A Multilayered Approach to Information Security A Multilayered Approach to Information Security

Establishing multiple layers of defense is critical to protecting valuable information assets. An effective multilayered defense involves no...

Read more »
11:35 PM

Physical, Procedural, and Technical Controls in Information Security Physical, Procedural, and Technical Controls in Information Security

In this post, I will briefly discuss the three major types or categories of controls that can be used to defend information systems – namely...

Read more »
6:42 PM

Using Multiple Controls or Countermeasures for Information Security Using Multiple Controls or Countermeasures for Information Security

In this post I would like to talk about using multiple controls or countermeasures for information security purposes. To begin, consider a c...

Read more »
10:35 PM

Defending against Attacks on Information Systems Defending against Attacks on Information Systems

In broad terms, there are six different approaches that can be used to defend information systems against attacks by malicious parties. The ...

Read more »
11:35 PM

Prerequisites for Attacking an Information System Prerequisites for Attacking an Information System

In order for an attack on an information system to succeed, an attacker must possess three specific things: (1) method , (2) opportunity , a...

Read more »
9:16 PM

Harm and the Value of Information Assets Harm and the Value of Information Assets

Although in an earlier post I discussed the four types of acts that can cause harm to an information system, here I would like to briefly d...

Read more »
9:52 PM

Types of Information System Attackers Types of Information System Attackers

Who are these people who seek to compromise the confidentiality, integrity, or availability of our information assets? Surprisingly, many at...

Read more »
11:26 PM

Understanding Threats to Information Systems Understanding Threats to Information Systems

To better understand the various ways in which the confidentiality, integrity, or availability of information assets can be threatened, cons...

Read more »
9:21 PM

Integrity, Availability, and Information Security Integrity, Availability, and Information Security

In an earlier post , I discussed confidentiality in the context of information security. In this post, I would like to elaborate on the rema...

Read more »
10:47 PM
 
Top