Data Security and Data Encryption - News and Reviews=>Trapdoor - program that has a secret entry point
=>Trojan horse - program that overtly does one thing while covertly doing another
=>Virus - specific type of Trojan horse that can be used to spread its infection from one computer to another
=>Encryption - process of encoding a message so that its meaning is not obvious
=>Logic bomb - delayed effect in a program that makes it work well most of the time but fails it in specialised circumstances
=>Salami attack - small and skillfully done data modification that may not be detected in ordinary ways
=>Cracker - someone who attempts access to computing systems for malicious purposes which are not authorised
=>Hacker - someone who nonmaliciously programs, manages, or uses computing systems
=>Risk - possibility for harm to occur
=>Personal Firewall - application program that runs on a workstation to block unwanted traffic from the network . It is an access control device that sits between two networks or two network segments, and filters all traffic between the protected or inside network and a less trustworthy or outside network or segment
=>Virtual Private Network (VPN) - approach of link encryption that is used to give a network's users the sense that they are on a private network even when it is part of a public network
=>Deep web - database-driven web pages that can't be reached by traditional search engines .
=>Encryption - coding a signal so only a computer that has the key can read it .
=>Steganography - messages are hidden inside image files .
Types of Firewall -
=>Packet filtering - simplest firewall that sees only addresses and service protocol type
=>Stateful inspection - more complex firewall that can see either addresses or data
=>Application proxy - even more complex firewall that sees full data portion or packet
=>Guard - most complex firewall that sees full text of communication
Methods of Defense in Data Security -
=>Harm to data can be -
=>prevented by blocking the attack or closing the vulnerability
=>deterred by making the attack harder, but not impossible
=>deflected by making another target more attractive or this one less so
=>detected, either as it happens or some time after the fact
=>recovered from its effects
Hardware Controls in Data Security
=>Means used in hardware devices to provide Computer Data Security -
=>Circuit boards that control access to storage media
=>Intrusion detection systems
=>Firewalls
=>Devices to verify users' identities
=>Locks or cables limiting access or deterring theft
=>Hardware or smart card implementations of encryption
Factors that make a Network Vulnerable -
=>Unknown path
=>Unknown perimeter
=>Complexity of system
=>Sharing
=>Many points of attack - both targets and origins
=>Anonymity