Cyberinsurance

Cyberinsurance covers a number of areas not normally spelled out in traditional policies. These areas include denial-of-service attacks that bring down e-commerce sites, electronic theft of sensitive information, virus-related damage, losses associated with internal networks crippled by hackers or rogue employees, privacy-related suits, and legal issues associated with websites, such as copyright and trademark violations.

Eavesdropping

This term originally referred to simply listening in on a conversation, but now it has taken on digital implications. The interception of e-mail, voicemail or facsimiles now falls under eavesdropping. This type of data collection can present an easier way of obtaining relevant passwords and authentication keys without needing to enter a secure system.

Packet Sniffing

This technique is used to appropriate valid TCP/IP network addresses by reading packets. Malicious code can then be labeled with the trusted network address and sent through the network unquestioned.

網(wǎng)上保險(xiǎn)

網(wǎng)上保險(xiǎn)覆蓋了傳統(tǒng)的保險(xiǎn)政策下通常不涉及的多個(gè)方面。這些方面包括讓電子商務(wù)網(wǎng)站停頓的拒絕服務(wù)攻擊、敏感信息的電子偷竊、與病毒有關(guān)的破壞、因黑客或無(wú)賴雇員造成的內(nèi)部網(wǎng)絡(luò)失效帶來(lái)的損失、與隱私有關(guān)的訴訟以及與網(wǎng)站有牽連的法律問(wèn)題，如侵犯版權(quán)和商標(biāo)等。

偷聽(tīng)

此術(shù)語(yǔ)最初只是指聽(tīng)人對(duì)話，但現(xiàn)在它已有數(shù)字的含義。截獲電郵、聲郵或傳真等都屬偷聽(tīng)。收集這類(lèi)數(shù)據(jù)是一種較容易的、無(wú)需打入保密系統(tǒng)就能獲得有關(guān)口令和認(rèn)證密鑰的方法。

包偵查

此技術(shù)用于通過(guò)閱讀包來(lái)盜用有效的TCP/IP網(wǎng)絡(luò)地址。這樣，惡意代碼可以偽裝成從可信的網(wǎng)絡(luò)地址發(fā)出來(lái)，從而不受懷疑地在網(wǎng)上發(fā)送。