Discretionary access control and mandatory access control, Risk Management

Assignment Help:

Question:

(a)

(i) Explain what is meant by Discretionary Access Control and Mandatory Access Control.

(ii) What is the difference between the two types of access control?

(iii) Which method would be the most effective to ensure that users do not share files with other users not approved for access?

(b) Outline the three differences between the Liberty Alliance specification and the Microsoft .NET Passport System.

(c) Which of the following options below would be the MOST effective solution for preventing individuals outside the organization from modifying sensitive information on a corporate database. Explain the reasons for choosing one option and for rejecting the other two options.

Option 1: Screened Subnets
Option 2 : System access logs
Option 3: Role based access controls

(d) (i) Where should the Intrusion Detection System be placed on a network?

(ii) Identify one main weakness of signature based Intrusion Detection Systems.

(iii) Explain what is the main objective of network mapping when conducting a penetration test?

(iv) When is the best time to perform a penetration test?


Related Discussions:- Discretionary access control and mandatory access control

Determine about the bull-bear market risk, Bull-Bear Market Risk Thi...

Bull-Bear Market Risk This risk arises from the variability in the market returns resulting from alternating bull and bear market forces. Ø when security index rises fair

Roles and responsibilities for risk management, Determine the roles and res...

Determine the roles and responsibilities for risk management at senior management level • The role and contents of the risk management strategy, including risk profile, risk app

Explain extension and contraction risk, Question 1 (a)  Prepayment r...

Question 1 (a)  Prepayment refers to paying principal on a security before the due date. Prepayment risk is the risk associated with the early unscheduled return of principal

Forward-forward and forward spot swaps in managing risks, Question: You...

Question: You have been appointed as the treasurer of Manchester International, an electronic firm with many subsidiaries abroad. The management of Manchester International is

Utility theory, While uncertain, they have estimated the net revenue from t...

While uncertain, they have estimated the net revenue from this patent to have the proba- bility distribution, ??(??) = ?? ??????(-????) in which ?? = 0.05 and x=million dollars (x

CAPM, Sibling Incorporated has a beta of 1.0. If the expected return on the...

Sibling Incorporated has a beta of 1.0. If the expected return on the market is 12%, what is the expected return on Sibling Incorporated''s stock? Answer 12% 14% 10% ca

What is avoidance of risk, Q. What is Avoidance of Risk? A business fir...

Q. What is Avoidance of Risk? A business firm can avoid risk by not accepting any assignment or any transaction which involves any type of risk whatsoever. This will naturally

Expected return over the benchmark, The Investment Committee is big on acti...

The Investment Committee is big on active management, and believes that there are areas/pockets of inefficiencies in the market. Knowing that you have taken Finance 455 at X-Univer

Stakeholder analysis, Stakeholder Analysis In the case of syringe manag...

Stakeholder Analysis In the case of syringe management plan, the stakeholders include Maribyrnong Council, Yarra Council and other neighboring ones, manufacturers, distributors

Write Your Message!

Captcha
Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd