third Cyber Security Assessment Netherlands - NCSC

More documents

Recommendations

Info

Information Information security Information system Integrity Internet of Things IP A set of data (with or without context) stored in thoughts, in documents (on paper, for example) and/or on (electronic, optical or magnetic) digital information carriers. The process in that the quality necessary for information (systems) is established in terms of confidentiality, availability, integrity, irrefutability and verifiability and in that a coherent package of corresponding (physical, organisational and logical) security measures are put in place, maintained and monitored. A connected whole of data collections and the corresponding persons, procedures, processes and software, as well as the storage, processing and communication provisions put in place for the information system. A quality characteristic for data, an object or service in the context of (information) security. This is a synonym for reliability. Reliable data will be correct (have rightfulness), complete (not too much and not too little), prompt (on time) and authorised (edited by a person who is authorised to do so). The catchy name for how the internet not only provides users with access to websites, email and the like, but also to connect devices that use it for functional communication. The Internet Protocol (IP) takes care of addressing data packages so that they arrive at the right target. IPv4/IPv6 IPv4 is a version of IP with a capacity of some 4 billion addresses. IPv6 is its successor, with 3.4×1038 possible addresses, which means 50 billion times one billion times one billion addresses for everyone on earth. ISP Lifecycle management Malware Marking MitM MIVD NCTV NFI NHTCU OSINT OWASP An Internet Service Provider (ISP) provides internet services and is often simply referred to as a ‘provider.’ The services may relate to the internet connection as well as online services. This is a maintenance method designed to allow systems to support business processes as optimally as possible throughout their entire lifecycle. The aim is to improve the continuity and efficiency of production processes. A contraction of ‘malicious’ and ‘software’. As a generic term, malware currently includes viruses, worms and trojans. A designation that indicates a certain approach to be adopted to special information. Man-in-the-middle (MitM) is when the attacker is situated between two parties, for example a web shop and a customer. The attacker masquerades as the shop to the customer and as the customer to the shop. As intermediary, the attacker can eavesdrop on or manipulate the information exchanged. Defence Intelligence and Security Service (Militaire Inlichtingen- en Veiligheidsdienst). National Coordinator for Security and Counterterrorism (Nationaal Coördinator Terrorismebestrijding en Veiligheid), part of the Ministry of Security and Justice. Netherlands Forensic Institute. National High Tech Crime Unit (Dutch National Police). Open Source Intelligence (OSINT) means collating information about an individual by consulting public sources. The Open Web Application Security Project (OWASP) is a not-for-profit worldwide organisation with the goal of improving the security of web applications. 108
Patch Phishing PKI Relevance Remote access Resilience Rootkit RFID SCADA Securing Security incident Sensitive information SSL certificate Skimming Social engineering SOHO Spear phishing A patch (literally a ‘plaster’) may comprise repair software or contain changes that are directly implemented in a program with the purpose of repairing or improving it. An umbrella term for digital activities with the object of tricking people into giving up their personal data. This personal data can be used for criminal activities such as credit card fraud and identity theft. Spear phishing is a variation that targets an individual or a limited group of individuals in an organisation, for example, who are selected specifically for their access rights so as to have the biggest possible effect without being noticed. A Public Key Infrastructure (PKI) is a collection of organisational and technical resources used to reliably process a number of operations, such as encrypting and signing information and establishing the identity of another party. Indicates the connection between the various threats, threat groups and targets. To determine various threat levels in CSAN analyses, ‘low’, ‘medium’ and ‘high’ criteria are applied to incidents and threats. Data processing remotely through a communication connection. The capacity of individuals, organisations or society to resist negative impacts on the availability and/or integrity or (information)systems and digital information. A piece of software that grants an attacker more rights on a computer system and hides its presence from the operating system. Radio frequency identification devices (RFID) are small chips that are able to remotely use radio wave identification to save and/or read out information. RFID tags may be placed on or in objects or living creatures (cat or dog chips). See ICS/SCADA. Protecting against violence, threats, danger or damage by putting measures in place. A security incident (or information security incident) is one or a series of unwanted or unexpected incidents that are significantly likely to cause a disaster, compromise business processes, and pose a threat to security. Information about critical (vital) infrastructure that could be used, if disclosed, to make plans and commit offences with the object of disrupting or destroying critical infrastructure systems. A Secure Socket Layer (SSL) certificate is a file that serves to digitally identify an individual or system. It also contains PKI keys to encrypt data during transport. A known application of SSL certificates are HTTPS-secured websites. The illegitimate copying of data from an electronic payment card such as a cashpoint card or a credit card. Skimming often involves the theft of pin codes with the final objective of making payments or to draw money from the victim’s account. An attack technique that exploits human characteristics such as curiosity, trust and greed with the objective of obtaining confidential information or to induce the victim to perform a particular action. Small Office/Home Office (SOHO) refers to use in home systems and small business offices. See phishing. 109
Page 1:
Cyber Security Assessment Netherlan
Page 4 and 5:
National Cyber Security Centre The
Page 7:
Contents Foreword 3 Summary 7 Intro
Page 10 and 11:
on governmental organisations and b
Page 12 and 13:
However, it is assumed that they ar
Page 15 and 16:
Introduction Information Technology
Page 17:
Core assessment 1 Interests 17 2 Th
Page 20 and 21:
1.2 Dependency IT dependency contin
Page 22 and 23:
Increased IT dependency in electric
Page 24 and 25:
on the internet such as an electric
Page 26 and 27:
approached or incited by states for
Page 28 and 29:
Actor Intentions Skills Targets Sta
Page 30 and 31:
get the script kiddies started. One
Page 32 and 33:
location’, there is no one single
Page 34 and 35:
Furthermore, business information c
Page 36 and 37:
environments often arise from the i
Page 38 and 39:
not only smart phones, tablets or c
Page 40 and 41:
5.3 Technology Norms, guidelines an
Page 42 and 43:
ACM seeks active collaboration with
Page 45 and 46:
Core assessment » 6 Manifestations
Page 47 and 48:
Page 49 and 50:
Page 51 and 52:
Page 53:
Page 57 and 58:
Detailed section » 1 Cyber crime
Page 59: Detailed section » 1 Cyber crime
Page 62 and 63: magnitude of digital espionage inci
Page 65 and 66: Detailed section » 3 Botnets 3 Bot
Page 67 and 68: Detailed section » 3 Botnets » Do
Page 69 and 70: Detailed section » 4 DDoS 4 DDoS
Page 71: Detailed section » 4 DDoS 4.3 Resi
Page 74 and 75: An attacker can abuse devices linke
Page 77 and 78: Detailed section » 6 Grip on infor
Page 79 and 80: Detailed section » 6 Grip on infor
Page 81 and 82: Detailed section » 7 Vulnerability
Page 91: Detailed section » 7 Vulnerability
Page 94 and 95: Leak in the Humannet website belong
Page 96 and 97: In 2012, ACM received a total of 14
Page 98 and 99: car park will not open. It is annoy
Page 100 and 101: 9.6 The resilience of ICS Security
Page 102 and 103: 100 [22: McAfee 2013-2] McAfee: Thr
Page 104 and 105: 102
Page 106 and 107: Incidents Types of government incid
Page 108 and 109: Classification Classified data Clou
Page 112 and 113: Spoofing/IP spoofing SQL injection
Page 114: 112
show all

third Cyber Security Assessment Netherlands - NCSC

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?