•  Spyware = a program that sends information
                   about your web surfing habits to a particular
                   web site.
               •  Adware = a program that periodically pops up
                   ads on a user's computer based on the user's
                   surfing habits.
               •  Botnets = used for DDoS or SPAM.
               •  Phishing = a scam to steal personal information
                   typically using e-mail as the bait.
               •  Regression testing = retesting after changes
                   (best to test all components).
               •  Certification = testing the features and
                   safeguards of a system to decide if it is suitable
                   for deployment in the organization.  Sign off by
                   IT staff that a program meets the needs of an
                   organization.
               •  Accreditation = management’s acceptance of a
                   safeguard and risk.

               System Life Cycle
               •  Security should be in the beginning and be
                   included in each stage.
               •  Typical phases:
                   •  Start-up/initiation and planning.
                   •  Acquisition & development/analysis and
                    design
                           •  Programming and testing.
                           •  User acceptance testing.
                           •  Certification and accreditation.
                   •  Implementation = roll out to production.