Please enable JavaScript.
Coggle requires JavaScript to display documents.
LO6: Understand the principles of information systems (6.5 physical…
LO6: Understand the principles of information systems
6.1 principles
confidentiality
info thats only accessed by a person
integrity
info up to date, accurate, correct
availability
info thats always available and usable
6.2 risks
unauthorised or unintended access to data
accidental laws
intentional destruction of data
intentional tampering with data
6.3 impacts
loss of intellectual property, service and access
failure in security of confidential information
loss of information belonging to a third party
loss of reputation
threat to national security
6.4 protection measure
staff access rights
responsibilities of staff for security of information
disaster recovery
information security risk assessment or effectiveness of protection measures
training of staff to handle information
6.5 physical protection
locks, keypads and biometrics
access to rooms (workstations, servers and equipment)
placing computers above known flood levels
backup systems in other locations
security staff
shredding old paper based records
6.6 logical protection
tiered levels of access to data
firewalls
anti-malware applications
encryption
password protection