Temp

General Security Goals (CIA)
Confidentiality
Attackers cannot read messages if they intercept them
Integrity
If attackers change messages, this will be detected
Availability
System is able to server users

Protecting
Installing protections: firewalls, IDSs, host hardening, etc.
Updating protections as the threat environment changes
Testing protections: security audits

Responding
Planning for response (Computer Emergency Response Team)
Incident detection and determination
Recovery
Punishment
Fixing the vulnerability that allowed the attack