Glossary of Terms

Keyword:
Ciphertext, Computer hacker,Constraint,Digital certificates, E-Commerce, E-Commerce risks, Encryption, Internal firewall,meta-data, Online fraud, Organizational,user security policy/law,Process Management / Scheduling, Proxy Server,Plaintext,Memory Management, Spamming
Ciphertext
the disguised (or encrypted) file or message.

Constraint
There is INTEGRITY CONSTRAINTS on database.Types of integrity constraints
are:
(1) Non-null
(2) Key
(3) Referential integrity
(4) Attribute-based
(5) Tuple-based
(6) General assertions
Example schema:

Student(ID, name, address, GPA, SAT)
Campus(location, enrollment, rank)
Apply(ID, location, date, major, decision)


Example constraints:

- A student with GPA < 3.0 can only apply to campuses with rank > 4.

- All applications with date < 1/1/01 have non-NULL decision.

- Apply.ID and Apply.location appear in Student.ID and Campus.location, respectively.

- Campus.rank < 10.
Computer hacker
 One who illegally gains access to or enters another's electronic system to obtain secret information or steal money.
In computer virus, a person who ˇ°breaks intoˇ± computers without authorizati on, either for malicious reasons or just to prove it can be done.
In data security, an unauthorized user who tries to gain entry to a computer network by defeating the system's access controls.
Digital agreements
An agreement between two or more parties through Internet, not a one that is written on the paper.
Digital certificates
Systems allow people and organizations to electronically certify such features as their identity, their ability to pay, or the authenticity of an electronic document.

E-Commerce
Electronic Data Interchange (EDI) and other technologies, including Electronic Mail (E-Mail), electronic bulletin boards, facsimile machines, and Electronic Funds Transfer.
E-Commerce involves individuals as well as organizations engaging in a variety of electronic business transactions using computer and telecommunication networks.
There are two overall categories of E-Commerce:

  • Business-to-Consumer genre.
  • Business-to-Business commerce
E-Commerce risks
 Broken trust and a damaged reputation on the Internet can affect your organization's ability to successfully raise funds or conduct other activities on the net.
  • theft of data for illicit purposes, e.g., confidential donor lists, donation amounts, donor private information including addresses, etc.
  • internal misuse of data collected through the internet, e.g., an organization may collect and sell a donor¡¯s or user¡¯s private information without the knowledge or consent of the individual or corporation.
  • disruption of service, e.g., denial-of-service attacks may prevent the successful completion of on line transactions.
  • political or social "concerns," e.g., the recent i-jacking of the Nike Web site by an anti-capitalist demanding "global justice" before the World Economic Forum in September.
  • pure technical challenge and notoriety. The desire for technical challenge is manifest in the Web site defacement attacks which often proclaim the ease with which sites were hacked.
Encryption
any process to convert plaintext into ciphertext,to scramble access codes to (computerized information) so as to prevent unauthorized access.

Internal firewall
There are two types of firewalls.

  • Filtering Firewalls - that block selected network packets.
  • Proxy Servers (sometimes called firewalls) - that make network connections for you.

Meta-data
The data of data.
Refer to : http://www.llnl.gov/liv_comp/metadata/index.html

Online fraud
Online services and access to the Internet provide consumers with a wide world of information, and sellers with a new way to promote their products or services. "Cybershopping," "banking online," and other conveniences will spur an increasing number of consumers to do business by computer. But crooks also recognize the potential of cyberspace. The same scams that have been conducted by mail or phone can now be found on the Internet, and new technologies are resulting in new ways to commit crimes against consumers.

Jan.-Oct. 2001 Top 10 Frauds

  • Online Auctions 63%
  • 10% General Merchandise Sales 11%
  • Nigerian Money Offers 9%
  • Internet Access Services 3%
  • Information Adult Services 3%
  • Computer Equipment/Soft. 2%
  • Work-At-Home 2%
  • Advance Fee Loans 1%
  • Credit Card Issuing .6%
  • Business Opportunities/franchises .4%
Organizational,user security policy/law
The best practice is telling your Web site visitors what you are going to do with their information, how it is going to be protected and how you maintain the security of any transactions will provide a clear message to your visitors that you are serious about their trust.Controls exist and are operating effectively to reasonably assure that donors or stakeholder¡¯ private information will be protected from unrelated or unauthorized uses.

Process Management/Scheduling

Refer to : http://www.cs.umsl.edu/~sanjiv/cs376/process/
http://www.freebsd.org/doc/en_US.ISO8859-1/books/design-44bsd/x249.html

Proxy Server
Proxies are mostly used to control, or monitor, outbound traffic. Some application proxies cache the requested data. This lowers bandwidth requirements and decreases the access the same data for the next user. It also gives unquestionable evidence of what was transferred.

How does a proxy server work?
A proxy server receives a request for an Internet service (such as a Web page request) from a user. If it passes filtering requirements, the proxy server, assuming it is also a cache server, looks in its local cache of previously downloaded Web pages. If it finds the page, it returns it to the user without needing to forward the request to the Internet. If the page is not in the cache, the proxy server, acting as a client on behalf of the user, uses one of its own IP addresses to request the page from the server out on the Internet. When the page is returned, the proxy server relates it to the original request and forwards it on to the user.

What are the advantages of using a proxy server?
An advantage of using a proxy server is that its cache can serve all users. If one or more Internet sites are frequently requested, these are likely to be in the proxy's cache, which will improve user response time. In fact, there are special servers called cache servers.
Memory Management
If a process references a part of its address space that is not resident in main memory, the system pages the necessary information into memory. When system resources are scarce, the system uses a two-level approach to maintain available resources. If a modest amount of memory is available, the system will take memory resources away from processes if these resources have not been used recently. Should there be a severe resource shortage, the system will resort to swapping the entire context of a process to secondary storage. The demand paging and swapping done by the system are effectively transparent to processes. A process may, however, advise the system about expected future memory utilization as a performance aid.

 Refer to: http://www.freebsd.org/doc/en_US.ISO8859-1/books/design-44bsd/x312.html
Plaintext
The original message or file. After a file or message has been encrypted and then decrypted you should end up with the original file or message.
Spamming
 Spam is flooding the Internet with many copies of the same message, in an attempt to force the message on people who would not otherwise choose to receive it. Most spam is commercial advertising, often for dubious products, get-rich-quick schemes, or quasi-legal services. Spam costs the sender very little to send -- most of the costs are paid for by the recipient or the carriers rather than by the sender.
Close Window