Varnost informacijskih sistemov in računalniške zlorabe

delo diplomskega seminarja

Tom Erznožnik (Author), Samo Bobek (Mentor)

Abstract

Informacijske tehnologije v poslovnem svetu omogočajo hitrejše in bolj kvalitetno poslovanje. Praktično informacijske tehnologije srečujemo na vsakem koraku. Vsaka organizacija pa mora za svoje potrebe izbrati prilagojen IS, glede na njeno velikost, panogo v kateri posluje in njihovo naravo dela. Informatika je v organizaciji pomembna predvsem zaradi hrambe in obdelave velike količine podatkov, na podlagi katerih lahko sprejemajo bolj racionalne odločitve. IS v organizaciji je zelo pomemben zaradi hitre prilagodljivosti. Danes prihaja v poslovnem svetu do hitrih sprememb na trgu, zato je zelo pomembno, da lahko IS hitro prilagodimo potrebam. IS lahko prav tako zagotavlja ključne prednosti pred konkurenco. IS lahko tudi integriramo s telekomunikacijami, kar nam omogoča boljšo komunikacijo in nadzor znotraj in zunaj organizacije. Glede na to, da IS upravlja z veliko količino podatkov, je potrebno zagotoviti njihovo varnost. Organizacije se poskušajo zavarovati na različne načine, vendar v večini primerov je dovolj le nekaj nepazljivosti in že lahko pride do izgube podatkov. Izguba podatkov lahko pomeni veliko finančno izgubo, kot tudi izgubo zaupanja strank do organizacije. S hitrim razvojem informacijsko komunikacijskih tehnologij se je množično razmahnil tudi računalniški kriminal. Računalniški kriminal se pojavlja se v mnogih oblikah, zato ga je zelo težko zajeziti oziroma odkriti. Napadalci lahko praktično izvedejo napad od koderkoli, kjer le imajo dostop do interneta, zato niso omejeni le na eno lokacijo. Prav to otežuje odkrivanje napadalcev. Napadalci se velikokrat odločijo tudi za pridobivanje informacij od zaposlenih. Napadalci se izdajajo za nekoga drugega, da od zaposlenih pridobijo informacije, ki jih potrebujejo za vdor v IS. Poznamo več orodij in tehnik, ki nam pomagajo pri izboljšanju varnosti IS. Tako kot se pojavljajo nova orodja in tehnike, tako tudi napadalci iščejo vedno nove načine, da pridejo do želenih podatkov, zato je potrebno nenehno posodabljanje programske in strojne opreme. Človek je še vedno ključen dejavnik pri varnosti IS, saj je najbolj nepredvidljiv. Uporabnik mora torej sam paziti, da napadalcu ne omogoči enostavnejšega vdora v informacijski sistem.

Keywords

informacijski sistemi;računalništvo;varnost;računalniški virusi;digitalno potrdilo;

Data

Language:	Slovenian
Year of publishing:	2012
Source:	Maribor
Typology:	2.11 - Undergraduate Thesis
Organization:	UM EPF - Faculty of Economics and Business
Publisher:	[T. Erznožnik]
UDC:	004.42
COBISS:	11281436
Views:	3327
Downloads:	391
Average score:	0 (0 votes)
Metadata:

Other data

Secondary language:	English
Secondary title:	Information systems security and computer abuses
Secondary abstract:	In a modern, business oriented world, there is a great need for an organization to use a sophisticated information system due to more faster and reliable business flow. As an organization tends to grow, so does his need for improving IS, because logistics and other business significant things in organization gets more complicated. Organization’s IT is also very important particularly because of storage and processing of large amount of data, from which it can make more rational decisions. IS in the organization is very important because of its fast flexibility. Nowadays as the business world makes rapid changes on the market, it’s very important, that the IS can quickly adapt to its needs. IS can also provide significant competitive advantages. IS can be integrated with telecommunication technology, allowing us better and easier communication and control within and outside the organization. Because IS is operating with large amounts of data, is necessary to ensure their safety. Organizations are trying to protect themselves in a variety of ways. Organizations inattention in most cases can lead to data loss. Data loss can result in a great financial loss, as well as loss of customer trust to the organization. Rapid development of ICT (Informations communication technology) has also massively influenced on development of cybercrime. Computer-related crime occurs in many forms, so it is very difficult to restrain or detect. Cyber-criminals can attack from virtually anywhere, they only need to have access to the Internet and they are not limited to only one location. This makes them very difficult to find and identify. Attackers often choose to obtain informations from employees, which they need to infiltrate into the IS. There are several tools and techniques that help us improve the IS security. Because of development of new tools and techniques that help improve the IS security, the attackers are forced into searching for new ways to reach the desired data. Organizations are therefore required to constant update their software and hardware. Human is still a key factor in security of IS, because of it is the unpredictability. The user alone must therefore take precaution and take care that does not enable an attacker to get easily into the IS.
Secondary keywords:	Information systems;information security;cryptography;digital signature;digital certificate;computer crime;internet crime;social engineering;virus;worm;trojan horse;overlap of identity;anti-virus protection;spyware protection;user training;firewall.;
URN:	URN:SI:UM:
Type (COBISS):	Final seminar paper
Thesis comment:	Univ. v Mariboru, Ekonomsko-poslovna fak.
Pages:	51 str.
Keywords (UDC):	science and knowledge;organization;computer science;information;documentation;librarianship;institutions;publications;znanost in znanje;organizacije;informacije;dokumentacija;bibliotekarstvo;institucije;publikacije;prolegomena;fundamentals of knowledge and culture;propaedeutics;prolegomena;splošne osnove znanosti in kulture;computer science and technology;computing;data processing;računalniška znanost in tehnologija;računalništvo;obdelava podatkov;software;programje;computer programming;computer programs;računalniško programiranje;računalniški programi;
ID:	1026323