Herrmann and Pridöhl, 2020

Basic Concepts and Models of Cybersecurity

Type

Book Section

Year

2020

Authors

Herrmann, D., Pridöhl, H.

Identifiers

 

Publication

Christen et al., 2020

Pages

11-44

Abstract

This introductory chapter reviews the fundamental concepts of cybersecurity. It begins with common threats to information and systems to illustrate how matters of security can be addressed with methods from risk management. In the following, typical attack strategies and principles for defence are reviewed, followed by cryptographic techniques, malware and two common weaknesses in software: buffer overflows and SQL injections. Subsequently, selected topics from network security, namely reconnaissance, firewalls, Denial of Service attacks, and Network Intrusion Detection Systems, are analysed. Finally, the chapter reviews techniques for continuous testing, stressing the need for a free distribution of dual-use tools. Although introductory in nature, this chapter already addresses a number of ethical issues. For instance, well-intended security mechanisms may have undesired side effects such as leaking sensitive information to attackers. As asymmetries and externalities are at the core of many security problems, devising effective security solutions that are adopted in practice is a challenge.

Links

Citation

Herrmann, D., Pridöhl, H., 2020. Basic Concepts and Models of Cybersecurity, in: Christen, M., Gordijn, B., Loi, M. (Eds.), The Ethics of Cybersecurity, The International Library of Ethics, Law and Technology. Springer International Publishing, Cham, pp. 11–44. https://doi.org/10.1007/978-3-030-29053-5_2


Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.


This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.