The Different Aspects of Information Security Education

2022 ◽  
pp. 50-72
Author(s):  
Suchinthi Fernando
Keyword(s):  
Information Technology ◽  
Information Security ◽  
Communication Systems ◽  
Basic Education ◽  
Information Technology Professionals ◽  
Security Education ◽  
Information And Communication ◽  
Subject Areas ◽  
Information Assets ◽  
The Way

This chapter discusses the importance of information security education for everyone, ranging from organizations to professionals and students, all the way through to individual users of information and communication systems. It discusses the different subject areas in information security and shows how instead of being intimidated by it, different categories of users can obtain varying depths of information security education based on their cyber-activities and need for knowledge. Information security professionals would require an in-depth knowledge in all aspects of information security, and information technology professionals and students would require an overall education in these areas, while most users of information and communication systems would only require a basic education to help protect their information assets in cyberspace.

The Different Aspects of Information Security Education

2018 ◽  
pp. 182-204
Author(s):  
Suchinthi Fernando
Keyword(s):  
Information Technology ◽  
Information Security ◽  
Communication Systems ◽  
Basic Education ◽  
Information Technology Professionals ◽  
Security Education ◽  
Information And Communication ◽  
Subject Areas ◽  
Information Assets ◽  
The Way

This chapter discusses the importance of information security education for everyone, ranging from organizations to professionals and students, all the way through to individual users of information and communication systems. It discusses the different subject areas in information security and shows how instead of being intimidated by it, different categories of users can obtain varying depths of information security education based on their cyber-activities and need for knowledge. Information security professionals would require an in-depth knowledge in all aspects of information security, and information technology professionals and students would require an overall education in these areas, while most users of information and communication systems would only require a basic education to help protect their information assets in cyberspace.

Security of ICTs Supporting Healthcare Activities

2013 ◽  
pp. 208-228
Author(s):  
José Manuel Gaivéo
Keyword(s):  
Information Security ◽  
Information And Communication Technologies ◽  
International Security ◽  
Communication Technologies ◽  
Risk Classification ◽  
Organizational Information ◽  
Security Standard ◽  
Information And Communication ◽  
Information Assets ◽  
Level Of Risk

Healthcare activities and all that are related with it are conducted by people. This single fact has brought up many precautions about patients and about information related with their health. Using information and communication technologies to support this kind of information requires particular attention about what happens, namely about who can use it and for what it can be used. This chapter intends to identify the vulnerabilities that could be explored, using an international security standard to support a proactive attitude in face of potential threats that explore the identified vulnerabilities, damaging organizational information assets. Another intention is the establishment of a basis of references in information security to define a level of risk classification to build a referential to the potential that a given threat has to exploit the vulnerabilities of an asset, preventing damages to personal and organizational property, including information, and also activity continuity.

scholarly journals ANALYSIS OF MATHEMATICAL METHODS OF MULTI-CRITERIA OPTIMIZATION AND DYNAMIC MANAGEMENT OF CYBERSECURITY RESOURCES OF INFORMATIZATION OBJECTS

2020 ◽  
Vol 72 (4) ◽  
pp. 162-167
Author(s):  
S.A. Аdiljanova ◽  
◽  
G.A. Тulepberdinova ◽  
M.J. Sakypbekova ◽  
N.A. Тekesbayeva ◽  
...  
Keyword(s):  
Genetic Algorithm ◽  
Information Security ◽  
Communication Systems ◽  
Cyber Attacks ◽  
Security System ◽  
Mathematical Methods ◽  
Dynamic Configuration ◽  
Security Systems ◽  
Dynamic Management ◽  
Information And Communication

The article discusses the possibility of modifying the genetic algorithm (GA) to solve the problems of selection, optimization and management of the dynamic configuration of information security means for the security chain of information and communication systems (ICS). The scientific novelty of the work lies in the fact that GA recommends using the total cost of information loss risks, as well as cost indicators for each class of information security systems as a criterion for optimizing the composition of the information security system. The genetic algorithm is considered as a kind of problem associated with multiple choice when optimizing the choice of information content of information security and solving problems of dynamic management of cybersecurity resources. In this concept, the optimization of the placement of the information security system along the security chain is considered as a modification of the combined backpack problem. The proposed approach allows not only to quickly calculate various versions of software and hardware information systems and their combinations for ICS, but also to dynamically manage the proposed algorithm with existing models and algorithms to optimize the composition of ICS cybersecurity chains and cybersecurity resources of various information objects. It is possible that such a combination of models and algorithms will quickly restore ICS protection by configuring profiles in accordance with the classes of new threats and cyber attacks.

scholarly journals Applying intelligent methods of risk analysis in information communication systems

2019 ◽  
Vol 30 ◽  
pp. 04018
Author(s):  
Maria Maslova
Keyword(s):  
Information Security ◽  
Communication Systems ◽  
Information Technologies ◽  
Modern World ◽  
Information Communication ◽  
Intelligent Analysis ◽  
Modern Methods ◽  
Information And Communication ◽  
Intelligent Methods ◽  
Constant Growth

In the modern world there is a constant growth of information and information technologies, a risk-oriented approach to managing information security of information and communication systems of companies seems increasingly promising. But apart from development, there are threats and risks that affect both the image and the financial component of companies. Therefore, one of the main tasks is to assess, analyze and prevent the risks of information security in information communication systems using modern methods in conjunction with the use of intelligent analysis methods.

scholarly journals Theoretical approaches to the synthesis of discrete signals with necessary properties

Radiotekhnika ◽  
2021 ◽  
pp. 25-32
Author(s):  
I.D. Gorbenko ◽  
A.A. Zamula
Keyword(s):  
Information Security ◽  
Information Exchange ◽  
Communication Systems ◽  
Noise Immunity ◽  
Hadamard Matrix ◽  
General Characteristic ◽  
Software Complex ◽  
Theoretical Approaches ◽  
Discrete Signals ◽  
Information And Communication

Methods for information exchange, formation and processing of data used in information and communication systems (ICS), as well as classes of broadband signals used as a physical data carrier, do not provide the necessary (for individual ICS applications) indicators of cyber and information security, noise immunity of reception signals and secrecy of IKS functioning. Most of the existing systems use signals, the construction of which is based on linear laws, which allows an attacker, based on the establishment of the parameters of the signals used in the system, to carry out deliberate interference in the operation of the ICS with minimal energy consumption. The article presents conceptual approaches to the construction of secure ICS, which determine the need to cover the entire spectrum of information transformations in the complex, and based on the synthesis of signal systems with improved ensemble, correlation, structural properties. A method is proposed for synthesizing discrete derivatives of signals based on nonlinear discrete complex cryptographic signals (CS) and orthogonal signals formed on the basis of the rows of the Hadamard matrix (initial signals),. Based on computer modeling and the performed calculations, it is shown that the derivative signals formed on the basis of cryptographic sequences and rows of the Hadamard matrix have improved properties compared to orthogonal and linear classes of signals. Approaches to the construction are stated and a general characteristic of the hardware-software complex for synthesis, analysis, study of properties, generation, processing of a number of studied signal classes is given. It is shown that the use of such signals will improve such indicators of the system functioning as information security, noise immunity of signal reception and secrecy of functioning.

scholarly journals Model and method for diagnosing computer incidents in information and communication systems based on deep machine learning

2019 ◽  
pp. 32-42
Author(s):  
Albert Malikov ◽  
Vladimir Avramenko ◽  
Igor Saenko
Keyword(s):  
Neural Network ◽  
Artificial Neural Network ◽  
Information Security ◽  
Communication System ◽  
Communication Systems ◽  
Security Breach ◽  
Main Requirement ◽  
Information And Communication ◽  
Artificial Neural ◽  
Hidden Layer

Introduction: Models and methods for diagnosing computer incidents recorded in information and communication systems are the most important components in mathematical support of information security systems. The main requirement for the diagnostics is prompt identification of security violation characteristics. This problem is complicated due to the amount and variability of the initial data on information security violation. Purpose: Development of a model for diagnosing a computer incident, along with a method which would allow you to quickly determine the characteristics of a security violation. Results: Security breach characteristics important for making a decision about responding to an identified computer incident can be determined via deep artificial neural networks. A structural feature of the proposed deep artificial neural network is combining the coding part of the autoencoder and a multilayer perceptron. In addition, the method implements a parallel mode of processing information events which have occurred in the information and communication system before the incident was detected, by using a separate proposed artificial neural network for each secondary characteristic of the security breach. The method of determining the values of these secondary characteristics allows you to greatly improve the diagnostics efficiency, having acceptable values of precision and recall for the security violation characteristics to determine. The dependence has been studied of the completeness and classification accuracy on the number of neurons in the hidden layer. A sufficient number of neurons in the hidden layer for achieving the required training efficiency is experimentally determined. Practical relevance: The developed model and method can be implemented using standard software and hardware (servers) of an information and communication system. Their combined use with the existing models and methods of monitoring and diagnostics can significantly improve the efficiency of an information security system.

I shall, we shall, and all others will: paradoxical information security behaviour

2018 ◽  
Vol 26 (3) ◽  
pp. 290-305 ◽  
Author(s):  
Dirk P. Snyman ◽  
Hennie Kruger ◽  
Wayne D. Kearney
Keyword(s):  
Information Security ◽  
Design Methodology ◽  
Threshold Analysis ◽  
Content Type ◽  
Security Education ◽  
Privacy Paradox ◽  
Possible Cause ◽  
Practical Implications ◽  
The Way

PurposeThe purpose of this paper is to investigate the lemming effect as a possible cause for the privacy paradox in information security.Design/methodology/approachBehavioural threshold analysis is used to test for the presence of the lemming effect in information security behaviour. Paradoxical behaviour may be caused by the influential nature of the lemming effect. The lemming effect is presented as a possible cause of the privacy paradox.FindingsThe behavioural threshold analysis indicates that the lemming effect is indeed present in information security behaviour and may lead to paradoxical information security behaviour.Practical implicationsThe analysis of the lemming effect can be used to assist companies in understanding the way employees influence each other in their behaviour in terms of security. By identifying possible problem areas, this approach can also assist in directing their information security education endeavours towards the most relevant topics.Originality/valueThis research describes the first investigation of the lemming effect in information security by means of behavioural threshold analysis in practice.

Cybersecurity Risks in Romanian Companies

2021 ◽  
pp. 1274-1284
Author(s):  
Anca Gabriela Petrescu ◽  
Marius Petrescu ◽  
Ioana Panagore ◽  
Florentina Raluca Bîlcan
Keyword(s):  
Information Security ◽  
Information Society ◽  
Communication Systems ◽  
The Other ◽  
Security Risk ◽  
Information And Communication ◽  
Information Security Risk ◽  
The One ◽  
Types Of Information ◽  
High Level

During the last period, information and communication systems became an essential component of our society that, at its turn, became more and more dependent on these infrastructures. At the same time, these systems are undergoing a convergence and interconnection process which, besides its benefits come to raise specific threats to their users' interests. Due to the high level of interconnectivity, it is essential that all members of the cyber community to be aware of their responsibilities in information security. Rising awareness is the first step towards a more trustful and credible communication information environment that is a pre-requisite of the information society. This chapter demonstrates, on the one hand, how Romanian organizations are able to optimize their information security risk in order to streamline their activities and, on the other hand, how security mechanisms have to be properly designed and commensurate with the specific threats for the specific types of information.

CHALLENGES FOR PRE-SERVICE PHYSICS TEACHER EDUCATION IN A NORTHEASTERN BRAZILIAN STATE IN PANDEMIC TIMES

2021 ◽  
Author(s):  
Micaías A. Rodrigues ◽  
Keyword(s):  
Teacher Education ◽  
Information And Communication Technologies ◽  
Basic Education ◽  
Communication Technologies ◽  
Physics Teaching ◽  
Digital Platforms ◽  
Public Network ◽  
New Information ◽  
Information And Communication ◽  
The Way

Pandemic has changed the way education has taken place in Brazil, which has occurred remotely. The classes have been taught in the public network especially through lives or WhatsApp. In this paper, the way in which the training activities of the supervised internship and the Pedagogical Residency in the teaching of Physics in schools took place will be addressed. As a result, the abundant use of new information and communication technologies was verified. Resources and methodologies such as digital platforms, simulators, gamification, among others, were used by pre-service teachers during supervised internship and / or Pedagogical Residency activities. With this, pre-service teachers were able to immerse themselves in the current school reality, better understanding how teaching has occurred in this period and to propose activities that could help to improve the quality of teaching offered in basic education schools and in the recycling of in-service teachers, as well as in the motivation of students, too. Keywords: pandemic period, pedagogical residency, physics teaching, supervised internship, teacher education

Security of ICTs Supporting Healthcare Activities

2015 ◽  
pp. 192-212
Author(s):  
José Manuel Gaivéo
Keyword(s):  
Information Security ◽  
Information And Communication Technologies ◽  
International Security ◽  
Communication Technologies ◽  
Risk Classification ◽  
Organizational Information ◽  
Security Standard ◽  
Information And Communication ◽  
Information Assets ◽  
Level Of Risk

Healthcare activities and all that are related with it are conducted by people. This single fact has brought up many precautions about patients and about information related with their health. Using information and communication technologies to support this kind of information requires particular attention about what happens, namely about who can use it and for what it can be used. This chapter intends to identify the vulnerabilities that could be explored, using an international security standard to support a proactive attitude in face of potential threats that explore the identified vulnerabilities, damaging organizational information assets. Another intention is the establishment of a basis of references in information security to define a level of risk classification to build a referential to the potential that a given threat has to exploit the vulnerabilities of an asset, preventing damages to personal and organizational property, including information, and also activity continuity.

Sign in / Sign up

Export Citation Format

Share Document