Definition of IT security
The concept of computer security is defined as the set of means which only allows people or other authorized systems to intervene on the system and have access to all data.
A computer system can be protected either logically or physically. However, risks can arise from programs that can install themselves on our computers (such as viruses) or come from a distance (criminals). This is why you need an antivirus.
The objectives of computer security
Computer security has many purposes such as to:
- Block unauthorized disclosure of all data
- Block changes from external sources
- Prevent the use of computer resources
Types of attacks
The attacks can be classified into 2 main categories:
- Passive attacks: that is, being able to listen without modifying the data. They are generally undetectable. (Example: the fact of not deactivating network services not necessary for the user)
- Active attacks: that is, being able to modify data, break into network equipment or disrupt the operation of the network.
An active attack can be executed without having the ability to listen. As well, there is usually no possible prevention for these attacks.
Advice to protect yourself
- Install only one antivirus, otherwise risk of conflict
- A single firewall
- Keep our systems up to date
- Avoid downloading and clicking on all internet links to minimize the risk
Computer security is a task to be taken into account. Obviously, 100% security remains an end to be achieved and a goal to be achieved, especially in the face of the multitude of threats that endanger the operation of an information system.
It is therefore essential to properly formalize a precise security policy by taking into account the real risks of a computer system and by evaluating the costs that may arise from the problems resulting from these risks.