Role-based access control

MIS101 – Assignment Template – Trimester 1, 2015 Your Name: Costa Banias Student Number: 215162709 Deakin Email: cbanias@deakin.edu.au Assignment – Part A Question 1: Provide a brief explanation of each of the following security terms and provide an example of each. (~250 Words) o Something the user is, also known as biometrics is a type of authentication system that examines person’s natural physical characteristics. There are various applications that can be undertaken such as retina scans,…

target. Once there was a cyber attack on eBay database. This made the hackers can access to get the user’s personal information and password. The eBay has indicated that the database was safe because the Paypal information were in the another individual database (eBay, n.d.). Although it did not cause the Paypal information disclosure, the experts have warned about the eBay account holders which the hacker still can access their data in order to commit an identity fraud. The online bank…

This protocol is a variation of HTTP that provides the secure foundation for SSL transmission. S-HTTP performs what is known as a handshake when establishing a connection to exchange keys and creates an encrypted connection. Addresses to an SSL secure page use the prefix "https" instead of the common "http." Therefore, a secure page address would read https://www.hotmail.com The public-key system requires that each party have a public and a private key. These keys must be generated by a trusted…

stolen. o Using remote shutdown technique on stolen or missing devices that ensure that there is no breach of data using that device. • TECHNICAL SAFEGUARD: It is the automated process to ensure that the data is protected and there is a controlled access to rete rive the data. o Installing firewalls and encrypting the data that is being…

network and those only authorised are granted access. This should only be controlled through environmental physical of the network. The people in Kirby College must install security systems located around the important parts of the building, as this will prevent any security servers and network breach which will stop unauthorised users. The security level must be configured on users account so that staff and students in Kirby College can only access certain information that match the security…

The goal of an APT is to gain access into the power grid network and collect as much information as possible. They use the exfiltration techniques that allow them to transfer sensitive information to their data-miner area also know as Command and Control Center. It is important for the APT to mask the data to resemble normal network traffic so that it detection can be made difficult or almost impossible (Cruz, 2013). Method for data exfiltration includes: Backdoors: This method used by the…

with the government. For some members needing access to Secret or higher information a background check is conducted to determine eligibility for clearance. Once eligibility is positively determined the member is issued a separate CAC that allows access to what is called a “Red” line system. To shed light on government access control, a green line allows access to the internet we all see unless restricted by security managers, a red line allows access to secret and higher information. These…

the importance of the Industrial Control Systems (ISC) in our daily life whether it is related to power, transport, water, gas, and other critical infrastructures. Each of these infrastructures is needed at all time and any downtime could be disastrous for the persons and businesses. The following safeguards will help the Western Interconnection power grid as well as any other entity that uses ICS from running a safe system while keeping attackers away on under control. • Developing a strict…

P3: Describe how software and network security can keep systems and data secure In every single large organisation, security of data and system are very important. I will describe how network security and software are able to keep the data and systems secure. I will write about alternative network security methods and software which every single company should use. I will also explain these terms to show a better understanding of how important it is ti protect data and system which an…

as the CIA triad. This triad is used a as guide for computer and information security in many organizations. Confidentiality is privacy. (Rouse, 1999) Its role in the triad is to make sure items that are supposed to private stay that way. But it doesn’t keep those items from those that are supposed to have them. Information access is restricted and categorized by the damage it could cause. (Rouse, 1999) But the CIA triad are not just for information security. It can also used for…