Chapter 1: Cyber Security Introduction

CYS401: Fundamentals of Cyber Security

📋 Table of Contents

📚What is Cyber Security?

Definition: Cyber security is the protection of internet-connected systems, including hardware, software, and data, from cyberattacks.

💡 Quick Tip

Remember: Cyber security is not just about technology - it involves People, Processes, and Technology working together!

Key Security Dimensions

🎯The CIA Triad - Core Security Goals

The foundation of information security rests on three critical pillars:

🔒 Confidentiality

Preventing disclosure to unauthorized individuals or systems.

  • Examples: Credit cards, PII, Health records
  • Protection: Encryption, Access controls

✅ Integrity

Ensuring data is accurate, complete, and authorized.

  • Protection from corruption or unauthorized changes
  • Methods: Checksums, Digital signatures

🚀 Availability

Ensuring authorized users can access information when needed.

  • Right time, right place, right format
  • Methods: Redundancy, Backups

📝 Exam Example

Question: While a breach of confidentiality always results in a breach of ownership, a breach of ownership does not always result in a breach of confidentiality. Is this correct?

Answer: Yes! If someone reads your confidential data (breach of confidentiality), they now possess it (breach of ownership). But if someone steals encrypted data (breach of ownership), they may not be able to read it (no breach of confidentiality).

🔧Additional Security Characteristics

Beyond the CIA triad, consider these important characteristics:

Accuracy

Free from errors and meets user expectations

Authenticity

Genuine and original, not a reproduction

Utility

Valuable and useful for its intended purpose

Possession

Ownership or control of information

🖥️Five Components of an Information System

1. Software

Most difficult to secure due to bugs and vulnerabilities

2. Hardware

Physical technology requiring locks and access controls

3. Data

Most valuable asset and main target of attacks

4. People

Often the weakest link - requires training and awareness

5. Procedures

Written instructions that must be protected

⚠️ Important to Remember

People are often considered the weakest component in an IS environment. This is why security awareness training is crucial!

📊The McCumber Cube Model

A three-dimensional model showing the interconnections among different information security factors:

Three Dimensions of Security

Security Goals
  • Confidentiality
  • Integrity
  • Availability
Information States
  • Storage (Data at Rest - DAR)
  • Transmission (Data in Transit - DIT)
  • Processing
Security Controls
  • Policy & Practices
  • Education & Training
  • Technology

🛡️Defense-in-Depth Strategy

Cyber security aims to build multiple layers of protection. Each layer provides a barrier against different types of threats:

Physical Layer: Guards, locks, tracking devices
Perimeter: Firewalls, border routers, VPNs with quarantine procedures
Network: Network segments, NIDS (Network Intrusion Detection Systems)
Host/Computer: OS hardening, authentication, antivirus updates, auditing
Application: Application hardening, secure coding practices
Data: Strong passwords, ACLs, backup and restore strategy

📝 Past Exam Question

Q: Defense in depth is used to provide a protective multilayer barrier against various forms of attack.

A: TRUE - This is the fundamental principle of defense in depth!

🔄SDLC vs SecSDLC

Understanding the difference between traditional System Development Life Cycle and Security-focused SDLC:

Traditional SDLC

Requirements Analysis
System Design
Implementation
Integration & Deployment
Operation & Maintenance

SecSDLC (Security-Enhanced)

Planning & Risk Assessment
Security Requirements Analysis
Security Planning & Design
Secure Implementation
Security Testing & Monitoring

💡 Key Difference

SecSDLC identifies specific threats and creates specific controls to counter those threats at EVERY phase, not just as an afterthought!

🎓Practice Questions from Past Exams

Question 1: What is layer 4 of the OSI model?

  • a. Presentation
  • b. Network
  • c. Data Link
  • d. Transport ✓

Question 2: What is a TCP wrapper?

  • a. An encapsulation protocol used by switches
  • b. An application that can serve as a basic firewall by restricting access based on user IDs or system IDs ✓
  • c. A security protocol used to protect TCP/IP traffic over WAN links
  • d. A mechanism to tunnel TCP/IP through non-IP networks

Question 3: Which of the following is NOT true regarding firewalls?

  • a. They are able to log traffic information
  • b. They are able to block viruses ✓
  • c. They are able to issue alarms based on suspected attacks
  • d. They are unable to prevent internal attacks

Note: Firewalls primarily control network traffic, not virus detection!

🚀Tips & Tricks for Success

📌 Memory Aid for CIA Triad

Can I Access? - Think of it as a question about your data:

  • Confidentiality - Can only the right people see it?
  • Integrity - Is it accurate and unchanged?
  • Availability - Can I access it when needed?

🎯 Exam Strategy

  • Always think "Defense in Depth" - multiple layers are better than one
  • Remember: People are the weakest link, technology is just a tool
  • SecSDLC = SDLC + Security at every phase
  • When in doubt, think about the CIA triad

🔍 Common Exam Topics

  • Difference between confidentiality and possession
  • Components of information systems (especially the weakest one)
  • Defense-in-depth layers
  • CIA triad applications
  • SDLC vs SecSDLC differences

📊Quick Reference Summary

Essential Formulas to Remember:

  • Cyber Security = Protection of Internet-connected systems
  • Information Security = CIA + Accuracy + Authenticity + Utility + Possession
  • Defense in Depth = Physical + Perimeter + Network + Host + Application + Data
  • SecSDLC = SDLC + Security considerations at each phase
  • IS Components = Software + Hardware + Data + People + Procedures

📝 Key Takeaways

  • CIA Triad is the foundation of all security
  • People are the weakest link in security
  • Defense in Depth provides multiple layers of protection
  • SecSDLC integrates security at every phase

Created by Shoug Alomran | CYS401 Summary Guide

© Study Smart, Not Hard! 🎓