21
2.1.5 The Foundation of I.T. System Security
Applying
pertinent
system
security
establishment
is
perceptibly
mandatory
for
every network-based business corporations and organizations. Sensitive and
confidential
information
need to be
intensively
secured
from attackers, and
reliable operating
system
of
network
servers
are
necessary
to
be
properly
maintained
in
order
to
keep
all
main
business
function
and
activity
of
the
organizations going
on.
Here,
not
only
using
manifold
sophisticated multilayered
security
software
and
hardware,
but
also
the
applicable policies of
IT system, standards, and
IT
governance are
taking
the
main roles
in
comprehending
and
realizing
strong
security.
The
essential
objective
of
IT
system
security
is
to
make
certain
that
it
is
able
to
define
identity
(recognition
of
system’s
users),
to
deliver confidentiality (information accessibility to
authorized
users),
integrity
(consistency
of
information),
availability
(information
accessibility
when
needed),
and
to perform audit (verification of security policy).
Conceptually
we
necessitate
in
acknowledging several
basic
terms
of
system
defense and precaution, such as following:
•
Security
is
the
term
of
preventing
harmful
activity
or
misuse
of
the
system.
Viruses,
Trojans,
and
hackers
attacks
are
examples of
security
issue
that
organization have
to
be
concerned
with
so
that
it
will
not
harm
the
system.
Antivirus,
anti-spam,
anti-phishing, anti-spyware, and
firewall
with
updated
signatures
and
engine
consistency
are
highly
required.
Security
in
general
has
three
main
aspects:
external,
interface,
and
internal.
External
incorporates all
physical
characteristics of
system
access
to
the
overall
system
and
network
facility, such as communication lines,
host
machines, etc.
Interface signifies the
 |