Reference no: EM131441371 , Length: 5
Imagine you are an Information Systems Security Specialist for a medium-sized federal government contractor. The Chief Security Officer (CSO) is worried that the organization's current methods of access control are no longer sufficient. In order to evaluate the different methods of access control, the CSO requested that you research: mandatory access control (MAC), discretionary access control (DAC), and role-based access control (RBAC).
Then, prepare a report addressing positive and negative aspects of each access control method.
This information will be presented to the Board of Directors at their next meeting. Further, the CSO would like your help in determining the best access control method for the organization.
Write a three to five (3-5) page paper in which you:
Explain in your own words the elements of the following methods of access control:
Mandatory access control (MAC)
Discretionary access control (DAC)
Role-based access control (RBAC)
Compare and contrast the positive and negative aspects of employing a MAC, DAC, and RBAC.
Suggest methods to mitigate the negative aspects for MAC, DAC, and RBAC.
Evaluate the use of MAC, DAC, and RBAC methods in the organization and recommend the best method for the organization. Provide a rationale for your response.
Speculate on the foreseen challenge(s) when the organization applies the method you chose. Suggest a strategy to address such challenge(s).
Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.
Include a cover page containing the title of the assignment, the student's name, the professor's name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
The specific course learning outcomes associated with this assignment are:
Analyze information security systems compliance requirements within the User Domain.
Use technology and information resources to research issues in security strategy and policy formation.
Write clearly and concisely about topics related to information technology audit and control using proper writing mechanics and technical style conventions.
Knowledge management assessment
: Using the company case history provided, carry out a knowledge management assessment in order to identify areas where knowledge management interventions would be both appropriate and beneficial. Please address the following questions:
|
What is the crsp
: Focus on the daily log returns, in percentages, of EXXON-Mobil stock and the S&P composite index used in Example. Fit a BEKK(1,1) model to the innovations of log returns. Write down the fitted model and obtain mean, standard error, minimum, and ma..
|
Analyze a stakeholder and include mitigation strategies
: Identify potential risks and mitigation plans. Analyze a stakeholder and include mitigation and contingency strategies. Incorporate ethical implications
|
Analysis of social network sites
: COMC102: FINAL PROJECT. Corporate Social Responsibility: analysis of the advantages and disadvantages. Should your company, workplace, organization adopt such a policy? (this excludes Starbucks) Analysis of Social Network Sites as a viable option t..
|
Discuss about the mandatory access control
: Imagine you are an Information Systems Security Specialist for a medium-sized federal government contractor. The Chief Security Officer (CSO) is worried that the organization's current methods of access control are no longer sufficient. In order t..
|
Firm designs training materials for computer training class
: Your firm designs training materials for computer training classes, and you have just received a request to bid on a contract to produce a complete set of training manuals for an 8-session class. What is the Total Price? This is what you would charge..
|
What can you infer from the test about your strengths
: What can you infer from this test about your strengths and weaknesses? How does my personality type affect my career and effectiveness at my job?
|
Legal and non-legal in nature that a facility
: Describe the factors, both legal and non-legal in nature that a facility must consider when determining the length of time that its health records will be retained.
|
Influence of social media on the personal sales process
: In the studies you were asked to find an article that addresses the influence of social media on the personal sales process. Based on that article (and, if applicable, other things you have read or experienced), how might social media support a sales..
|