Sunday, February 19, 2017

InfoSec - Information Security



Any meaningful data, facts or statistics holding important values termed as information. Information can be of any type: written, verbal, textual, audio/visual, etc. Information is something that is transferred between sender and receiver for specific purpose to act on and to achieve specific goals. Send –Receive process may be between any device to device, human to human, device to human and vice-versa.

Sending, receiving and storing information demands the security and unprivileged access to maintain its integrity and value and prevention from misuse.

InfoSec is the strategy which helps in preventing gaining illegal access to copying, modifying, using, disclosing and destroying the information without proper authentication and authorisation.

There are different ways to breach security and gain access to information which may results in heavy losses for a person or organisation in terms of cost, productivity and goodwill. General threats includes viruses, malware, adware, key loggers, fake antivirus, phishing attacks, extracting cookies and tracking the activities, SQL injection, etc.



Information security implies policies involving strategies and methods to prevent physical and digital information from unauthorised access. The strategies can vary from organisation to organisation based on the needs and type of information to be secured. Typical measures include encryption, secure transfer, strong credentials, tracking/auditing the activities, defining accessibility areas, banning unencrypted devices, shredding files after use, restrict download from external systems without proper scanning, network intrusion detection, password policies, etc.
Share This
Previous Post
First

TekGrabs, established in 2017, is in the business of sharing Information. It provides news, articles and photos about the different technologies, inventions in different domains. Provides information on programming and databases.

0 comments: