Abstract

Computer security is a concept that aims to protect computer systems against all violations, intrusions, damage, or data theft within an information system. This article focuses on data security while guaranteeing security services such as confidentiality, integrity, authenticity, availability, and non-repudiation. Our main objective is to propose a solution that can protect data in an information system. The model proposed in this paper ensures security at two levels: at the local level (protection of the server) with the data's distribution in several classes to ensure real-time availability; and at the network level during the routing or exchange of information. In the context of exchanges, the model integrates biometric authentication to validate the operation and introduces a multi-stage deception technique. This makes it possible to guarantee authenticity and integrity simultaneously. The integration of deception techniques allows us to ensure robust security. In addition, the use of encryption algorithms ensures confidentiality during data exchanges. At each level, we also distinguish between hardware and software protection.