Discretionary access control and mandatory access control, Risk Management

Assignment Help:

Question:

(a)

(i) Explain what is meant by Discretionary Access Control and Mandatory Access Control.

(ii) What is the difference between the two types of access control?

(iii) Which method would be the most effective to ensure that users do not share files with other users not approved for access?

(b) Outline the three differences between the Liberty Alliance specification and the Microsoft .NET Passport System.

(c) Which of the following options below would be the MOST effective solution for preventing individuals outside the organization from modifying sensitive information on a corporate database. Explain the reasons for choosing one option and for rejecting the other two options.

Option 1: Screened Subnets
Option 2 : System access logs
Option 3: Role based access controls

(d) (i) Where should the Intrusion Detection System be placed on a network?

(ii) Identify one main weakness of signature based Intrusion Detection Systems.

(iii) Explain what is the main objective of network mapping when conducting a penetration test?

(iv) When is the best time to perform a penetration test?


Related Discussions:- Discretionary access control and mandatory access control

Insurance, insurance is a pool of risk?discuss

insurance is a pool of risk?discuss

HW, From CMEGROUP website – Look up / Report a FUTURES closing price...

From CMEGROUP website – Look up / Report a FUTURES closing price over 3 consecutive days, and determine your $$ Profit or Loss each of the 2 in-between days. Assume you

Show security market line, Q. Show Security market line? The CML repres...

Q. Show Security market line? The CML represent the equilibrium relation between the expected return and standard for efficient portfolio. But it does not indicate how individu

Risk management strategy, The risk register and risk management strategy sh...

The risk register and risk management strategy should justify and report on the rationale of the register, priority and its management . Guidelines Risk  is assessed

Show additively of betas, Q. Show Additively of betas? it is indicated ...

Q. Show Additively of betas? it is indicated earlier that any risk unique to an individual security can be removed by diversification, however as diversification increases, the

Disaster recovery plan, Devise a disaster recovery plan • Business Impact A...

Devise a disaster recovery plan • Business Impact Analysis • Treatment Strategies: o Risk Avoidance o Risk Reduction o Risk Transfer o Risk Retention • Ingredients of a disaster re

Risk assessment exercise, Question : Safety World Ltd is a new company...

Question : Safety World Ltd is a new company that employs 110 people and provides contracting carpentry services to several organisations throughout the country. Some employe

Risk premium, Risk Premium A risk premium is the extra or excess which ...

Risk Premium A risk premium is the extra or excess which is return on a risky asset relative to the return on risk-free assets. Therefore, it defines the additional return that

Write Your Message!

Captcha
Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd