Elements of Computer Security - Research Paper Example

Running Head: Elements of Computer Security Elements of Computer Security [Institute’s Elements of Computer Security Without any doubts, the key purpose of any computer security system is to ensure that its users and stakeholders could be a part of a safe and reliable computing environment. With the increasing usage of computers and their ever-increasing role in human lives, computer security has become an area of great concern for organizations, institutions and even individuals (Gollmann, 2011).

This paper is an attempt to explore the key elements of computer security in light of the concerning available literature. Availability has been identified as one of the most important elements of a computer security system. Quite understandably, computers have become critical to humans in so many different ways that our lives are dependent upon them. The last thing that a computer user would expect is the failure of its computer security system at any given moment. Computer security systems are employed for constant, fulltime, and round the clock security and not on temporary basis (Lehtinen, Russell & Gangemi, 2006).

Consider the example of the security systems, which failed to protect their host computers from the outbreak of CIH virus that using deleting bits and parts of flashable BIOS areas. The experts claim that the security system was intact although, it failed to perform at those given moments due to technical reasons. The same is no longer acceptable today. Therefore, availability remains a key element of the computer security system (Shim, Qureshi & Siegel, 2000). Computer security systems should also attempt towards maintaining a balance between security and confidentiality of the members of the system.

It is highly likely that every system will face or provoke a certain degree of conflict between the management and experts trying to secure the system by leaving no stone unturned and users would try to ensure that they face minimum interference in their private lives or minimum exposure of their confidential information. Organizations and managers then have to find a middle ground between the demands of both the parties (Bishop, 2003). Therefore, “privacy” is yet another crucial element of computer security.

Furthermore, “confidentiality” also is a corresponding element to privacy, which refers to ensuring the fact that unauthorized people or outsiders should not get the chance to access the confidential information. There are no doubts in the fact that leakage of confidential information to outsiders or people with other motives may result in extreme damages to businesses and personal lives (Lehtinen, Russell & Gangemi, 2006). Much of the concerned literature about computer security recognizes “integrity” as an important element of computer security.

Quite understandably, computers hold information and data and any corruption, alteration or deletion of the data may decrease the value of the information greatly (Bishop, 2003). Losing data of any sort can be extremely devastating since in many cases, it becomes almost impossible to recover that data or prove that the recovered data is authentic and reliable. Therefore, the expectation from any computer security is that it protect that information in such a way that it remains intact at all times (Lehtinen, Russell & Gangemi, 2006).

Another less widely discussed element of computer security is its “cost effectiveness”. Organizations usually spend hundreds and thousands of dollars on ensuring that their computer security systems are effective enough to secure them from threats. However, equally important is to assess its efficiency (Gollmann, 2011). A computer security system trying to prevent the fire may be costing the company in thousands of millions but on the other hand, fire fighting with the threats that have already affected the computer may cause the company only a few hundreds of dollars.

Therefore, it is important to ensure that the security system is providing more benefits than the direct and indirect costs incurred by the institution or organization in employing that security system (Shim, Qureshi & Siegel, 2000). A soft element of computer security is “deterrence”. With a security system in place, one can observe lesser chances that people will actually step up to try that security system. Placing the security system provokes a sense of fear amongst the potential hackers.

If any system fails to do the same, then it either means that there are problems with the system itself or perception of the people regarding its strength and effectiveness are not up to the mark (Lehtinen, Russell & Gangemi, 2006). Recent writers and experts on the subject matter also stress “periodic reassessment” as an important element of computer security. The security requirements and dynamics are quickly changing and users today are facing threats, which were not even in the wildest dreams of the experts from the past (Bishop, 2003).

The last thing that any security system would want is to become predictable to its users and more importantly, to potential hackers and outsiders. Therefore, it is better to reassess the system from time to time so that the administrators are ready to fix the shortcomings and loopholes themselves rather than doing the same after the damage has been done (Shim, Qureshi & Siegel, 2000). References Bishop, M. (2003). Computer security: art and science. Addison-Wesley Professional. Gollmann, D. (2011).

Computer Security. John Wiley and Sons. Lehtinen, R., Russell, D., & Gangemi, G. T. (2006). Computer security basics. O'Reilly Media, Inc. Shim, J. K., Qureshi, A. A., & Siegel, J. G. (2000). The international handbook of computer security. Global Professional Publishers.