Defending against data exfiltration threats. : D97-4/40-110-2023E-PDF
"According to National Institute of Standards and Technology (NIST), exfiltration is the unauthorized transfer of data from a network, system, or device. Data exfiltration is a tactic used by threat actors to accomplish their objectives, such as data theft, financial extortion and gain (e.g. ransomware or cultivating insider threats), and service disruption. Data exfiltration attacks occur in various forms, including data espionage, user or system credentials theft, financial data theft, digital identity compromise, and data de-anonymization. To protect against these attacks, your organizations should secure your data lifecycle processes (e.g. creation, operation, and destruction) from end to end. In this document, we discuss some known data exfiltration techniques and propose protection strategies that can be deployed to mitigate the impact from such threats"--Overview.
Lien permanent pour cette publication :
publications.gc.ca/pub?id=9.921102&sl=1
| Ministère/Organisme |
|
|---|---|
| Titre | Defending against data exfiltration threats. |
| Titre de la série |
|
| Type de publication | Monographie - Voir l'enregistrement principal |
| Langue | [Anglais] |
| Autres langues publiées | [Français] |
| Format | Texte numérique |
| Document électronique | |
| Note(s) |
|
| Information sur la publication |
|
| Description | 1 online resource (19 pages). |
| ISBN | 9780660480800 |
| Numéro de catalogue |
|
| Descripteurs |
Demander des formats alternatifs
Pour demander une publication dans un format alternatif, remplissez le formulaire électronique des publications du gouvernement du Canada. Utilisez le champ du formulaire «question ou commentaire» pour spécifier la publication demandée.Détails de la page
- Date de modification :