{"id":133,"date":"2024-09-25T16:27:11","date_gmt":"2024-09-25T16:27:11","guid":{"rendered":"https:\/\/sites.wp.odu.edu\/cyberimpact1\/?page_id=133"},"modified":"2024-12-04T02:56:55","modified_gmt":"2024-12-04T02:56:55","slug":"it-cyse-200t-2","status":"publish","type":"page","link":"https:\/\/sites.wp.odu.edu\/cphil021\/it-cyse-200t-2\/","title":{"rendered":"IT\/CYSE 200T"},"content":{"rendered":"

Cybersecurity, Technology, and Society<\/h1>\n
\n
\n
\n
\n
\n
\n
<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n
\n

 <\/p>\n

CIA Triad, and the differences between Authentication & Authorization<\/b><\/h2>\n

BULF:<\/b><\/p>\n

To this day the CIA Triad (Confidentiality, Integrity, Availability) are important factors in our world’s system of technology, that provide protection of our people’s data and information over the data space.\u00a0<\/span><\/p>\n

CIA Triad:<\/b><\/p>\n

The CIA Triad is a model designed to help protect and guide policies for information security within an organization. CIA Triad is known for Confidentiality, integrity, and availability. While people outside the information security community might hear the phrase CIA Triad and think \u201cconspiracy theory,\u201d those in the cybersecurity field know that the CIA Triad has absolutely nothing to do with the Central Intelligence Agency. Instead, the CIA triad has everything to do with keeping your organization\u2019s data, networks, and devices safe and secure, while strengthening the security posture of your organization. The CIA triad is widely accepted as a model in information security. It\u2019s not a singular doctrine and there was no one author. Rather the model appears to have developed over time, with roots as old as modern computing, pulling concepts from various sources. Ben Miller, vice president for Dragos, seems to be one of the few people who has done any digging on the origins of the triad.<\/span><\/p>\n

Confidentiality:<\/b><\/p>\n

Confidentiality is that only authorized users and processes should be able to access or modify data. This often means that only authorized users and processes should be able to access or modify data. It also includes protecting information from hackers with malicious intent, like limiting access to only authorized individuals within a certain organization.\u00a0<\/span><\/p>\n

Integrity:\u00a0<\/b><\/p>\n

Integrity is data should be maintained in a correct state and nobody should be able to improperly modify it, either accidentally or maliciously. It should be maintained in a correct state, kept so that it may not be tampered with, and should be correct, authentic, and reliable. A system with integrity keeps data safe from unnecessary changes, whether malicious or accidental. Cybersecurity professionals might implement access levels, enable tracking when making changes, and protect data when transferring or storing it.<\/span><\/p>\n

Availability:<\/b><\/p>\n

Availability-authorized users should be able to access data whenever they need to do so. Just as unauthorized users must be kept out of an organization\u2019s data, data should be available to authorized users whenever they require it. This means keeping systems, networks, and devices up and running. Ensuring availability in data systems can be tricky because it may compete with the other factors in the triad. One of the best ways to protect data is to limit access to it. If you have an information security role, you may have experienced pushback from customers or coworkers about information availability.<\/span><\/p>\n

Differences between Authentication and Authorization:<\/span><\/p>\n

\u201cAuthentication and authorization are fundamental concepts in information security, often used interchangeably due to their similar contexts. However, they serve distinct roles in the security process.\u201d<\/span><\/p>\n

Authentication:<\/b><\/p>\n

Authentication is the procedure that uses the system to verify that users are who they claim to be. These comprise passwords as well as the variety of identity-establishing methods that are available, such as biometrics, security tokens, cryptographic keys, and the like.<\/span><\/p>\n

Authorization:<\/b><\/p>\n

Authorization determines the right to access any data, but it doesn\u2019t mean that all data is accessible to the public. Most operating systems enforce confidentiality in this sense by having many files accessible only by their creators or an admin, for instance.\u00a0 One of the most important ways to enforce confidentiality is establishing need-to-know mechanisms for data access; that way, users whose accounts have been hacked or who have gone rogue can\u2019t compromise sensitive data.<\/span><\/p>\n

Some examples of Authentication and Authorization:<\/b><\/p>\n

    \n
  • Authentication verifies a user\u2019s identity, while authorization determines what that verified user can access within a system.<\/span><\/li>\n
  • Effective access control combines both authentication and authorization to provide a comprehensive security framework that safeguards sensitive data, and critical systems.<\/span><\/li>\n
  • Properly implemented access control reduces the risk of data breaches, ensures compliance with regulations, and enhances overall organizational security and operational efficiency.<\/span><\/li>\n<\/ul>\n

    \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0Work cites<\/b><\/p>\n

    Coursera:<\/b><\/p>\n

    Coursera Staff \u2022 Updated on Nov 29, 2023<\/span><\/p>\n

    What Is the CIA Triad? | Coursera<\/span><\/p>\n

    CSO:<\/b><\/p>\n

    Fruhlinger Josh, in July 12, 2024<\/span><\/p>\n

    What is the CIA triad? A principled framework for defining infosec policies | CSO Online<\/span><\/p>\n

     <\/p>\n<\/div>\n

    SCADA System Write-Up<\/b><\/h2>\n

    BLUF:<\/b><\/p>\n

    SCADA (Supervisory Control and Data Acquisition) are extremely useful in monitoring and controlling critical infrastructure like energy grids, water systems, and transportation networks. Although these systems are essential for normal operation, they are vulnerable to cyberattacks and unauthorized access. Factors such as physical security and measures taken to ensure that critical infrastructure is immune to malware infections are very vital to the integrity of the system.\u00a0<\/span><\/p>\n

    Vulnerabilities with Infrastructure system:<\/b><\/p>\n

      \n
    • Secured physically (have intext citations)\u00a0<\/b><\/li>\n<\/ul>\n

      Physical security represents an elemental aspect of security for SCADA systems. Sabotage would be prevented by ensuring physical security of the \u201ccomponents of these systems, including, but not limited\u201d to, servers and controllers. Common physical controls and measures include fencing, camera surveillance, and restricted access areas.\u00a0<\/span><\/p>\n

        \n
      • Infrastructure (have intext citations)\u00a0<\/b><\/li>\n<\/ul>\n

        \u201cCyberattacks on infrastructure systems can be very damaging\u201d, as the 2015 attack on the Ukraine power grid indicates. These hackers made their way inside SCADA systems, which caused a massive power outage affecting hundreds of thousands of people. Furthermore, this incident also brought to the forefront the urgency for SCADA systems’ protection against any assault that can be either physical or cyber-based<\/span><\/p>\n

          \n
        • Unauthorized access\/virus infections (have intext citations)\u00a0<\/b><\/li>\n<\/ul>\n

          One of the greatest threats to SCADA systems is unauthorized access, which can allow introduction of viruses or malware. An unauthorized breach can be perpetrated by means of phishing attacks, insider threats, or exploitation of published or known software vulnerabilities.\u00a0<\/span><\/p>\n

          Conclusion:<\/b><\/p>\n

          SCADA systems provide a means of monitoring and controlling critical infrastructure, but they are also very susceptible to cyberattacks and unauthorized access. Security of the SCADA systems relies on a combination of physical security, updated software, and monitoring for unauthorized access incidents or malware infections. Connections among infrastructure systems become more intertwined; thus, a proactive approach to the security of SCADA systems is needed to safeguard national security and public safety.\u00a0<\/span><\/p>\n

          References\u00a0<\/b><\/p>\n

          Electrical4u<\/span><\/p>\n

          SCADA System: What is it? (Supervisory Control and Data Acquisition) | Electrical4U\u00a0<\/span><\/p>\n

          AI Assignment: What to do with Cybersecurity??<\/span><\/p>\n

           <\/p>\n

          Analysis of Optimal Placement for the Cybersecurity Department<\/b><\/h2>\n

          Introduction:<\/b><\/p>\n

          In today’s digital landscape, cybersecurity is paramount for safeguarding a company’s assets, reputation, and operational integrity. As your publicly traded company embarks on establishing a cybersecurity program, determining the optimal organizational placement for the new department is crucial. This analysis evaluates the pros and cons of situating the cybersecurity department under four potential areas: Information Technology (IT), Finance, Operations, and direct reporting to the Chief Executive Officer (CEO).<\/span><\/p>\n

          1. Cybersecurity Department Under Information Technology (IT)<\/b><\/p>\n

          Pros<\/b><\/h3>\n
            \n
          1. Alignment with Technical Expertise:<\/b>\n
              \n
            • IT departments possess the technical knowledge and infrastructure necessary for implementing and maintaining cybersecurity measures. Placing the cybersecurity team within IT ensures access to necessary resources and technical support.<\/span><\/li>\n<\/ul>\n<\/li>\n
            • Streamlined Communication:<\/b>\n
                \n
              • Cybersecurity often requires close collaboration with IT for tasks like network security, software updates, and incident response. Proximity facilitates quicker decision-making and efficient problem-solving.<\/span>What happens if the necessary software updates and collaboration aren\u2019t watching their systems and they could potentially get hacked?<\/span><\/li>\n<\/ul>\n<\/li>\n
              • Integrated Strategy:<\/b>\n