先决条件 – 系统安全
从安全的角度来看,威胁和攻击是两个重要的事件。从网络安全的角度理解两者之间的区别非常重要。
威胁是一种可能的安全违规行为,可能会利用系统或资产的漏洞。威胁的来源可能是意外、环境(自然灾害)、人为疏忽或人为失误。不同类型的安全威胁是中断、拦截、制造和修改。
攻击是对系统或资产故意进行的未经授权的操作。攻击可分为主动攻击和被动攻击。攻击是有动机的,当机会出现时会遵循一种方法。
威胁和攻击的区别是:
| S.NO | THREAT | ATTACK | |
|---|---|---|---|
| 1 | Can be intentional or unintentional | Is intentional | |
| 2 | May or may not be malicious | Is malicious | |
| 3 | Circumstance that has ability to cause damage | Objective is to cause damage | |
| 4 | Information may or may not be altered or damaged | Chance for information alteration and damage is very high | |
| 5 | Comparatively hard to detect | Comparatively easy to detect | |
| 6 | Can be blocked by control of vulnerabilities | Cannot be blocked by just controlling the vulnerabilities | |
| 7 | Can be initiated by system itself as well as outsider | Is always initiated by outsider (system or user) |