Course4all

Cyber Security Basics

Expert Answer & Key Takeaways

Core concepts of Information Security: The CIA Triad, Social Engineering (Phishing), DoS/DDoS attacks, and common security protocols.

Information Security Foundations

Cyber Security is the practice of defending computers, servers, mobile devices, electronic systems, networks, and data from malicious attacks.

1. The CIA Triad

The foundation of all security systems is built on three core principles known as the CIA Triad:
  1. Confidentiality: Ensures that data is accessed only by authorized individuals. (Achieved via Encryption and Passwords).
  2. Integrity: Ensures that the data is accurate, complete, and has not been altered or tampered with during transit. (Achieved via Hashing).
  3. Availability: Ensures that the data and systems are accessible to authorized users whenever they need them. (Achieved via Backups, Firewalls, and load balancing).

2. Common Cyber Attacks

A. Social Engineering (Phishing)

  • Concept: Hackers don't always use code to break into a system; sometimes they just trick the user into opening the door.
  • Phishing: An attacker sends a fraudulent email that looks exactly like it came from a trusted source (like your Bank or Netflix). The email asks you to click a link and log in. The fake website then steals your username and password.

B. Denial of Service (DoS) & DDoS

  • DoS Attack: A hacker floods a target website or server with an overwhelming amount of fake traffic or requests. The server gets overloaded and crashes, making the website unavailable to real users (violates Availability).
  • DDoS (Distributed Denial of Service): Same as a DoS, but the fake traffic comes from thousands of different hacked computers (a Botnet) all around the world at the exact same time. It is much harder to stop.

C. Man-in-the-Middle (MitM) Attack

  • An attacker secretly intercepts and relays communications between two parties who believe they are directly communicating with each other. (Often happens on unsecured public Wi-Fi).

3. Important Security Protocols

  • HTTPS (Hypertext Transfer Protocol Secure): Uses SSL/TLS to encrypt the data sent between your web browser and the website. Prevents MitM attacks.
  • IPsec (Internet Protocol Security): A suite of protocols used to secure IP communications by authenticating and encrypting each IP packet. Widely used for creating VPNs.

Course4All Editorial Board

Verified Expert

Subject Matter Experts

Comprising experienced educators and curriculum specialists dedicated to providing accurate, exam-aligned preparation material.

Pattern: 2026 Ready
Updated: Weekly

Explore More Network Security

Recommended Topic

Cryptography (Symmetric & Asymmetric)

Read Lesson
Recommended Topic

Firewalls & VPNs

Read Lesson
Recommended Topic

Malware (Viruses, Trojans, Worms)

Read Lesson
← Previous TopicMalware (Viruses, Trojans, Worms)