Beruflich Dokumente
Kultur Dokumente
Chapter 9
9-1
Learning Objectives
Identify and explain controls designed to protect the
confidentiality of sensitive information.
Identify and explain controls designed to protect the privacy of
customers personal information.
Explain how the two basic types of encryption systems work.
9-2
Encryption
Protect information in transit and in storage
Access controls
Controlling outgoing information (confidentiality)
Digital watermarks (confidentiality)
Data masking (privacy)
Training
Copyright 2015 Pearson Education, Inc.
9-3
Notice
Provide notice of privacy policies and
practices prior to collecting data
Collection
Only collect needed information
Access
Customer should be able to review,
correct, or delete information collected on
them
Quality
Monitoring and enforcement
Procedures in responding to complaints
Compliance
9-4
Encryption
Preventative control
Factors that influence encryption strength:
Key length (longer = stronger)
Algorithm
Management policies
Stored securely
9-5
Encryption Steps
9-6
Types of Encryption
Symmetric
Asymmetric
9-7
9-8
Key Terms