This article or section has multiple issues. Please help improve the article or discuss these issues on the talk page. It needs additional references or sources for verification. Tagged since April 2009. Its tone or style may not be appropriate for Wikipedia. Tagged since April 2009. It may need copy editing for grammar, style, cohesion, tone or spelling. Tagged since April 2009. It may require general cleanup to meet Wikipedia's quality standards. Tagged since April 2009.

When a computer connects to a network and begins communicating with others, it is taking a risk. Internet security involves the protection of a computer's internet account and files from intrusion of an unknown user.^[1] Basic security measures involve protection by well selected passwords, change of file permissions and back up of computer's data.

Security concerns are in some ways peripheral to normal business working, but serve to highlight just how important it is that business users feel confident when using IT systems. Security will probably always be high on the IT agenda simply because cyber criminals know that a successful attack is very profitable. This means they will always strive to find new ways to circumvent IT security, and users will consequently need to be continually vigilant. Whenever decisions need to be made about how to enhance a system, security will need to be held uppermost among its requirements.

Internet security professionals should be fluent in the four major aspects:

• Penetration testing
• Intrusion Detection
• Incidence Response
• Legal / Audit Compliance

Contents 1 Anti-virus 2 Anti-spyware 3 Email Security 4 Browser choice 5 Buffer overflow attacks 6 See also 7 References 8 External links

[edit] Anti-virus

Some apparently useful programs also contain features with hidden malicious intent. Such programs are known as Malware, Viruses, Trojans, Worms, Spyware and Bots.

• Malware is the most general name for any malicious software designed for example to infiltrate, spy on or damage a computer or other programmable device or system of sufficient complexity, such as a home or office computer system, network, mobile phone, PDA, automated device or robot.
• Viruses are programs which are able to replicate their structure or effect by integrating themselves or references to themselves, etc into existing files or structures on a penetrated computer. They usually also have a malicious or humorous payload designed to threaten or modify the actions or data of the host device or system without consent. For example by deleting, corrupting or otherwise hiding information from its owner.
• Trojans (Trojan Horses) are programs which may pretend to do one thing, but in reality steal information, alter it or cause other problems on a such as a computer or programmable device / system.
• Spyware includes programs that surreptitiously monitor keystrokes, or other activity on a computer system and report that information to others without consent.
• Worms are programs which are able to replicate themselves over a (possibly extensive) computer network, and also perform malicious acts that may ultimately affect a whole society / economy.
• Bots are programs that take over and use the resources of a computer system over a network without consent, and communicate those results to others who may control the Bots.

The above concepts overlap and they can obviously be combined. The terminology is evolving.

Antivirus programs and Internet security programs are useful in protecting a computer or programmable device / system from malware.

Such programs are used to detect and usually eliminate viruses. Anti-virus software can be purchased or downloaded via the internet. Care should be taken in selecting anti-virus software, as some programs are not as effective as others in finding and eliminating viruses or malware. Also, when downloading anti-virus software from the Internet, one should be cautious as some websites say they are providing protection from viruses with their software, but are really trying to install malware on your computer by disguising it as something else.

[edit] Anti-spyware

There are two major kinds of threats in relation to spyware:

Spyware collects and relays data from the compromised computer to a third-party.

Adware automatically plays, displays, or downloads advertisements. Some types of adware are also spyware and can be classified as privacy-invasive software. Adware often are integrated with other software.

[edit] Email Security

A significant part of the Internet, E-mail encryption is an important subset of this topic.

[edit] Browser choice

Almost 70% of the browser market is occupied by Internet Explorer[1]. As a result, malware writers often exploit Internet Explorer. Often malware exploit ActiveX vulnerabilities. Internet Explorer market share is continuously dropping (as of 2009; see list of web browsers for statistics) as users switch to other browsers, most notably Firefox, Opera and Google Chrome.

[edit] Buffer overflow attacks

A buffer overflow is an attack that could be used by a hacker to get full system access through various methods. It is similar to "Brute Forcing" a computer in that it sends an immense attack to the victim computer until it cracks. Most internet security solutions today lack sufficient protection against these types of attacks.

[edit] See also

• AVG Anti-Virus
• Comodo Internet Security
• Computer security
• Cyberspace Electronic Security Act (in the US)
• Firewalls and Internet Security (book)
• Identity Driven Networking
• Network security policy
• Antivirus software
• Viruslist.com

[edit] References

• Network Infrastructure Security, Angus Wong and Alan Yeung, Springer, 2009.

[edit] External links

• Internet Security and Safety News and tips - Review of the most appropriate security solution for home users.
• Internet Security Concepts - Presentations showing everything from how to secure a home system, to multi-factor authentication, encryption, social engineering, and advanced topics like XSS, IDS and SSL Certificate Hijacking.
• Wireless Safety - Up to date info on the latest security threats, top news stories, and step by step tutorials on how to best protect yourself and family or organization.
• Broadband Reports - FAQs and forums on internet security etc
• PasswordMaker and PwdHash - Firefox & IE browser extensions that transparently converts a user's password into a domain-specific password.
• FoxyProxy - Firefox proxy extension
• Internet security - by JC & Goio (security programs).
• The Internet and Data Security Guide - A to Z Glossary of terms
• Cybertelecom :: Security - surveying federal Internet security work