Chapter 14 Risks, Security, and Disaster Revcovery

Question 1

Goals of Information Security

Answer 1

• Protecting IT resources is a primary concern
• Securing corporate ISs is becoming increasingly challenging

Major goals of information security:

• Reduce the risk of systems ceasing operation
• Maintain information confidentiality
• Ensure the integrity and reliability of data resources
• Ensure the uninterrupted availability of resources
• Ensure compliance with policies and laws
• Laws passed by U.S. Congress setting standards for protecting privacy
  
  • Health Insurance Portability and Accountability Act of 1996 (HIPAA)
    Sarbanes-Oxley Act of 2002 (SOX)
• CIA triad: foundational concepts of information systems security
  
  • Confidentiality
  • Integrity
  • Availability

Question 2

Major goals of information security

Answer 2

• Reduce the risk of systems ceasing operation
• Maintain information confidentiality
• Ensure the integrity and reliability of data resources
• Ensure the uninterrupted availability of resources
• Ensure compliance with policies and laws

Question 3

Laws passed by U.S. Congress setting standards for protecting privacy

Answer 3

• Health Insurance Portability and Accountability Act of 1996 (HIPAA)
• Sarbanes-Oxley Act of 2002 (SOX)

Question 4

CIA triad

Answer 4

foundational concepts of information systems security

• Confidentiality
• Integrity
• Availability

Question 5

Risks to Information Systems

Answer 5

• Risks associated with cloud computing and data storage
• Downtime: the period of time during which an IS is not available
• $26 billion lost annually in the U.S. due to downtime
• Costs of downtime vary depending on industry, the size of the company, and other factors

Question 6

Risks to Hardware

Answer 6

• The #1 cause of system downtime is hardware failure
• Major causes of hardware damage
  
  • Natural disasters
    -Fires, floods, earthquakes, hurricanes, tornadoes, and lightning
    Blackouts and brownouts
    
    • Blackout: total loss of electricity
    • Brownout: partial loss of electricity
    • Uninterruptible power supply (UPS): backup power for a short time
• Major causes of hardware damage
  
  • Vandalism
    
    • Deliberate destruction

Question 7

The #1 cause of system downtime

Answer 7

hardware failure

Question 8

Major causes of hardware damage

Answer 8

• Natural Disasters
• Blackouts & Brownouts
• Vandalism

Question 9

Blackout

Answer 9

total loss of electricity

Question 10

brownout

Answer 10

partial loss of electricity

Question 11

UPS

Answer 11

Uninterruptible power suply

- backup power for a short time

Question 12

Risks to Data and Applications

Answer 12

• Data should be a primary concern because it is often a unique resource
• Data and applications are susceptible to disruption, damage, and theft
  
  • The culprit in damage to software or data is almost always human
• Keystroke logging (keylogging): software records individual keystrokes
• Social engineering: con artists pretend to be service people, and ask for passwords
• Identity theft: pretending to be another person
  
  • Phishing: bogus messages direct users to a site to “update” personal data
  • Spear phishing: personal information sued to attack organizational systems, particularly financial institutions
• Cyber terrorism: terrorist attacks on business organizations’ information systems
  
  • Disrupt network communication
  • Implement denial of service attacks
  • Destroy/steal corporate/government information
• Some risks to data
  
  • Alteration
  • Destruction
  • Web defacement
• Deliberate alteration or destruction is often done as a prank, but has a high cost
• Online vandal’s target may be a company’s website
• Hacking: unauthorized access
• Honeytoken: a bogus record in a networked database used to combat hackers
• Honeypot: a server containing a mirrored copy of a database or a bogus database
  
  • Educates security officers about vulnerable points
• Virus: spreads from computer to computer
• Worm: spreads in a network without human intervention
• Antivirus software: protects against viruses
• Trojan horse: a virus disguised as legitimate software
• Logic bomb: software that is programmed to cause damage at a specific time
• Unintentional, non-malicious damage can be caused by:
  
  • Poor training
  • Lack of adherence to backup procedures
  • Unauthorized downloading and installation of software may cause damage
  • Human error

Question 13

keylogging

Answer 13

software records individual keystrokes

Question 14

Social engineering

Answer 14

con artists pretend to be service people, and ask for passwords

Question 15

Identity theft

Answer 15

pretending to be another person

• Phishing: bogus messages direct users to a site to “update” personal data
• Spear phishing: personal information sued to attack organizational systems, particularly financial institutions

Question 16

Cyber terrorism

Answer 16

• terrorist attacks on business organizations’ information systems
• involves terrorist attacks on business organizations’ information systems with the intent to:
  • Disrupt network communication
  • Implement denial of service attacks
  • Destroy/steal corporate/government information

Question 17

Hacking

Answer 17

unauthorized access

Question 18

Honeytoken

Answer 18

a bogus record in a networked database used to combat hackers

Question 19

Phishing

Answer 19

bogus messages direct users to a site to “update” personal data

Question 20

Spear phishing

Answer 20

personal information sued to attack organizational systems, particularly financial institutions

Question 21

Honeypot

Answer 21

a server containing a mirrored copy of a database or a bogus database
- Educates security officers about vulnerable points

Question 22

Virus

Answer 22

spreads from computer to computer

Question 23

Worm

Answer 23

spreads in a network without human intervention

Question 24

Antivirus software

Answer 24

protects against viruses

Question 25

Trojan horse

Answer 25

a virus disguised as legitimate software

Question 26

Logic bomb

Answer 26

software that is programmed to cause damage at a specific time

Question 27

Unintentional, non-malicious damage can be caused by:

Answer 27

• Poor training
• Lack of adherence to backup procedures
• Unauthorized downloading and installation of software may cause damage
• Human error

Question 28

Risks to Online Operations

Answer 28

• Many hackers try daily to interrupt online businesses
• Some types of attacks
  • Unauthorized access
  • Data theft
  • Defacing of webpages
  • Denial of service
  • Hijacking computers

Question 29

DoS

Answer 29

Denial of service (DoS): an attacker launches a large number of information requests
- Slows down legitimate traffic to site

• Distributed denial of service (DDoS): an attacker launches a DoS attack from multiple computers
  
  • Usually launched from hijacked personal computers called “zombies”
  • There is no definitive cure for this
  • A site can filter illegitimate traffic

Question 30

DDoS

Answer 30

Distributed denial of service (DDoS): an attacker launches a DoS attack from multiple computers

• Usually launched from hijacked personal computers called “zombies”
• There is no definitive cure for this
• A site can filter illegitimate traffic

Question 31

Hijacking

Answer 31

using some or all of a computer’s resources without the consent of its owner

• Often done for making a DDoS attack
• Done by installing a software bot on the computer
• Main purpose of hijacking is usually to send spam

Question 32

Computer Hijacking

Answer 32

• Hijacking: using some or all of a computer’s resources without the consent of its owner
  
  • Often done for making a DDoS attack
  • Done by installing a software bot on the computer
  • Main purpose of hijacking is usually to send spam
• Bots are planted by exploiting security holes in operating systems and communications software
  
  • A bot usually installs e-mail forwarding software

Question 33

Controls

Answer 33

constraints and restrictions imposed on a user or a system

• Can be used to secure against risks
• Are also used to ensure that nonsensical data is not entered
• Can reduce damage caused to systems, application, and data
• Translate business policies into system features

Question 34

Application Reliability and Data Entry Controls

Answer 34

• A reliable application can resist inappropriate usage such as incorrect data entry or processing
  
  • The application should provide clear messages when errors or deliberate misuses occur
• Controls also translate business policies into system features

Question 35

Backup

Answer 35

periodic duplication of all data

• Redundant Arrays of Independent Disks (RAID): set of disks programmed to replicate stored data
• Data must be routinely transported off-site as protection from a site disaster
• Some companies specialize in data backup services or backup facilities for use in the event of a site disaster

Question 36

RAID

Answer 36

Redundant Arrays of Independent Disks (RAID): set of disks programmed to replicate stored data

Question 37

Access controls

Answer 37

measures taken to ensure only authorized users have access to a computer, network, application, or data

• Physical locks: secure the equipment in a facility
• Software locks: determine who is authorized
• Types of access controls
  
  • What you know: access codes, such as user ID and password
  • What you have: requires special devices
  • Who you are: unique physical characteristics
• Access codes and passwords are usually stored in the OS or in a database
• Security card is more secure than a password
  
  • Requires two-factor access
• Biometric: uses unique physical characteristics such as fingerprints, retinal scans, or voiceprints
• Up to 50 percent of help desk calls are from people who have forgotten their passwords
  
  • Biometrics can eliminate these kinds of calls

Question 38

Types of access controls

Answer 38

• What you know: access codes, such as user ID and password
• What you have: requires special devices
• Who you are: unique physical characteristics

Question 39

Biometric

Answer 39

uses unique physical characteristics such as fingerprints, retinal scans, or voiceprints

Question 40

Atomic transaction

Answer 40

a set of indivisible transactions

• Requires all of the transactions in the set to be completely executed, or none are executed
• Ensures that only full entry occurs in all the appropriate files to guarantee integrity of the data
• Is a control against malfunction and also prevents fraud

Question 41

Audit trail

Answer 41

a series of documented facts that help detect who recorded which transactions, at what time, and under whose approval

• Sometimes automatically created using data and timestamps
• Certain policy and audit trail controls are required in some countries
• Information systems auditor: a person whose job is to find and investigate fraudulent cases

Question 42

Information systems auditor

Answer 42

a person whose job is to find and investigate fraudulent cases

Question 43

Security Measures

Answer 43

Organizations can protect against attacks using various approaches, including:

• Firewalls
• Authentication
• Encryption
• Digital signatures
• Digital certificates

Question 44

Firewall

Answer 44

hardware and software that blocks access to computing resources

• The best defense against unauthorized access over the Internet
• Firewalls are now routinely integrated into routers

Question 45

DMZ

Answer 45

demilitarized zone approach

• One end of the network is connected to the trusted network, and the other end to the Internet
  
  • Connection is established using a proxy server

Question 46

Proxy server

Answer 46

“represents” another server for all information requests from resources inside the trusted network

• Can also be placed between the Internet and the trusted network when there is no DMZ

Question 47

Authentication

Answer 47

the process of ensuring that you are who you say you are

Question 48

Encryption

Answer 48

coding a message into an unreadable form

(mathematical algorithm and a key)

increases security

slows down communication
(Every message must be encrypted and then decrypted)

Question 49

Authentication and Encryption

Answer 49

• Authentication: the process of ensuring that you are who you say you are
• Encryption: coding a message into an unreadable form
• Messages are encrypted and authenticated to ensure security
  
  • Important when communicating confidential information, e.g., financial and medical records
• A message may be text, image, sound, or other digital information
• Encryption programs scramble the transmitted information
  
  • Plaintext: the original message
  • Ciphertext: the encoded message
• Encryption uses a mathematical algorithm and a key
• Key: a unique combination of bits that will decipher the ciphertext
• Public-key encryption: uses two keys, one public and one private
• Symmetric encryption: when the sender and the recipient use the same key
• Asymmetric encryption: both a public and a private key are used
• Transport Layer Security (TLS): a protocol for transactions on the Web that uses a combination of public key and symmetric key encryption
• HTTPS: the secure version of HTTP
• Digital signature: a means to authenticate online messages; implemented with public keys
• Message digest: unique fingerprint of file
• Digital certificates: computer files that associate one’s identity with one’s public key
  Issued by certificate authority
• Certificate authority (CA): a trusted third party
• A digital certificate contains its holder’s name, a serial number, its expiration dates, and a copy of holder’s public key
  
  • Also contains the digital signature of the CA

Question 50

Plaintext

Answer 50

the original message

Question 51

Ciphertext

Answer 51

the encoded message

Question 52

Key

Answer 52

a unique combination of bits that will decipher the ciphertext

Question 53

Public-key encryption

Answer 53

uses two keys, one public and one private

Question 54

Symmetric encryption

Answer 54

when the sender and the recipient use the same key

Question 55

Asymmetric encryption

Answer 55

both a public and a private key are used

Question 56

TLS

Answer 56

Transport Layer Security (TLS): a protocol for transactions on the Web that uses a combination of public key and symmetric key encryption

Question 57

HTTPS

Answer 57

the secure version of HTTP

Question 58

Digital signature

Answer 58

a means to authenticate online messages; implemented with public keys

Question 59

Message digest

Answer 59

unique fingerprint of file

Question 60

Digital certificates

Answer 60

computer files that associate one’s identity with one’s public key

• Issued by certificate authority
• contains its holder’s name, a serial number, its expiration dates, and a copy of holder’s public key
• contains the digital signature of the CA

Question 61

CA

Answer 61

Certificate authority (CA): a trusted third party

Question 62

SSO

Answer 62

Single sign-on (SSO): a user must enter his or her name/password only once
- saves employees time

Question 63

The Downside of Security Measures

Answer 63

• Single sign-on (SSO): a user must enter his or her name/password only once
• Single sign-on saves employees time
• Encryption slows down communication
  
  • Every message must be encrypted and then decrypted
• IT specialists must clearly explain the implications of security measures to upper management

Question 64

Recovery Measures

Answer 64

• Security measures may reduce mishaps, but no one can control all disasters
• Preparation for uncontrolled disasters requires that recovery measures are in place
• Redundancy may be used
  
  • Very expensive, especially in distributed systems
    
    • Other measures must be taken

Question 65

The Business Recovery Plan

Answer 65

a detailed plan about what should be done and by whom if critical systems go down
- Also called disaster recovery plan, business resumption plan, or business continuity plan

Question 66

Developing a business recovery plan

Answer 66

1. Obtain management’s commitment to the plan
2. Establish a planning committee
3. Perform risk assessment and impact analysis
4. Prioritize recovery needs
   
   • Mission-critical applications: those without which the business cannot conduct operations
5. Select a recovery plan
6. Select vendors
7. Develop and implement the plan
8. Test the plan
9. Continually test and evaluate

Question 67

Mission-critical applications

Answer 67

those without which the business cannot conduct operations

Question 68

Hot sites

Answer 68

Alternative sites that a business can use when a disaster occurs
- Backup sites provide desks, computer systems, and Internet links

Question 69

Recovery Planning and Hot Site Providers

Answer 69

• Can outsource recovery plans to firms that specialize in disaster recover planning
• Hot sites: alternative sites that a business can use when a disaster occurs
  
  • Backup sites provide desks, computer systems, and Internet links
• Companies that implement hot sites
  
  • IBM
  • Hewlett-Packard
  • SunGard Availability Services

Question 70

How Much Security Is Enough Security?

Answer 70

Costs to consider in security measures

• Cost of the potential damage
• Cost of implementing a preventative measure

𝐶𝑜𝑠𝑡 𝑜𝑓 𝑃𝑜𝑡𝑒𝑛𝑡𝑖𝑎𝑙 𝐷𝑎𝑚𝑎𝑔𝑒= ∑_(𝑖=1)^𝑛 𝐶𝑜𝑠𝑡 𝑜𝑓 𝐷𝑖𝑠𝑟𝑢𝑝𝑡𝑖𝑜𝑛_𝑖 ×𝑃𝑟𝑜𝑏𝑎𝑏𝑖𝑙𝑖𝑡𝑦 𝑜𝑓 𝐷𝑖𝑠𝑟𝑢𝑝𝑡𝑖𝑜𝑛_𝑖

  - Where 𝑖 is a probable event, and 𝑛 is the number of events 

• As the cost of security measures increases, the cost of potential damage decreases
  
  • Companies try to find the optimal point
• The company must define what needs to be protected
• Security measures should never exceed the value of protected system

Question 71

𝐶𝑜𝑠𝑡 𝑜𝑓 𝑃𝑜𝑡𝑒𝑛𝑡𝑖𝑎𝑙 𝐷𝑎𝑚𝑎𝑔𝑒

Answer 71

∑_(𝑖=1)^𝑛 𝐶𝑜𝑠𝑡 𝑜𝑓 𝐷𝑖𝑠𝑟𝑢𝑝𝑡𝑖𝑜𝑛_𝑖 ×𝑃𝑟𝑜𝑏𝑎𝑏𝑖𝑙𝑖𝑡𝑦 𝑜𝑓 𝐷𝑖𝑠𝑟𝑢𝑝𝑡𝑖𝑜𝑛_𝑖

Where 𝑖 is a probable event, and 𝑛 is the number of events

Question 72

Calculating Downtime

Answer 72

• Businesses should try to minimize downtime, but the benefit of greater uptime must be compared to the added cost
• Mission-critical systems must be connected to an alternative source of power, duplicated with a redundant system, or both
• Many ISs are now interfaced with other systems
  
  • The greater the number of interdependent systems, the greater the expected downtime
• Redundancies reduce expected downtime

Question 73

Summary

Answer 73

• The purpose of controls and security measures is to maintain the functionality of ISs
• Risks to ISs include risks to hardware, data, and networks
• Risks to hardware include natural disasters and vandalism
• Risks to data and applications include theft of information, identity theft, data alteration, data destruction, defacement of websites, viruses, worms, logic bombs, and nonmalicious mishaps
• Risks to online systems include denial of service and computer hijacking
• Controls are used to minimize disruption
• Access controls require information to be entered before resources are made available
• Atomic transactions ensure data integrity
• Firewalls protect against Internet attacks
• Encryption schemes scramble messages to protect them on the Internet
• A key is used to encrypt and decrypt messages
• SSL, TLS, and HTTPS are encryption standards designed for the web
• Keys and digital certificates can be purchased from a certificate authority
• Many organizations use the services of organizations that provide hot sites
• Careful evaluation of the amount spent on security measures is necessary
• Redundancy reduces the probability of downtime
• Governments are obliged to protect citizens against crime and terrorism