Computer security and information security are two branches of the same tree so to speak. Computer security can be considered a physical or logical approach to protecting assets that can be attained through computers. Measures taken in the computer security aspect can be anywhere from password protected systems to firewalls blocking incoming traffic to a network. All these measures are taken in an effort to protect the valuable assets on a computer or network. These assets can include information, which brings up the question of, “What is information security then?”. Information security can be applied to a much larger range of applications. A popular example that makes information security stand on its own would be social engineering. Social engineering can be considered one of the largest tools at a hackers disposal, despite not dealing directly with computers themselves. Social engineering is taking advantage of people to get information that would benefit a malicious actor. This information can be anywhere from passwords, security protocols, and even just names of critical people to an organization. Information security is really an application of social science as it deals with people themselves, and how they react to certain situations. With social engineering, one takes advantage of the way people react to certain scenarios which, more often than not, play out exactly as planned. This is because countless research has proven that many people react the same way to various situations. It is in this way, we can consider information security a true application of social science.