Information Security

Essay by Nsession • September 22, 2013 • Essay • 455 Words (2 Pages) • 1,710 Views

Essay Preview: Information Security

prev next

Report this essay

Page 1 of 2

Wk2 Information Security Article Evaluation

Courtney Gardner

CMGT 441

8-19, 2013

Alexander Pons

Wk1 Information Security Article Evaluation

The fact that our lives are now lived in cyberspace, it would seem the best way to track someone would be to monitor their devices. Most will try and combat this by using anti-tracking methods. Being watched by the government is a fear most people share in out digital age, what is you didn't know or if you did what if you couldn't stop it? Well that threat is very real and very much a possibility. The threat of hardware backdoors discussed in the Rakshasa: The hardware backdoor that China could embed in every computer article exposes the methods that can be and are probably currently in use in some form or another.

The article discusses the possibility of a firmware level backdoor that can be introduced into a target system long before it even hits shelves, but it can also be contracted from someone gaining access to a system. These backdoors are lethal for three main reasons; they can't be removed by conventional means such as using antivirus, or by formatting the drive in question; they can circumvent other types of security such as passwords and even bypass encrypted file systems; and finally they can be injected at the time of manufacturing. The firmware backdoor was demonstrated in the Black Hat conference by Jonathan Brossard, and this backdoor is a persistent and very hard for detection to work on it due to the fact it is written using open source tools. This backdoor can give its user deniability in the event it is found, which can gives it an extra enticing appeal for wrong doers. The back door consists of three non-malicious layers, iPXE, SeaBIOS and COREBOOT. Once infected with Rakshasa, the target it uses the Coreboot layer to re-flash the BIOS with a SeaBIOS and iPXE bootkit. The bootkit lays dormant, plus if you add the factor in the use of legitimate tools, malware software won't flag it.

As part of the attack malware is fetched from the web using untraceable links if possible say from an attacker outside or HTTPS from the web. This all can happen by someone gaining brief access

...

Download as: txt (2.6 Kb) pdf (58.9 Kb) docx (9.6 Kb)

Continue for 1 more page »

Read Full Essay Save

Only available on ReviewEssays.com

Similar Essays

Apple - Technological Management and Information Analysis

10 Technological Management and Information Analysis Prof. Uma Mohan, Saleh M. Saleh Student: Hasmik Sargsyan Student ID Number: 0283NMNM1009 Executive Summary The mobile phone industry

3,937 Words | 16 Pages
Computer Security in an Information Age

Computer Security in the Information Age Ronald T. Hill Cameron University Computer Security in the Information Age Computers; they are a part of or

2,408 Words | 10 Pages
Information Security

Method 1: The non-primary MX attack A significant number of spam emails specifically target non-primary MX hosts for domains, for the simple reason that backup

649 Words | 3 Pages
Information Security

PROTECTION OF INFORMATION Abstract: In this paper an overall study of information protection is presented. The state of information and its types also given, methods

2,037 Words | 9 Pages
Huffman Trucking Information Systems Security Review and Upgrade

Huffman Trucking Information Systems Security Review and Upgrade Background and Statement of Need An increasing growth of the Huffman network infrastructure and architecture requires review

3,470 Words | 14 Pages
Biometrics - Why Our Information Is Not Secure?

Is our information Secure or not? August 22, 2008 This paper will cover what the future holds for biometrics. What some of the possible hurdles

643 Words | 3 Pages
Information Security Evaluation Paper

Nowadays, security breaches are prevalent in our environment, both physical and logical. Different types of unauthorized access are conducted by different groups of individuals for

332 Words | 2 Pages
Customer Information Security in the Marketing Field

As internet and cell phones are becoming more important in our lives, it has become obvious that the passage of our personal information is becoming

1,637 Words | 7 Pages