In the past week, I've learned many things about the general concepts of information security, SMART presentation and why do we need organizational security.
First is that there is a 3 concept that makes up the sides of the triangle in information security, Confidentiality, Integrity and Availability. Confidentiality meaning there is a limit and a protection for unauthorized access of data, Integrity meaning a protection for modifying some codes or data like changing a part of the code so that it would cause an error or another output and lastly availability of resources by securing it for leakage and DDoS which means distributed denial of service.
Second is that there is a types of access control which includes Mandatory Access Control for accessing only a specific category but you cannot go deeper on it, Discretionary Access Control for accessing a data based on the owner's will, Role Based Access Control for an only specific task that a user may perform and lastly Rule-Based Access control for denying an object that is not granted access by owner.
Lastly is that we should ensure that our security is strong by using many authentication method like fingerprint scanner, password that is not obvious, using many brands of firewall and placing a cctv and records in the environment
Comments
Post a Comment