|
Information security is the protection of information from unauthorized access, use, modification and destruction. The physical protection of information system and its components is also included in it. Companies store their information in various forms on computers therefore they need network and computer security to protect it. They have to deal with the confidentiality, integrity and availability of data.
In past information was stored on paper based files so it was easy to protect them. But now companies store and process their information on computers. They use computer networks to transmit information and communicate with each other. In this way the issues of information security have become complex because an individual can access the information logically without entering the premises of a business. The attacks of hackers and intruders are common in these days.
Government, education, hospitals and business organizations store information about their customers, employees, research, products and financial status in computers. Most of the information is confidential and is protected from the competitors and public because it can destroy the company and its business. It is the requirement of business to protect the information from unauthorized access. Moreover information security is a legal and ethical requirement of organizations.
Information systems consist of three components including hardware, software and communication processes among the employees. These components are protected physically, personally and logically. Unauthorized access of the information is controlled through some advanced techniques such as password protection, encryption and cryptography. Moreover some network security options and firewalls help to make your information security system more reliable and secure. The security of information also lies in your approach, methodologies and concentration. The approach, strategies and methods to make your data secure vary on a local area network, World Wide Web and wide area network.
Information security has been developed as a good field for profession in these days. Organizations pay much attention to it because it cannot be ignored for the success of business. Organizations have appointed security specialists to make the security of the information unbreakable. They pay high salaries because they know the importance of information in this competitive world.
The basic principles of information security are confidentiality, integrity, availability and authenticity. Confidentiality is necessary to prevent access of information to unauthorized individuals; for example credit card number. Integrity prevents modification of information by an unauthorized user. The information should be available when it is needed so availability is a necessary principal of information security. In business processes the information, communication and transactions should be authentic.
Access control is an important feature of information security. Only authorized users should be able to access information and unauthorized users should not be able to access, modify or delete information. An individual should have necessary privileges to process and operate data. Users require identification, authentication and authorization to access organizational information.
It is very important for banks, educational institutes, hospitals and business organizations to store necessary information. Without proper and authentic information it would be impossible for them to operate successfully. Information security systems are developed using firewalls, antivirus programs, user access control, cryptography to make the information secure. In this world of technology hackers and intruders are common who remain in search of organizations’ useful information so information system should be effective, secure and reliable.
| 
