The Pros And Cons Of Information Security

1679 Words4 Pages
bulb-icon

Recommended: Effects of a cyber attack essay

What is Information Security and why it is Important?
Information security refers to “the process and methodologies that are designed and implemented to protect print, electronic, or any other form of confidential, private and sensitive information or data from unauthorized access, use, misuse, disclosure, destruction, modification, or disruption” (SANS Institute, n.d.). Information security programs are important in maintaining confidentiality, integrity, and availability (figure 1 page X). For example, a Trojan horse was planted on your system and result in the loss of customers’ personal and financial information. This failure to protect data will result in a loss, legal liability, and goodwill. In this scenario, both confidentiality and …show more content…

Confidentiality referred to:
“The treatment of information that an individual has disclosed in a relationship of trust and with the expectation that it will not be divulged to others without permission in ways that are inconsistent with the understanding of the original disclosure” (University of California, Irvine, n.d.).
Therefore, measures must be in place to prevent data breach as confidential information stored on computers has increased with time.

The objective of this paper is to look at the pros and cons of privacy breaches caused by human errors and hacking. The purpose of this research paper is to prove that human error is the leading cause of breaches by looking at areas where the violation occurs. Those areas included but not limited to:
1. Loss of administrative credentials
2. Employee negligence
3. Third party access

Types of …show more content…

As a result, there are many guidelines and regulations in place to help avoid data breaches. However, the Office of Privacy Commissioner of Canada says that reporting of a violation is not mandatory, so the number is not an accurate representation of data breach in Canada (see table 1). While hacking is the most reported form of a data breach, there are plenty of other factors such as human errors, system glitches, and malicious that affect information security that goes unreported or are less abrasive.

Information Security: Human Errors vs. Hackers
As mentioned before, the focus of this paper is to compare and contrast human error and hacking. Hacking can be defined as exploitations to weaken a computer systems. Thus, creating a breach in information security and is done for many reasons mainly for financial gains and to exposed hiding agenda whereas human error occurs as a result of one of the following reasons: loss of administrative credentials, employee negligence, and third party access just to name a few.

Loss of Administrative

Show More
Related

  • The Pros And Cons Of The NSA

    2057 Words  | 5 Pages

    We all have heard the quote “Life, Liberty, Land, and the Pursuit to Happiness” and that is the promise of a life here in America. As Americans we pride ourselves on these freedoms that allow us to live everyday. We are one of the only countries that have this promise and it is what draws people from all of over the world to come here. Our founding fathers of the United States of America wrote these words, having no idea the impact that they would have for the rest of this countries history. Those words were the foundation for government, and it wasn’t perfect at first but slowly it matured into what we have today, strong and powerful. To other nations America is seen as the World Power, and a somewhat perfect nation to live in. Unfortunately corruption, scandals and controversies have tainted our once golden glow, and other nations are weary of watching their steps. One of the most controversial elements to our government is the NSA. Hidden in the shadows from American and global knowledge is what the NSA is actually doing and watching out for. Only very recently has the NSA been ripped from the shadows and brought to light what exactly is going on inside those walls. They are “spying” on not only America’s personal data, but foreign leaders as well. The NSA says it’s for the safety for everyone against terrorism and attacks. However, it has gone way to far and violates a constitutional right, privacy. The NSA has overstepped their boundaries, and spying doesn’t seem to make a difference in safety.

    Read More

  • Target Data Breach

    727 Words  | 2 Pages

    The data breach at Target may have been less brute force than a casual observer might imagine, given the language used on Target’s own FAQ which describes the incident as “criminals forc[ing] their way into our system.”1 While this description might conjure an image of hackers sitting in a dimly lit room, running complex software on super powered machines, and attempting a brute force or DDoS style attack to gain access to customer information databases, the reality appears to have been slightly less glamorous. There can be a variety of unintended entries to a secure system, and criminals will go for the weakest link in the chain. This weak link may oftentimes be not a security hole in the software, but instead the users of that software. The term hacking is used as a catch-all for situations where an information system has been compromised, even though the actual attack or breach of security was nothing more than information leaking out from users or corporations not thoroughly versed in good security practices. In these cases, the breaches are more appropriately described as being a result of social engineering. Social engineering is the technique of combining technological and psychological savvy to obtain illegal access to information2. This can involve anything from complaining and pleading with a phone support representative to give out information, to just realizing that many people use the same password for most of their accounts. Phishing is a social engineering tactic where an attractive, familiar, or official looking email is sent out to multiple recipients with the intent of tricking them into clicking a malicious link or downloading malware attachments3,4. While the latter approach may feel more like hacking, because ...

    Read More

  • Target and The Largest Breaches of Customers Data

    811 Words  | 2 Pages

    I found three different e-commerce companies that have recently encountered a consumer privacy data breach. Target one of the most well-known breaches affected almost 40 million people, Evernote Corp. an online note-taking service, and LivingSocial a company which offers gift certificates for customers to use in different cities around the globe. In this paper I will be discussing what happened and how each company handled the different situations that they encountered.

    Read More

  • Data Breach and Its Financial Implication

    753 Words  | 2 Pages

    Data breach can occur at any place, in any environment and by any medium, however the most common breaches occur due to a hacker hacking into a corporate network to steal unauthorized and sensitive information. However, a great deal of breaches occurs within the organization, which includes an employee viewing unauthorized data or someone else accessing others account to gain personal benefits.

    Read More

  • Defending Privacy of Personal Information

    3909 Words  | 8 Pages

    Privacy does not have a single definition and it is a concept that is not easily defined. Information privacy is an individual's claim to control the terms under which personal information is acquired, disclosed, and used [9]. In the context of privacy, personal information includes any information relating to or traceable to an individual person [ 1]. Privacy can be defined as a fundamental human right; thus, privacy protection which involves the establishment of rules governing the collection and handling of personal data can be seen as a boundary line as how far society can intrude into a person's affairs.

    Read More

  • Rise Of The Hackers: Movie Analysis

    1336 Words  | 3 Pages

    The documentary Rise of the Hackers, focuses on the rising criminal use of hacking and how it is effecting multiple areas of technology. The documentary describes simple and complicated situations concerning hacking, but there still questions that must be answered when it comes to hacking and crime. The main question is in trying to determine why a person would choose to commit computer hacking. There are various theories already present within the criminal justice system that may explain at a micro-level and macro-level. These theories would explain why offenders would commit the crimes, but it may not answer the full scope of the question. The Routine Activities Theory would help to explain why offenders offend, why victims are victimized,

    Read More

  • Homeland Security: The Mission Of Homeland Security

    1035 Words  | 3 Pages

    Security helps the organization meet its business objectives or mission by protecting its physical and financial resources, reputation, legal position, employees, and other tangible and intangible assets through the selection and application of appropriate safeguards. Businesses should establish roles and responsibilities of all personnel and staff members. However, a Chief Information Officer should be appointed to direct an organization’s day to day management of information assets. Supporting roles are performed by the service providers and include systems operations, whose personnel design and operate the computer systems. Each team member must be held accountable in ensuring all of the rules and policies are being followed, as well as, understanding their roles, responsibilities and functions. Organizations information processing systems are vulnerable to many threats that can inflict various types of damage that can result in significant losses (Harris, 2014). Losses can come from actions from trusted employees that defraud the system, outside hackers, or from careless data entry. The major threat to information protection is error and omissions that data entry personnel, users, system operators and programmers make. To better protect business information resources, organizations should conduct a risk analysis to see what

    Read More

  • The Use of Hacking to Identify Weaknesses in Computer Security

    1406 Words  | 3 Pages

    The use of hacking to identify weaknesses in computer security has become an increasingly controversial issue in recent years. Awareness of this issue is important, because our ever increasing reliance on technology means that breaches in computer security have the potential to have wide-ranging and devastating consequences to society, worldwide. This essay will begin by clearly defining the term ‘hacking’ and will examine the type of people who hack and for what reasons. There will then follow a discussion of the moral argument on hacking before examining a few brief examples. The essay will then conclude by arguing against the use of hacking as a means of identifying weaknesses in computer security.

    Read More

  • Teaching Computer Ethics in the Classroom

    2418 Words  | 5 Pages

    The computer is considered one of the most important technological advances of the twentieth century. Security and privacy issues have been in existence long before the computer became a vital component of organizations' operations. Nevertheless, the operating features of a computer make it a double-edged sword. Computer technologies with reliable error detection and recording capabilities, permit the invasion of a supposedly secure environment to occur on a grand scale and go undetected. Furthermore, computer and communications technology permit the invasion of a persons' privacy and likewise go undetected. Two forces threaten privacy: one, the growth of information technology with its enhanced capacity for surveillance, communication, computation, storage and retrieval and two, the more insidious threat, the increased value of information in decision making. Information has become more vital in the competitive environment, thus, decision makers covet it even if it viol!

    Read More

  • HIPAA, CIA, and Safeguards

    1633 Words  | 4 Pages

    Whitman, M., & Mattord, H. (2010). Management of information security. (3rd ed., p. 6). Boston, MA: Cengage Learning.

    Read More

  • The Pros And Cons Of Password Security

    715 Words  | 2 Pages

    When the entire body of knowledge concerning passwords is evaluated a few things become abundantly clear. First, passwords are going to be around for some time yet. There simply are no present alternatives that are cost competitive with passwords or that users can adopt in a successful manner. While it is certainly a noble effort to explore replacements for passwords, we cannot refuse to acknowledge their continued existence in the foreseeable future.

    Read More

  • Threat to Internet Privacy

    2650 Words  | 6 Pages

    Technological advances create the capability more and more to snoop or invade privacy without detection. Granted, letters have always been opened and conversations overheard, but with technology, the potential for privacy has diminished. When we are sitting in our living room, our cell phone can give away our location; video cameras can be recording our actions through the windows; and remote microphones can be recording our conversation. Before computers and the Internet, you could gather sensitive information on someone, but the ability to divulge massive amounts of information on a large number of people was beyond possible due to the massive manual labor involved. Computers change this limitation, as computers have the potential to process enormous volumes of information.

    Read More

  • CyberCrime: Preventing the Horrific Crimes on the Internet

    1424 Words  | 3 Pages

    Harvey, Brian. A. Computer Hacking and Ethics. Ed. Paul Goodman, P.G., a.k.a. Electrical Engineering and Computer Science.

    Read More

  • Biometric Technology

    1204 Words  | 3 Pages

    Nowadays, the information is the most treasured asset in an organization, due to it along with the experience represents the input necessary to take appropriate decisions and consequently to have success in the business. Almost all the information and knowledge related with the processes business, goods and services offered by a company, is processed, managed and stored through technology and information systems, thus the security of information has become increasingly important and plays a critical role in the enterprise government.

    Read More

  • Advantages And Disadvantages Of Information Security

    575 Words  | 2 Pages

    There are several advantages and disadvantage of information security. We all know the reason why information security was created: to keep information secured. Due to the increase in technology we now are able to purchase anything online, send important documents online, and chat about private matters online. We send out all of our information without ever thinking about the possible chance of getting hacked, due trusting solely on information security. There are specific advantages of information security, and that is it allows for your information to be fully secured, and security implements an efficient business. Information security allows for your information to be fully secured in a several of ways. First off, it keeps confidential information that was given to a business secured. Examples of confidential information, within a business, would be contracts, legal documents, and financial reports. Second, Information security keeps certain information out of the wrong hands. Even though we hear stores of private information getting stolen by hackers, information security still...

    Read More

More about The Pros And Cons Of Information Security

Open Document