week 17 - human factor and cyber security Flashcards
usability in security, 3 factors to concider
opportunity
to make mistakes
environment
distracted or under pressure
lack of awareness
inadequate training and skills to recognise threats
effects of usability on security
stronger password , at cost to user - does not protect against phishing
extended SMTP (ESMTP)
to provide authentication of sender
Transport layer security (TLS) - emails encryption
uses strong encryption to protect data across the network - protection from eavesdroppers
what are the two phases of TLS?
handshake - both parties agree on version - key exchange - signatures - hashing
post handshake - the communication itself - the key is then deleted from both
sender policy framework (SPF)
form of authentication - check IP address of server for authorisation from admin - if not it is marked as spam
DomainKeys Identified Mail (DKIM)
An Internet standard which uses digital signatures and hashing to authenticate email headers.