22
valid
authentication
of
the
system
users
after
they
have
physical
access
to
the
system.
Internal
includes
the
essential
of
system
security,
communication
security, and information security.
•
Protection
is
the
term
of
controlling
user
access
within
the
system.
Files
and
documents
are
not
available
for
all
users
and
are
protected
from
unauthorized
users by using access control scheme.
•
Authentication
is
the
term
of
identification
mechanism
of
communicating
or
accessing
party
to
the
system.
This
requires username together
with
strong
password.
A
good
password
has
at
least
8
combinations of
alphanumeric
characters. Password
location,
both
physically
and
logically,
is
critical
and
password
is
highly restricted to be known by anyone else that
is
not permitted to
use it.
•
Authorization
is
the
term
of
establishing
permission
or
access
allowance
after
successful
validation.
Users are
permitted
to
go through
the system
if
their
system
account
is
valid
in
particular
area.
Access
control
is
also
used
so
as
to
manage
user
authorization depending
on
their
related
locales
by
allowing
or
restricting their access
•
Encryption
is
the
term
of
modification
or
conversion
of
plaintext
into
cipher
or
encrypted
text.
This
is
meant
to ensure that
message
interrupters or
eavesdroppers have
no
chances
to
get
susceptible
information
from
the
transmitted message.
Encryption, along
with decryption process,
is
used
as
basis
of cryptography technique. 128-bit SSL encryption technology
is one of the most
widely used at the present time.
 |