"Business_and_Economy,Business_to_Business,Security,Business_and_Economy,Shopping_and_Services,Security,business_and_economy,business_to_business,security,training,">

Click here for up to date eavesdropping news and videos

Telephone Eavesdropping and Detection

 

Information Security

Information security deals with several different "trust" aspects of information. Another common term is information assurance. Information security is not confined to computer systems, nor to information in an electronic or machine-readable form. It applies to all aspects of safeguarding or protecting information or data, in whatever form.

The U.S. National Information Systems Security Glossary defines Information systems security (INFOSEC) as:

the protection of information systems against unauthorized access to or modification of information, whether in storage, processing or transit, and against the denial of service to authorized users or the provision of service to unauthorized users, including those measures necessary to detect, document, and counter such threats.

Most definitions of information security tend to focus, sometimes exclusively, on specific usages and, or, particular media; e.g., "protect electronic data from unauthorized use". In fact it is a common misconception, or misunderstanding, that information security is synonymous with computer security—in any of its guises: computer and network security, information technology (IT) security, information systems security, information and communications technology (ICT) security. Each of these has a different emphasis, but the common concern is the security of information in some form (electronic in these cases): hence, all are subsets of information security. Conversely, information security covers not just information but all infrastructures that facilitate its use—processes, systems, services, technology, etc., including computers, voice and data networks, etc.

It is an important point that information security is, inherently and necessarily, neither hermetic nor watertight nor perfectible. No one can ever eradicate all risk of improper or capricious use of any information. The level of information security sought in any particular situation should be commensurate with the value of the information and the loss, financial or otherwise, that might accrue from improper use—disclosure, degradation, denial, or whatever. Bruce Schneier makes this point in Secrets and Lies: information security is about risk management.

Three widely accepted elements (aims, principles, qualities, characteristics, attributes ...) of information security are:

These can be remembered by the mnemonic “CIA”, and is often referred to as the CIA triad.

A simple way to express this is "the right information to the right people at the right time".

A further, generally accepted element is: accountability

Historically, up to about 1990, confidentiality was the most important element of information security, followed by integrity, and then availability. By 2001, changing use and expectation patterns had moved availability to the top of most versions of this priority list. The first goal of modern information security has, in effect, become to ensure that systems are predictably dependable in the face of all sorts of malice, and particularly in the face of denial of service attacks.

Learn More Information Security

There are probably hundreds of books on information security and eavesdropping, but few are written by industry professionals who understand the creative but complex nature of eavesdropping. It is certainly understandable why a reputably successful eavesdroppers and wiretappers who has spent years breaking the laws would not want to write about it. It is also understandable why law enforcement would not write a book explaining how they performed Electronic Eavesdropping operations.

The Red Balloon is produced by one of the worlds leading experts in Electronic Eavesdropping and he is the author on the recognized authoritative text book on the subject. The video’s host is also the only industry expert to teach and coordinate Electronic Eavesdropping programs at a major university and has trained hundreds of corporate security, law enforcement and members of the intelligence community.

The Red Balloon is a two-hour DVD that presents the truly accurate and insightful world of eavesdropping techniques and is a critically acclaimed and award winning video. The ASIS - American Society for Industrial Security gives The Red Balloon a 5 Star Rating. To learn more about information security and what industry professionals have said about The Red Balloon please click here.