third Cyber Security Assessment Netherlands - NCSC

More documents

Recommendations

Info

Classification Classified data Cloud/Cloud services Compromise Confidentiality Cookie COTS CPNI.NL CVE Cyber crime Cyber security Data breach/data leak De-Googling DCS (D)DoS DigiD DNS DNSSEC Establishing which data constitute special information and specifying the level of security necessary for this information. Data, including documents or materials that a party or user identifies as in need of protection against unlawful publication, identified as such in a security classification. An internet (the ‘cloud’) based model for system architecture that mainly involves the use of Software as a Service (SaaS). Familiarisation, or the possibility for an unauthorised party to familiarise himself, with classified information. A quality characteristic of data in the context of information security. Confidentiality can be defined as a situation in which data may only be accessed by someone with the authorisation to do so. The owner of the data in question will decide who will have this authorisation. A cookie is information that a web server saves on the end-user’s computer. This information can then be retrieved by the web server the next time the end-user connects to the server. Cookies can be used to save user settings or to track the user. Commercial Off-The-Shelf (COTS) refers to ready-to-use software and hardware products on sale to the public. Centre for Protection of the National Infrastructure (CPNI.NL) is the Dutch platform for cyber security, facilitated by the TNO. Common Vulnerabilities and Exposures (CVE) is a unique common identification of publicly known data security vulnerabilities. Form of criminality that targets an IT system or the information it processes. Cyber security protects against the danger of harm caused by the misuse, disruption, or failure of IT. The danger or harm can cause restrictions to the availability and reliability of systems, and infringement of confidentiality or harm to the integrity of information stored on the systems. The intentional or unintentional release of confidential data. Removing information on people or businesses from the internet with the aim of ensuring that this content no longer appears in search results. The Cyber Security Directorate (DCS), including the NCSC, is part of the NCTV. (Distributed) Denial of Service term for a type of attack in which a particular service (e.g. a website) becomes unavailable to the usual consumers of the service. DoS attacks on websites are often performed by bombarding websites with huge amounts of network traffic, so that they become unavailable. Contraction of Digital Identity, used to identify and authenticate citizens on government websites. It allows government institutions to ascertain whether they are really dealing with the individual in question. The Domain Name System (DNS) links internet domain names to IP addresses and vice versa. For example, the web address or URL (uniform resource locator) named ‘www.ncsc.nl’ represents IP address ‘62.100.52.109’. DNS Security Extensions (DNSSEC) add authenticity and integrity controls to the existing DNS system. 106
Document ECTF Encryption End-of-life EMV Exploit/exploit code File inclusion Fuzzing GPS GSM Hacker/Hacking HTML ICS/SCADA iDeal Identity fraud Incident This term covers letters, notes, memos, reports, presentations, drawings, photos, films, maps, sound recordings, text messages, digital carriers (CD-ROMs and USB) or any other physical medium that can contain information. The Electronic Crimes Taskforce (ECTF) is a partnership between the National Police, the Public Prosecution Service, the banks and CPNI.NL, also known as the ‘bank team’. The ECTF has a facilitating role in dealing with cyber crime targeted at the financial sector. Coding that locks information so that it cannot be read by unauthorised parties. In the software sector, the end of a product’s life is the moment when it is no longer considered current by the vendor. When software reaches end-of-life, the vendor will generally no longer release updates or provide support for it. Europay MasterCard Visa (EMV) is a standard for debit card systems using chip cards and chip card pay terminals. The chip card has replaced cards with an easy-to-copy magnetic strip. Software, data or a series of commands that exploit a hardware/software vulnerability for the purpose of creating unintended or unexpected behaviour in that software or hardware. Means of attack used primarily with web applications where a user can add a file with own code so as to influence the application’s operation. Providing deliberately incorrect (input) information to a system to determine how it handles incorrect input. The satellite-based, Global Positioning System (GPS) is precise to within several metres. GPS is used for applications such as navigation. Global System for Mobile Communications (GSM) is a standard for digital mobile telephony. GSM is considered a second-generation mobile phone technology (2G). The most conventional definition of a hacker, and the one used in this document, is someone who attempts to break into computer systems with malicious intent. Originally, the term hacker was used to denote someone using technology (including software) in unconventional ways, usually with the objective of circumventing limitations or achieving unexpected effects. Hypertext Mark-up Language (HTML) is used to define aspects of documents, mainly intended for building webpages. Industrial Control Systems (ICS)/Supervisory Control And Data Acquisition (SCADA) are measurement and control systems used to control industrial processes, for example, or building management systems. ICS and SCADA systems collect and process measurement and control signals from sensors in physical systems and steer the corresponding machines or devices. iDeal is an online payment service allowing users to pay online directly through their own bank’s internet banking web site. Deliberately creating the appearance of a different identity than one’s own with malicious intent. A (cyber) incident is a disruption of IT services where the expected availability of the service disappears completely or in part. It can also be the unlawful publication, obtaining and/or modification of information stored on IT services. 107
Page 1:
Cyber Security Assessment Netherlan
Page 4 and 5:
National Cyber Security Centre The
Page 7:
Contents Foreword 3 Summary 7 Intro
Page 10 and 11:
on governmental organisations and b
Page 12 and 13:
However, it is assumed that they ar
Page 15 and 16:
Introduction Information Technology
Page 17:
Core assessment 1 Interests 17 2 Th
Page 20 and 21:
1.2 Dependency IT dependency contin
Page 22 and 23:
Increased IT dependency in electric
Page 24 and 25:
on the internet such as an electric
Page 26 and 27:
approached or incited by states for
Page 28 and 29:
Actor Intentions Skills Targets Sta
Page 30 and 31:
get the script kiddies started. One
Page 32 and 33:
location’, there is no one single
Page 34 and 35:
Furthermore, business information c
Page 36 and 37:
environments often arise from the i
Page 38 and 39:
not only smart phones, tablets or c
Page 40 and 41:
5.3 Technology Norms, guidelines an
Page 42 and 43:
ACM seeks active collaboration with
Page 45 and 46:
Core assessment » 6 Manifestations
Page 47 and 48:
Page 49 and 50:
Page 51 and 52:
Page 53:
Page 57 and 58: Detailed section » 1 Cyber crime
Page 59: Detailed section » 1 Cyber crime
Page 62 and 63: magnitude of digital espionage inci
Page 65 and 66: Detailed section » 3 Botnets 3 Bot
Page 67 and 68: Detailed section » 3 Botnets » Do
Page 69 and 70: Detailed section » 4 DDoS 4 DDoS
Page 71: Detailed section » 4 DDoS 4.3 Resi
Page 74 and 75: An attacker can abuse devices linke
Page 77 and 78: Detailed section » 6 Grip on infor
Page 79 and 80: Detailed section » 6 Grip on infor
Page 81 and 82: Detailed section » 7 Vulnerability
Page 91: Detailed section » 7 Vulnerability
Page 94 and 95: Leak in the Humannet website belong
Page 96 and 97: In 2012, ACM received a total of 14
Page 98 and 99: car park will not open. It is annoy
Page 100 and 101: 9.6 The resilience of ICS Security
Page 102 and 103: 100 [22: McAfee 2013-2] McAfee: Thr
Page 104 and 105: 102
Page 106 and 107: Incidents Types of government incid
Page 110 and 111: Information Information security In
Page 112 and 113: Spoofing/IP spoofing SQL injection
Page 114: 112
show all

third Cyber Security Assessment Netherlands - NCSC

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?