Passive and active attacks

- [Instructor] The two types of attacks in a computer system…are passive such as sniffing traffic,…and active such as releasing malware…or creating a denial of service.…An attack can be against any of the security services,…confidentiality, integrity,…availability, or authentication.…Let's look at each of these.…Confidentiality is the protection of data…against unauthorized disclosure.…For example, if you're in a medical facility…you wouldn't wanna see unauthorized individuals…looking at patients information.…

Integrity is protection of data…from unauthorized modification.…For example, someone could change his or her salary…from $12 an hour to $20 an hour.…That would be a violation of integrity.…Availability is ensuring data and services…are available to authorized users.…A denial of service attack locks out legitimate users…and it's an attack against availability.…Authentication is assurance that the communicating entity…is who they say they are by verifying the identity…of a user or a device.…

For example, on a network,…