Discretionary access control and mandatory access control, Risk Management

Assignment Help:

Question:

(a)

(i) Explain what is meant by Discretionary Access Control and Mandatory Access Control.

(ii) What is the difference between the two types of access control?

(iii) Which method would be the most effective to ensure that users do not share files with other users not approved for access?

(b) Outline the three differences between the Liberty Alliance specification and the Microsoft .NET Passport System.

(c) Which of the following options below would be the MOST effective solution for preventing individuals outside the organization from modifying sensitive information on a corporate database. Explain the reasons for choosing one option and for rejecting the other two options.

Option 1: Screened Subnets
Option 2 : System access logs
Option 3: Role based access controls

(d) (i) Where should the Intrusion Detection System be placed on a network?

(ii) Identify one main weakness of signature based Intrusion Detection Systems.

(iii) Explain what is the main objective of network mapping when conducting a penetration test?

(iv) When is the best time to perform a penetration test?


Related Discussions:- Discretionary access control and mandatory access control

Explain role of the project manage, Question 1: Explain role of the pro...

Question 1: Explain role of the project manager throughout a project life cycle with reference to the following. (a) Setting up a project team (and the factors he has to con

Bankruptcy of lehman brothers, In its early stages, the financial crisis ma...

In its early stages, the financial crisis manifested itself as an acute liquidity shortage among financial intermediaries. In this phase, concerns over the solvency of the sophisti

coon position is quite substantial part, A former alumna of the University...

A former alumna of the University, who originated Racoon.com ((ticker: COON1), recently passed away. In her Will, she named X-University as the beneficiary of her assets, which was

Risk free assets, Risk free assets is one for which there is no uncertainty...

Risk free assets is one for which there is no uncertainty in its expected rate of return and hence the standard deviation of such return is zero. Generally the expected rate of ris

Task for report and appendices, The task for Report & Appendices The ma...

The task for Report & Appendices The main aim of the appendices is to show a series of graphical and descriptive material which demonstrate your technical knowledge of the proc

Execution of a risk analysis, Question: (a) What are the various option...

Question: (a) What are the various options to mitigate risks in an Information Security Management System (ISMS)? For each option specify an instance where it can be used.

Historical simulation approach, How can I calculate 10-day 99% VaR for port...

How can I calculate 10-day 99% VaR for portfolio comprising two banks by using the Historical Simulation Approach ?

Determine the optimal for investor, The investor has constant wealth 1 and ...

The investor has constant wealth 1 and is offered to invest in shares of a project that either gains 3/2 or loses 1 with equal probabilities. Therefore, if the investor obtains sha

Write Your Message!

Captcha
Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd