User Account

All Pages

Explain system recovery backups

Assignment Help Basic Computer Science
Reference no: EM13785752

1. From your computer workstation, create a new text document called Workstation Domain

2. Consider the following scenario:

You are a security consultant for an information systems security firm and have a new health care provider client under HIPAA compliance. Your new client wants to know the requirements and business drivers for securing the workstation domain in its health care environment. Your new client requires compliance with HIPAA. Similarly, your firm has a U.S. government DoD client that also wants you to perform a workstation domain compliance audit per DoD workstation hardening guidelines and baseline requirements.

3. In your text document, discuss how the compliance law requirements and business drivers for the health care provider's workstation domain might differ from the DoD's workstation domain security compliance requirements.

4. Launch your Web browser and in the address box, type the Web address https://cve.mitre.org. Browse the site, and then in your text document, identify the risks, threats, and vulnerabilities commonly found in the workstation domain.

5. Change your Web address to https://iase.disa.mil/stigs/index.html. Review the Security Technical Implementation Guides (STIGs) available and the proper implementation of security based on DoD's workstation/desktop hardening guidelines. In your text document, discuss three STIGs and the DoD's workstation/desktop hardening guidelines.

6. Change your Web address to https://iase.disa.mil/stigs/downloads/pdf/unclassified_DesktopApplicationsGeneral_V4R1_STIG.pdf. You will download the pdf document from the IASE/DISA website.

Review the Desktop Applications General Version 4, Release 1 document. In your text document, discuss this document's significant points. Then, review the following concepts from this overarching DoD standards document for desktop hardening, and in your text document, discuss the significant points of two of these topics:

a. Appropriate backup strategy does not exist

b. Public instant message clients are installed

c. Peer to Peer clients or utilities are installed

d. Execution Restricted File Type Properties

e. Open-restricted File Type Properties

7. Change your Web address to https://iase.disa.mil/stigs/os/index.html#. Review the Windows OS security guidelines by clicking the +Windows tab toward the top of the page, clicking on Windows 7 and Windows 2008, and then clicking on the Guidance Documents tabs.

Determine which technical controls are appropriate for Windows 7 and Windows 2008. Note these in your text document.

8. On the left side of the website, click the STIGs Master List (A to Z) link. Scroll down the list to locate and then download the following Windows OS security guideline documents/zip files:

a. Windows 7 STIG (you will see several Windows 7 STIG options; click the one with only a Version number and a Release number after STIG)

b. Windows 2008 STIG (you will see a couple of Windows 2008 STIG options; click the one with only a Version number and a Release number after STIG)

Once you've downloaded the Windows 7 STIG ZIP file to your desktop, double-click the ZIP file to extract the Windows 7 STIG folder. Double-click the folder to open it, double-click the Windows 7 Manual STIG ZIP file to extract the Windows 7 Manual STIG folder, double-click the folder to open it, and then double-click the Windows 7 STIG Manual XML file to open it. Review some of the following concepts.

In your text document, list each of these and discuss a significant point about each:

a. Display Shutdown Button

b. Clear System Pagefile

c. Removable media devices

  • Hands-On Steps 45

d. Halt on Audit Failure

e. Security Configuration Tools

Next you will work with the Windows 2008 STIG ZIP file on your desktop. Double-click the ZIP file to extract the Windows 2008 STIG folder. Double-click the folder to open it, double-click the Windows 2008 DC Manual STIG ZIP file to extract the Windows 2008 DC Manual STIG folder, double-click the folder to open it, and then double-click the Windows 2008 DC STIG Manual XML file to open it. Review some of the following concepts and vulnerabilities for configuring and hardening Windows 2008 Domain Controllers. In your text document, list each of these and discuss a significant point about each:

a. System Recovery Backups

b. Caching of Logon Credentials

c. Dormant Accounts

d. Recycle Bin Configuration

e. Password Uniqueness

f. Printer Share Permissions

9. Change your Web address back to https://cve.mitre.org/. Review the National Cyber Security Division of the U.S. Homeland Security Department's CVE listing hosted by the Mitre Corporation. To access the CVE listing, click CVE List in the left-hand column to reach the CVE List Main Page. In your text document, discuss how workstation domain OS and application software vulnerabilities are housed in the CVE listing. Next, click the National Vulnerability Database link on the CVE homepage or CVE List Main Page. In your text document, discuss how vulnerabilities are housed in the National Vulnerability Database. Discuss how this is both a security control tool and an attack tool used by hackers.

10. Write an executive summary to summarize the top workstation domain risks, threats, and vulnerabilities and include a description of the risk mitigation tactics you would perform to audit the workstation domain for compliance. Use the U.S. DoD workstation hardening guidelines as your example for a baseline definition for compliance.

Reference no: EM13785752

Questions Cloud

Idea of a permanent marriage is a realistic option : Historian Eric Sager, commenting on the growing ranks of singles, points out, "It is often said that divorce today performs the function that death did in the past. The promise to live together for better or worse, so long as you both shall live, ..
Discuss what security policies commerce should implement : For Reflective Article Paper 3, select an article that details current methods that are used to successfully prevent identity theft. Discuss what security policies commerce should implement to prevent it from happening.
Liquidating distribution under the economic effect test : How much cash is distributed to each partner in the liquidating distribution under the economic effect test?
Short notes on federal policy : Federal Policy.
Explain system recovery backups : On the left side of the website, click the STIGs Master List (A to Z) link. Scroll down the list to locate and then download the following Windows OS security guideline documents/zip files
Calculate the ped for a particular style : Calculate the PED for a particular style of Tom's shoes if there is a price decrease from $100 to $50 and the quantity demanded increases from 2500 to 10,000 pairs. (Use a diagram to help clarify your answer)
Discussion board change management models : discussion board Change Management Models
What will be equilibrium price in world market for laptops : What will be the equilibrium price in the world market for laptops? With trade, what happened to the price of laptops in the United States? Japan?
Calculate the cost per equivalent unit for transferred : Calculate the cost per equivalent unit for transferred-in costs, materials, and conversion costs. Round your answers to two decimal places.

Reviews

Write a Review

Basic Computer Science Questions & Answers

  Identifies the cost of computer

identifies the cost of computer components to configure a computer system (including all peripheral devices where needed) for use in one of the following four situations:

  Input devices

Compare how the gestures data is generated and represented for interpretation in each of the following input devices. In your comparison, consider the data formats (radio waves, electrical signal, sound, etc.), device drivers, operating systems suppo..

  Cores on computer systems

Assignment : Cores on Computer Systems:  Differentiate between multiprocessor systems and many-core systems in terms of power efficiency, cost benefit analysis, instructions processing efficiency, and packaging form factors.

  Prepare an annual budget in an excel spreadsheet

Prepare working solutions in Excel that will manage the annual budget

  Write a research paper in relation to a software design

Research paper in relation to a Software Design related topic

  Describe the forest, domain, ou, and trust configuration

Describe the forest, domain, OU, and trust configuration for Bluesky. Include a chart or diagram of the current configuration. Currently Bluesky has a single domain and default OU structure.

  Construct a truth table for the boolean expression

Construct a truth table for the Boolean expressions ABC + A'B'C' ABC + AB'C' + A'B'C' A(BC' + B'C)

  Evaluate the cost of materials

Evaluate the cost of materials

  The marie simulator

Depending on how comfortable you are with using the MARIE simulator after reading

  What is the main advantage of using master pages

What is the main advantage of using master pages. Explain the purpose and advantage of using styles.

  Describe the three fundamental models of distributed systems

Explain the two approaches to packet delivery by the network layer in Distributed Systems. Describe the three fundamental models of Distributed Systems

  Distinguish between caching and buffering

Distinguish between caching and buffering The failure model defines the ways in which failure may occur in order to provide an understanding of the effects of failure. Give one type of failure with a brief description of the failure

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd