Security Risks

Learn about the types of information exposure risks and explore the factors that determine which security mechanisms should be used.

We'll cover the following

Types of attack
- Passive attacks
- Active attacks
Security risks in a simple scenario
Choosing security mechanisms

Types of attack

We’ll now consider the types of risk to which information is typically exposed. Risks to information can be assessed by identifying different types of possible attacks that can be attempted. These attacks are often classified by the type of action that an attacker is able to perform.

Passive attacks

The main type of passive attack is unauthorized access to data. This is a passive process in the sense that the data and the processes being conducted on that data remain unaffected by the attack.

Note: A passive attack is often likened to ‘stealing’ information. However, unlike stealing physical goods, in most cases, theft of data still leaves the owner in possession of that data. As a result, information theft may go unnoticed by the owner. Indeed, it may even be undetectable.

Get hands-on with 1200+ tech skills courses.

Introduction

Basic Principles

Historical Cryptosystems

Theoretical versus Practical Security

Symmetric Encryption

Public-Key Encryption

Data Integrity

Digital Signature Schemes

Entity Authentication

Cryptographic Protocols

Key Management

Public-Key Management

Cryptographic Applications

Cryptography for Personal Devices

Control of Cryptography

Mathematics Appendix

Closing Remarks

Security Risks

Types of attack

Passive attacks