadwick, 2012)
In essence, the proposal will assist the company to increase the annual sales because the customer will have a peace of mind in submitting their critical information when making a purchase online. (McGuire, Manyika, & Chui, 2012)
The encryption will change the data into nonsense text, which can only be decrypted by an authorized person in possession of a decryption key. (Stallings, 2011)
The firewall will offer security to the company network systems by disallowing unauthorized network to penetrate into the company network systems using strong authentication systems. (Young, 2008)
In other words, the concept of 'absolute security' is a chimera. It is the nature of security that makes it necessary to weigh up the threats, the risks, the harm arising, and the cost of safeguards (Bach, 1986)
However, when data are in a database format, it is possible to partition sensitive data into separate tables so that only authorized users can access these tables based on legitimate needs. Partitioning scheme mechanism is based on a simple in-built DBMS security feature to prevent unauthorized access to sensitive data (Bhargavan and Gadia, 1990)
Even if IS security measures are handled to monitor and control all of the keystrokes of the computers, there are instances of unauthorized information because of personal negligence, such as one may leave inadvertently classified material left unattended. Also, computer diskettes, CDs, carbon paper, and used typewriter ribbons may pose a problem when doing a security check, as a visual examination of these items does not tell whether the items contain classified information (Bjork, 1975)
Some organizations have found it necessary to lock their computer drives to prevent any downloading of files from the classified system. If an individual wishes to download and retransmit an unclassified file from a classified system, the file must be downloaded and processed by the system administrator to remove electronic traces of other files before it is retransmitted (Denning, 1988)
Together, these elements will highlight the scope of the threats on government and military information systems. (Hosenball, 2013) In early September 2012, the White House was the target of a cyber phishing attack
When this happens, there is a possibility that these tools may make it difficult to protect the country and deal with critical threats. (Winter, 2012) (Schwartz, 2013) As a result, a new approach needs to be taken to that will focus on these states and addressing emerging challenges
However, when they open it, is the point they can be providing hackers with access to their computer networks. (Winter, 2012) After evaluating where the attack came from; it was determined that the Chinese government was responsible for the incident
The economics of SaaS, combined with the commitment on the part of companies to re-architect their processes to capitalize on a higher quality and speed of delivery of customer information, is in the process of significantly increase company performance (Hill, 2008). The technological implications of SaaS are highly dependent on the underlying Web programming languages the applications are based on, with Asynchronous JavaScript (AJAX) being the most prevalent due to its speed and customization advantages (Bajaj, Bradley, Cravens, 2008)