Professional Documents
Culture Documents
Mama Arb
Mama Arb
Security violations (or misuse) of the system can be categorized as intentional (malicious) or
accidental. It is easier to protect against accidental misuse
than against malicious misuse.
The following list includes several forms
of accidental and malicious security violations. We should note that in our discussion of security, we
use the terms intruder and cracker for those attempting
to breach security. In addition, a threat is the potential for a security violation,
such as the discovery of a vulnerability, whereas an attack is the attempt to
break security.
This vast variety of viruses has continued to grow. For example, in 2004
a new and widespread virus was detected. It exploited three separate bugs
for its operation. This virus started by infecting hundreds of Windows servers
(including many trusted sites) running Microsoft Internet Information Server
(IIS). Any vulnerable Microsoft Explorer web browser visiting those sites
received a browser virus with any download. The browser virus installed
several back-door programs, including a keystroke logger, which records
everything entered on the keyboard (including passwords and credit-card
numbers).