Kraja identitete v kibernetskem prostoru

diplomsko delo visokošolskega strokovnega študija Varstvoslovje

Dejzi Ravas (Author), Igor Bernik (Mentor)

Abstract

Kaj kraja identitete sploh je? Na splošno pomeni, da nekdo prevzame identiteto nekoga drugega z namenom pridobitve določenih koristi. Zloraba identitete je v zadnjem času zelo pogost pojav, cena ki pa jo plača žrtev, pa je lahko zelo visoka. In vse skupaj zelo olajša tudi internet oz. kibernetski prostor, ki ponuja neskončno možnosti in hkrati veliko pasti in nevarnosti za vse njegove uporabnike. Najbolj ranljivi pa so tisti uporabniki, ki so manj izkušeni ali neprevidni. V diplomski nalogi smo preverili, katerih metod se storilci najpogosteje poslužujejo, kako je urejena zakonodaja v Sloveniji na tem področju in kako se lahko uporabniki zaščitijo. Z eksperimentom, kjer smo izvajali socialni inženiring z USB ključi, smo raziskovali, kako so ozaveščeni zaposleni v podjetjih, ki so USB ključ prejeli. V podjetjih, ki smo jih izbrali za eksperiment, smo preverili: - ali imajo vpeljano varnostno politiko na področju informacijske varnosti, - ali imajo v podjetju vpeljan kakršenkoli pravilnik o uporabi informacijske tehnologije, - ali izobražujejo zaposlene na področju informacijske varnosti in - kdo skrbi za njihov informacijski sistem. Rezultati so kljub majhnosti eksperimenta zaskrbljujoči in kažejo, da je ozaveščenost zaposlenih premajhna in kako zelo so pomembna izobraževanja, saj lahko zaradi napake posameznika ogrozijo celotno podjetje.

Keywords

kibernetski prostor;kibernetska kriminaliteta;kraja identitete;socialni inženiring;preprečevanje;diplomske naloge;

Data

Language:	Slovenian
Year of publishing:	2016
Typology:	2.11 - Undergraduate Thesis
Organization:	UM FVV - Faculty of Criminal Justice
Publisher:	D. Ravas]
UDC:	343.3/.7:004(043.2)
COBISS:	3254762
Views:	1165
Downloads:	135
Average score:	0 (0 votes)
Metadata:

Other data

Secondary language:	English
Secondary title:	Identity theft in cyberspace
Secondary abstract:	What identity theft is all about? Generally it means that someone takes someone else's identity in order to obtain certain benefits. Misused identity in recent times is a very common occurrence and the price paid by the victims, can be very high. Identity theft is made easier by the Internet or cyber space, which offers endless possibilities and also many pitfalls and dangers for all its users. The most vulnerable are those users who are less experienced or careless. In this thesis, we check which methods are most often used by the perpetrators, how this area is governed by the laws of Slovenia and how users can protect themselves. The experiments, which were carried out with USB sticks in a social engineeering technique, we investigated how aware employees are in the companies, that have received a USB key. In the companies, that were chosen for the experiment, we checked: - whether they have implemented any security policies in the field of information security, - if the company has introduced any regulations on the use of information technology, - if employees were trained in the field of information security and, - who takes care of their information system. The results are worrying, despite the small size of the experiment, it shows that the employees awareness is lacking.It also shows the critical importance of education, as the individual errors of the employees, undermine the entire enterprise.
Secondary keywords:	Identity theft;security threats;social engineering.;
URN:	URN:SI:UM:
Type (COBISS):	Undergraduate thesis
Thesis comment:	Univ. v Mariboru, Fak. za varnostne vede, Ljubljana
Pages:	48 str.
ID:	9234593