Security flaw

From Clinfowiki
Revision as of 01:08, 7 April 2015 by Rorr (Talk | contribs)

Jump to: navigation, search

Security flaws can be a weakness or [1] in the design of an application or in the procedures in using an application. This type of weakness allows attackers to comprise the integrity, availability and confidentiality of a system.[1] Also a security flaw can be know or unknown. With known security flaws it may be possible to create procedure to mitigate those know weaknesses. With unknown security flaws one may not realize there is a weakness until that weakness has been exploited. An example would be a Zero day attack vulnerability which means no-one has seen that method of attack until it occurs.

Security flaws can be related to:

  • Security measures with the organization
  • Physical environment of the system
  • hardware
  • software design
  • communication
  • business operations
  • administration procedures


References

  1. Definition of a Security Vulnerability.https://msdn.microsoft.com/en-us/library/cc751383.aspx