Systems-specific policy (syssp), Computer Network Security

Assignment Help:

Systems-Specific Policy (SysSP)

SysSPs are codified as standards and procedures which are used when configuring or maintaining systems. Systems specific policies fall into 2 groups:-


•Access Control Lists (ACLs) is a list of access rights which is used to determine who may access an object which it controls.
•Configuration rules is a specific codes entered into security systems to guide exection

The Microsoft Windows and Novell Netware 5.x/6.x families translate ACLs into configurations which are used to control access. ACLs allow configuration to restrict access from anyone.

An access control list is the list of permissions which is attached to an object. The list specifies who or what is allowed to access object and what operations are allowed to be performed on object.

Access Control List (ACL)

- Include user access lists, matrices, and capability tables which govern rights and privileges
- Can control access to file storage systems, object brokers or other network communications devices
-ACLs enable administrations to restrict access in accordance to user, computer, time, duration, etc.
-Capability Table: similar method which specifies which  subjects and objects users or groups can access
-Specifications are frequently complex matrices, instead of simple lists or tables
Rule policies are specific to operation of a system than ACLs. Several security systems require specific configuration scripts telling systems what actions to perform on each set of information which they process.

Configuration rules
-Specific configuration codes entered into security systems to guide execution of system when the information is passing through it
-Rule based policies are more specific to system operation than ACLs and can or cannot deal with users directly
-A number of security systems require specific configuration scripts telling systems what actions to perform on each set of information processed


Related Discussions:- Systems-specific policy (syssp)

Attacks on cryptosystems-cryptography, Attacks on Cryptosystems Attacks a...

Attacks on Cryptosystems Attacks are attempts to achieve unauthorized access to secure communications have characteristically used brute force attacks. Attacker may alternatively

Explain how ftp works, QUESTION (a) FTP is a protocol used for the de...

QUESTION (a) FTP is a protocol used for the delivery of files across networks. Explain how FTP works (support your answer with a diagram). (b) How does TCP perform the gi

Describe the role of dns root servers in network, QUESTION (a) Describ...

QUESTION (a) Describe the role of DNS root servers in the Internet network. (b) What do you understand by the handover concept in a mobile network? (c) List five meth

Feasibility studies-risk management, Feasibility Studies Before deciding...

Feasibility Studies Before deciding on strategy, all information of economic or non economic consequences of vulnerability of information asset should be explored. A number of w

Limitations of firewall, Limitations of firewall Firewalls cannot prote...

Limitations of firewall Firewalls cannot protect a network if security rules are not followed properly by an organization or if the rules are not defined properly. Firewalls ar

Half-duplex and full-duplex mode of transmission, Question: a. State br...

Question: a. State briefly three reasons why computer networks are used? b. Differentiate between simplex, half-duplex and full-duplex mode of transmission. c. State any

#title.TIPS., 1. For this project, assume that an organization has five ser...

1. For this project, assume that an organization has five servers. Server 1 has a TCO of $25,000, Servers 2 and 3 have a TCO of $37,000 each, and the remaining two servers— Servers

Principles of information security, The key concepts and frameworks covered...

The key concepts and frameworks covered in modules 1-4 are particularly relevant for this assignment. Assignment 2 relates to the specific course learning objectives 1, 2 and 3:

What is the role of an intrusion detection system, Problem: (a) What i...

Problem: (a) What is a firewall and which are its most important tasks? (b) What is the difference between default deny and default permit? Which advantages and disadvanta

Calculate the rsa public and private keys, (a) Which PKI (Public Key Infra...

(a) Which PKI (Public Key Infrastructure) model is typically favored by business organization? (b) Give one possible use of the "extensions" field of an X.509 certificate

Write Your Message!

Captcha
Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd