Discretionary access control and mandatory access control, Risk Management

Assignment Help:

Question:

(a)

(i) Explain what is meant by Discretionary Access Control and Mandatory Access Control.

(ii) What is the difference between the two types of access control?

(iii) Which method would be the most effective to ensure that users do not share files with other users not approved for access?

(b) Outline the three differences between the Liberty Alliance specification and the Microsoft .NET Passport System.

(c) Which of the following options below would be the MOST effective solution for preventing individuals outside the organization from modifying sensitive information on a corporate database. Explain the reasons for choosing one option and for rejecting the other two options.

Option 1: Screened Subnets
Option 2 : System access logs
Option 3: Role based access controls

(d) (i) Where should the Intrusion Detection System be placed on a network?

(ii) Identify one main weakness of signature based Intrusion Detection Systems.

(iii) Explain what is the main objective of network mapping when conducting a penetration test?

(iv) When is the best time to perform a penetration test?


Related Discussions:- Discretionary access control and mandatory access control

run a scenario analysis, The Investment Committee of UoM has suggested tha...

The Investment Committee of UoM has suggested that it may be time to take some "insurance" on the U.S. equity portfolio, given "rich valuations" in the U.S. Equity markets. As t

Risk management and financial institutions, On September 25,2008 a portfoli...

On September 25,2008 a portfolio worth $10 million consisting of investments in four stock indices: DJIA, FTSE 100, CAC 40 and NIKKEI 225. The value of the investment in each index

Liquidity risk managment, how to write the literature review on liquidity r...

how to write the literature review on liquidity risk management and supervision

Develop strategies to eliminate risk, Develop strategies to eliminate, miti...

Develop strategies to eliminate, mitigate, deflect or accept risk • Risk treatment strategies: Risk avoidance, reduction, transfer and retention • The types of controls that can

Determine a process to managing risk, Determine a process to managing risk ...

Determine a process to managing risk 1.  Risk committee set up to address risk issues identified for example regular risk audits, to identify and estimate likelihood and conseq

What are upper limb disorders, Question 1: (a) What are Upper Limb Diso...

Question 1: (a) What are Upper Limb Disorders? (b) Describe seven main factors that are likely to increase the risk of upper limb disorders at work and suggest ways for redu

Principles of risk communication, Principles of Risk Communication Kno...

Principles of Risk Communication Know  the  Audience In formulating risk communication messages, the audience should be analyzed to understand  their motivations and opini

Data security, Data Security: An important issue for all organisations ...

Data Security: An important issue for all organisations is the security of data. Just as documentation require physical security in the face of risk of theft / fire etc, electr

Budget and value report, A strategy value assessment, based on calculating ...

A strategy value assessment, based on calculating the budget of the project. Discussion should not restrict itself to construction cost control but should consider the life cycle a

Write Your Message!

Captcha
Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd