Summary

‚  < ‚  Free Open Study ‚  > ‚  

This chapter has focused on risk analysis and its relationship to incident response. Professionals within the field of computer and information security do not universally agree on the exact meaning of "risk analysis," but at the most basic level, risk analysis means determining the expected amount of loss associated with each source or cause of loss in computing systems and networks. Both quantitative (in which the results are represented numerically ) and qualitative risk analysis can be performed. Major types of risk include break-ins, execution of rogue programs, privilege escalation, exploitation of common gateway interface (CGI) scripts in web servers, denial of service, web defacement, viruses and worms, malicious active content, back doors or remote control programs planted in victim systems, spoofing attacks, and session tampering. Each of these major types of risk has been discussed in some detail.

Data about risks is available from a number of sources. Organizations, for example, might have data concerning security- related incidents within their own computing system and networks. Outside organizations such as CERT/CC and NIPC also make data publicly available.Vulnerability analysis ‚ identifying vulnerabilities in systems, network devices, applications, databases, and so on as well as the potential impact ‚ can also produce data about threats. Risk analysis is important in responding to incidents in that it can help identify areas for which incident response should be assigned the highest priority. This, in turn , will help those involved in incident response to be most prepared to deal with incidents involving these areas.

‚  < ‚  Free Open Study ‚  > ‚  


Incident Response. A Strategic Guide to Handling System and Network Security Breaches
Incident Response: A Strategic Guide to Handling System and Network Security Breaches
ISBN: 1578702569
EAN: 2147483647
Year: 2002
Pages: 103

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net