Discretionary access control and mandatory access control, Risk Management

Assignment Help:

Question:

(a)

(i) Explain what is meant by Discretionary Access Control and Mandatory Access Control.

(ii) What is the difference between the two types of access control?

(iii) Which method would be the most effective to ensure that users do not share files with other users not approved for access?

(b) Outline the three differences between the Liberty Alliance specification and the Microsoft .NET Passport System.

(c) Which of the following options below would be the MOST effective solution for preventing individuals outside the organization from modifying sensitive information on a corporate database. Explain the reasons for choosing one option and for rejecting the other two options.

Option 1: Screened Subnets
Option 2 : System access logs
Option 3: Role based access controls

(d) (i) Where should the Intrusion Detection System be placed on a network?

(ii) Identify one main weakness of signature based Intrusion Detection Systems.

(iii) Explain what is the main objective of network mapping when conducting a penetration test?

(iv) When is the best time to perform a penetration test?


Related Discussions:- Discretionary access control and mandatory access control

Explain what is meant by the term single sign-on, Question: (a) Explain...

Question: (a) Explain what is meant by the term Single sign-on in the context of access control? Give three examples of single sign-on technologies. (b) Describe how the Ker

What is industry risk, What is Industry Risk An industry may be view...

What is Industry Risk An industry may be viewed as group of companies which compete with each other to market a homogeneous product. Industry risk is that portion of an  inv

Fixed income risk management, Fixed Income Risk Management You are a...

Fixed Income Risk Management You are asked in this assignment to insure the value of a bond portfolio during the (in hindsight) turbulent 8-month (or 245-day) period from 1

Describe the risks to bpo company, Question 1: You are the actuary to a...

Question 1: You are the actuary to a pension scheme. Describe which asset types you would recommend, with reasons, for the following membership profile: a) A newly set pens

Risk management should follow a structured approach, Risk management  shou...

Risk management  should follow a structured approach The elements of a structured approach  to  risk management,  as you have  already studied above, are risk evaluation, risk

What is a safe system of work, Question 1: Employers should conduct pro...

Question 1: Employers should conduct proper health risk assessment in order to identify and control health risks before they lead to losses. Describe the four stages involved i

Risk and Return – Stock Valuation, The Case: Recently after graduating from...

The Case: Recently after graduating from Local Business College (LBC), you have started your own investment consultancy firm – Prudent Consultants (PC’s) to earn your livelihood. M

Roles and responsibilities for risk management, Determine the roles and res...

Determine the roles and responsibilities for risk management at senior management level • The role and contents of the risk management strategy, including risk profile, risk app

Conducting risk assessment in a confined space, Probelm 1: Describe the...

Probelm 1: Describe the factors that should be considered when conducting risk assessment in a confined space. Probelm 2: (a) Distinguish between workplace-based and

Risk free assets, Risk free assets is one for which there is no uncertainty...

Risk free assets is one for which there is no uncertainty in its expected rate of return and hence the standard deviation of such return is zero. Generally the expected rate of ris

Write Your Message!

Captcha
Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd