Introduction to Computer Security

Fundamental Goals of Computer Security Introduction Computer security rests on three core pillars: confidentiality, integrity, and availability. These three goals form the foundation of all security practices and policies in organizations. When designing any security system, the objective is to protect these three dimensions simultaneously. Understanding what each means and how to achieve it is essential to grasping why security measures exist and how they work together. Confidentiality: Keeping Information Secret Confidentiality ensures that sensitive information is accessible only to people who are authorized to see it. Without confidentiality protections, private data—whether personal information, financial records, or trade secrets—could be exposed to unauthorized individuals. To maintain confidentiality, organizations use three primary methods: Passwords serve as the first line of defense by restricting access to accounts and systems. A strong password acts like a key, allowing only the person who knows it to access protected resources. Encryption transforms data into an unreadable form that can only be deciphered with the correct key. Even if an attacker gains access to encrypted data, they cannot understand it without the decryption key. This is particularly important for protecting sensitive data both while it's stored and while it travels across networks. Access-control lists (ACLs) are detailed records that specify exactly which users or groups can access particular resources. Rather than giving everyone the same level of access, ACLs implement a fine-grained approach where different users have different permissions based on their roles and responsibilities. Integrity: Ensuring Data Remains Trustworthy Integrity ensures that data is accurate and hasn't been altered or corrupted by anyone without authorization. A trusted party—such as the data owner or authorized administrator—should be the only one able to intentionally modify data. If someone tampers with data without permission, that tampering should be detectable. Two key techniques help detect unwanted alterations: Checksums work by calculating a unique fingerprint based on the content of data. If even a single bit of data changes, the checksum will be completely different. By comparing checksums before and after transmission or storage, organizations can quickly identify whether data has been altered. Digital signatures provide a stronger guarantee by cryptographically signing data. A digital signature proves both that data hasn't been modified and that it came from a specific trusted source. Think of it like a tamper-evident seal on a package—if the seal is broken, you know someone has opened it. Availability: Ensuring Systems Work When Needed Availability ensures that legitimate users can access systems and data when they need them. A system that is perfectly secret and perfectly accurate but never works when you need it serves no purpose. Availability protections guard against anything that could prevent authorized access, including hardware failures, natural disasters, and malicious attacks. Three methods maintain availability: Redundancy involves duplicating critical systems and infrastructure so that if one component fails, backups automatically take over. For example, a company might maintain multiple servers that perform the same function—if one crashes, the others continue operating without interruption. Backups involve regularly copying data to separate storage locations. If data is lost due to a failure or attack, it can be restored from a backup copy. Protection against denial-of-service (DoS) attacks prevents attackers from overwhelming systems with traffic to make them unavailable. This might involve using specialized hardware, rate-limiting techniques, or services designed specifically to absorb attack traffic. How the Three Goals Work Together Confidentiality, integrity, and availability are interdependent. Compromising any one of them weakens the entire security posture. For instance, an organization that encrypts data for confidentiality must also ensure the encryption system maintains integrity (hasn't been tampered with) and that encrypted data remains available when needed. A holistic security approach requires all three goals to be met simultaneously. Common Threats and Vulnerabilities Understanding the Attack Model To defend against security threats, you need to understand the relationship between threats and vulnerabilities. A vulnerability is a weakness in a system, while a threat is an attempt to exploit that weakness. Attackers exploit vulnerabilities to carry out threats. This distinction is crucial: a vulnerability that no one exploits is less critical than one that attackers actively target. Types of Threats Several common threats target information systems: Malware refers to malicious software designed to damage, disrupt, or gain unauthorized access to systems. Malware includes viruses, worms, trojans, and ransomware—each with different behaviors and targets. Phishing is a social engineering attack where attackers trick users into revealing credentials, clicking malicious links, or downloading infected files. Phishing often uses deceptive emails designed to appear legitimate. The image above shows a typical phishing email pretending to be from a bank. Notice how it creates urgency ("someone unknown may have access") and directs users to click a link to "verify" information—a classic phishing tactic. Hacking refers to unauthorized attempts to gain access to systems, typically through exploiting vulnerabilities or breaking weak security controls. Insider misuse occurs when authorized users—employees, contractors, or partners—abuse their access privileges to cause harm. Unlike external attackers, insiders already have legitimate access, making this threat particularly dangerous. Types of Vulnerabilities Vulnerabilities come in several forms: Software flaws are bugs or design weaknesses in code that attackers can exploit to gain unauthorized access or cause system failures. Common examples include buffer overflows and SQL injection vulnerabilities. Weak passwords allow attackers to guess credentials through brute force or dictionary attacks, gaining unauthorized access to accounts. Misconfigured devices result when systems or software are not properly set up, leaving unintended access points open or security features disabled. <extrainfo> Understanding vulnerabilities helps in defensive design. When you know what types of weaknesses exist, you can proactively identify and fix them before attackers discover them. </extrainfo> Impact of Threats When threats successfully exploit vulnerabilities, the consequences can be severe: unauthorized access to systems, loss or theft of valuable data, service disruption, and damage to organizational reputation. This is why understanding how attackers operate is essential to building effective defenses. Defensive Measures Layered Defenses Organizations cannot prevent all attacks, so they deploy multiple defensive layers. This approach means that if one defense fails, others remain in place to stop attackers. Network-Level Defenses Firewalls form the first barrier by filtering network traffic. They examine incoming and outgoing connections and block traffic that doesn't match approved patterns, preventing unauthorized access from the outside. Intrusion-detection systems (IDS) monitor network activity and alert administrators when they detect suspicious patterns that might indicate an attack. Unlike firewalls that block traffic automatically, IDS systems inform defenders so they can investigate and respond. Host-Level Defenses Antivirus programs run on individual computers and scan for malicious code. They maintain databases of known malware signatures and use behavioral analysis to identify new threats. Recovery and Redundancy When attacks do succeed or systems fail, redundant systems and regular backups enable quick recovery. Redundancy keeps services running during failures, while backups enable restoration of lost data after an incident. Monitoring and Response Continuous monitoring of systems and networks helps identify problems early. Timely response to alerts—investigating suspicious activity quickly and containing incidents—significantly reduces the damage attackers can cause. <extrainfo> The speed of response matters greatly. Studies show that organizations that detect and respond to breaches quickly experience significantly smaller losses than those that take months to discover and respond to incidents. </extrainfo> Core Security Principles Least Privilege The principle of least privilege states that users should have only the minimum access needed to perform their job functions. If someone only needs to read files but not modify them, they shouldn't have write permissions. This limits the damage if an account is compromised—an attacker can only do what that account is authorized to do. Defense in Depth Defense in depth means layering multiple safeguards so that failure of any single control doesn't compromise the entire system. For example, protecting a database might involve: network firewalls, host-based firewalls, strong authentication, encryption, access controls, and monitoring. An attacker must overcome all these layers rather than just one. Patch Management Patch management involves regularly applying software updates and security patches that fix known vulnerabilities. Attackers often target known vulnerabilities that organizations haven't patched. Systematic patching significantly reduces exploitable weaknesses. Secure Configuration Secure configuration means setting up devices and software to minimize vulnerabilities. This includes disabling unnecessary services, closing unneeded ports, and enabling security features. Many security breaches occur not because of advanced attacks but because systems were left in insecure default states. Principle of Secure Defaults Related to secure configuration, the principle of secure defaults means systems should come preconfigured with security enabled. Instead of making administrators turn on security features, security should be on by default and administrators should have to disable it if needed—which most won't do. <extrainfo> The principle of secure defaults is why modern operating systems often have firewalls enabled out of the box, rather than requiring users to turn them on. It acknowledges that not all users will proactively enable security. </extrainfo> The Human Factor in Security Why People Matter Technology alone cannot achieve security. Attackers commonly target the weakest link: people. Users can accidentally expose credentials, click malicious links, or ignore security warnings. Organizations must invest in the human side of security as much as the technical side. Security Awareness Training Security awareness training educates employees about common attack techniques, how to recognize them, and safe practices. Training covers recognizing phishing attempts, handling sensitive information properly, creating strong passwords, and reporting suspicious activity. Effective training measurably reduces security incidents. Strong Password Policies Strong password policies require employees to use complex passwords (mixing uppercase, lowercase, numbers, and symbols) and change them periodically. While not foolproof, strong passwords significantly raise the barrier against password attacks. Countering Social Engineering Social engineering is the art of manipulating people into revealing information or taking actions that compromise security. Common tactics include pretexting (creating a false scenario to build trust), phishing, and baiting (leaving infected USB drives where people will find them). Training users to recognize social engineering attempts—such as unusual requests for credentials, pressure tactics, or appeals to authority—reduces the success of people-focused attacks. Building a Security Culture Ultimately, security culture matters as much as specific policies. When an organization's culture emphasizes security, employees remain vigilant, report suspicious activity, and make security-conscious choices. Leaders must model security awareness and make it clear that security is everyone's responsibility, not just the security team's job. <extrainfo> Research shows that organizations with strong security cultures experience significantly fewer successful attacks, even when compared to organizations with more advanced technical controls but weak cultures. </extrainfo>