Chapter 3 Loss Analysis

Define impact of loss financially and operationally.

9 Losses:

Denial of service (DOS): most common loss
--minimize recovery time

Theft of resources: computing & network usage

Deletion of info: if have backup is only DOS. Log files deleted to cover attacker's tracks.

Theft of info: incl. identity, for personal gain

Disclosure of info to public

Corruption of info: bad info used in decisions.

Theft of software (piracy of commercial or in-house SW)

Theft of hardware: largest area of loss(?)

Disruption of computer controlled systems: hospital, factory, transportation