Products

About

©2017 StudyMode.com

Security + 280 Exams

Only available on StudyMode
  • Topic: Cryptography, Substitution cipher, Encryption
  • Pages : 19 (2838 words )
  • Download(s) : 23
  • Published : October 29, 2012
Open Document
Text Preview
-------------------------------------------------
Top of Form

Grading Summary
These are the automatically computed results of your exam. Grades for essay questions, and comments from your instructor, are in the "Details" section below. | Date Taken: | 9/8/2012| Time Spent:| 09 min , 54 secs |

Points Received:| 30 / 30  (100%) |
|
Question Type:| # Of Questions:| # Correct:|
Multiple Choice| 10| 10|
|
|

Grade Details - All Questions |

 1.| Question :| (TCO 1) What is the most common threat to information security in an organization?|
|
 | Student Answer:| | Computer viruses |
 | | | Power surges |
 | | | Forgotten passwords |
 | | | SPAM |
 | Instructor Explanation:| Page 7|
|
|
 | Points Received:| 3 of 3 |
 | Comments:| |
|
|
 2.| Question :| (TCO 1) The term script kiddies refers to _____.|
|
 | Student Answer:| | a hacker with low-end technical ability |  | | | a children's television show |
 | | | a type of video game |
 | | | an Internet site for peer-to-peer music sharing |  | Instructor Explanation:| Page 7|
|
|
 | Points Received:| 3 of 3 |
 | Comments:| |
|
|
 3.| Question :| (TCO 1) What is a port scan?|
|
 | Student Answer:| | It identifies what ports can be used to smuggle information across borders. |  | | | It identifies ports that are open and services that are running. |  | | | It identifies the USB, parallel, and serial ports that can be used to connect to the system. |  | | | It identifies the IP addresses of computers on the network. |  | Instructor Explanation:| Page 12|

|
|
 | Points Received:| 3 of 3 |
 | Comments:| |
|
|
 4.| Question :| (TCO 1) What is a Solar Sunrise?|
|
 | Student Answer:| | An attack that was made to look like an attack from Iraq but that was actually made by two teenagers from California who got training in Israel |  | | | Electronic interference resulting from solar flares and occurring most commonly in the early morning hours |  | | | A penetration test conducted by the FBI and other government agencies to test the defenses of government networks and critical infrastructures |  | | | The name of a virus that would burn up a hard drive at 6 a.m. on the day of the summer solstice |  | Instructor Explanation:| Page 3|

|
|
 | Points Received:| 3 of 3 |
 | Comments:| |
|
|
 5.| Question :| (TCO 1) What is an elite hacker?|
|
 | Student Answer:| | A hacker with a high level of technical ability |  | | | A hacker who is wealthy and who is politically motivated |  | | | A hacker who has elitist ideas and hacks for political purposes |  | | | A hacker who searches for scripts and ready-made tools to use for attacks |  | Instructor Explanation:| Page 8|

|
|
 | Points Received:| 3 of 3 |
 | Comments:| |
|
|
 6.| Question :| (TCO 1) When information is disclosed to individuals who are not authorized to see it, a _____ has been suffered.|
|
 | Student Answer:| | loss of confidentiality |
 | | | loss of integrity |
 | | | loss of functionality |
 | | | loss of availability |
 | Instructor Explanation:| Page 14|
|
|
 | Points Received:| 3 of 3 |
 | Comments:| |
|
|
 7.| Question :| (TCO 1) According to the Computer Crime and Security Survey, the four types of attacks that increased from 2007 to 2008 were _____.|
|
 | Student Answer:| | viruses, insider abuse, laptop theft, and unauthorized access |  | | | unauthorized access, theft and the loss of proprietary information, the misuse of Web applications, and DNS attacks |  | | | viruses, insider abuse, misuse of Web applications, and DNS attacks |  | | | laptop theft, unauthorized access, theft, and loss of...
Show More

YOU MAY ALSO FIND THESE DOCUMENTS HELPFUL

  • Security Essay
    ...ePayment Security ECOM 6016 Electronic Payment Systems • Keep financial data secret from unauthorized parties (privacy) – CRYPTOGRAPHY Lecture 3 ePayment Security • Verify that messages have not been altered in transit (integrity) – HASH FUNCTIONS • Prove that a party engaged in a transaction ( (nonrepudiation) ) – DIGITAL SIGNATURES • Verify identity of users (authentication) – PASSWORDS, DIGITAL CERTIFICATES THE UNIVERSITY OF HONG KONG FEB/MAR 2012 © 2012 MICHAEL I. SHAMOS THE UNIVERSITY OF HONG KONG FEB/MAR 2012 © 2012 MICHAEL I. SHAMOS Cryptography and Hash Functions yp g p y • Message digest (hash) algorithms – Secure Hash Algorithm: SHA-1, SHA-2, SHA-3 competition – Securing passwords Hash Functions • A “hash” is a short function of a message, f ti f sometimes called a “message digest” g g • BUT: a hash is not uniquely reversible • Many messages have the same hash Hash function H produces a fixed size hash of a message M, usually 128‐512 bits h = H(M) • S Symmetric encryption ti ti – DES and variations – AES: Rijndael • Public-key algorithms – RSA • Defending against attacks – Salting, nonces g • Digital signatures THE UNIVERSITY OF HONG KONG FEB/MAR 2012 © 2012 MICHAEL I. SHAMOS THE UNIVERSITY OF HONG KONG FEB/MAR 2012 © 2012 MICHAEL I. SHAMOS One-Way Hash Functions • For any string s, H(s), the hash of s, is of fixed length (shorter than ) ( h t th s) •...

    3919  Words | 23  Pages

  • Essay about Security 280 case study 2
    ... Case Study 3 The need for security encryption to protect our investments Sec-280 Information System Security Professor Hennel With security in the workplace becoming a more pressing issue today in the market place we need to protect ourselves and projects. With information leaking there is a need for some sort of security such as encryption in place. I will share the pros and cons of asymmetric and symmetric encryption so we can find the best solution to the problem of security. Asymmetric encryption is also known as public key encryption which makes use of two keys a public key and a private key. The public key is made publicly available to anyone at our company and XYZ Inc. that is part of the project that need to send message to project leads on progress or issues. At ABC institute we would keep the private key with our project lead and the project lead at XYZ Inc. so messages can be decrypted there also. The advantage of asymmetric encryption is made available to anyone that will need to send information regarding this project. Asymmetric encryption also uses digital signatures that allows the receiver of the information to detect if it was tampered in transit. Another benefit of the a digital signature would be it acts as a physical signature just in case we have issues with anyone at XYZ Inc. denying the information sent this...

    493  Words | 2  Pages

  • Security Proposal Essay
    ... Security Proposal – ZXY Corporation __________________ Colorado State University – Global Campus Executive Summary ZXY Corporation has recently relocated to a new facility. A Local Area Network (LAN) was installed for the purpose of sharing resources, but there are currently no security measures in place to safeguard sensitive data. This is an unacceptable state of affairs, because it leaves the organization's data vulnerable to theft, corruption, destruction or other forms of tampering. In addition, all information systems on the network are currently extremely vulnerable to intrusion and malware. Furthermore, it is not advisable for even the employees within the organization to have completely unrestricted access to all of the organization's data. A comprehensive security architecture must be established in order for ZXY Corp. to continue to grow and flourish on a solid foundation. This proposal will outline a multifaceted approach to security architecture which will mitigate against both internal threats, such as data theft or leakage by employees, and external threats such as network intrusions and malware. The specific areas which this proposal will cover in detail are: access control measures, password policy, encryption methods, remote access solutions, and perimeter defense measures such as firewalls and intrusion prevention and detection systems. By implementing the measures...

    1834  Words | 8  Pages

  • Essay about security
    ...A Reference Security Management Plan for Energy Infrastructure Prepared by the Harnser Group for the European Commission Summer 2010 Under Contract TREN/C1/185/2009 A Reference Security Management Plan for Energy Infrastructure Foreword The European Union is developing its policy on critical energy infrastructures in relation to the European Programme for Critical Infrastructure Protection (“EPCIP”) which considers measures that will enhance, where necessary, the level of protection of certain infrastructures against external threats. The integrity of energy infrastructures and their reliable operation are key factors in ensuring the supply in energy, vital for the well-being of the citizens and the functioning of the economy. For this reason energy infrastructure is considered as a priority for the implementation of the EPCIP, hence the policy adopted in December 2008, under Council Directive 2008/114/EC on the identification and designation of European critical infrastructures and the need to improve their protection, has the energy sector in its scope. As one of a number of requirements, this Directive included the creation of an Operator Security Plan for all infrastructures designated as European Critical. The European Commission’s Directorate General for Energy tasked an external contractor to prepare a non-binding Reference Security Management Plan. This is intended to be a useful...

    39280  Words | 335  Pages

  • Norms in Security Essay
    ...Do international norms have an impact on security issues? Why? Norms can be understood as rules for standard behaviour. Norms are a common belief or understanding usually shared by a majority. International norms are determined by the international community and they usually set the stage for the behaviour of individual countries. These norms shape international as well as domestic security issues. These norms shape inter-state behaviour, they also shape the security policies of nation-states and they also serve to set certain normative standards about how the world should be. In this paper we will look at how the emergence of certain norms, taboos and international laws have contributed to international security concerns and sometimes also problems of mistrust. The major schools of international relations theory such as neoliberalism and neorealism have not satisfactorily confronted the evolution of norms of interstate behaviour. However the constructivist literature draws on a variety of theoretical texts and empirical studies to argue that norms have illustrative power independent of structural and situational constraints. The belief that all norms are created by the powerful can be challenged. As international norms have come to be shaped by a number of factors such as newer democracies, pressure groups, international and humanitarian organizations. Humanitarian values, global security,...

    1053  Words | 3  Pages

  • Collective security Essay
    ... COLLECTIVE SECURITY DURING THE INTERWAR PERIOD Collective security during the interwar period The term ‘collective security’ can be defined as a security agreement in which all states cooperate directly, collectively, and and every state accepts that the security of one is in the concern of all. In other words, when one of the states part of this agreement violates the rights to freedom of other nations, all other member states will have to join forces to restore peace, penalizing the aggressor state. This model is based on participation and compulsoriness. An agressor state is about to meet a united opposition of the entire world community. The concept of collective security is based on the consent of all or the majority of states to act against any state that unlawfully violates peace. The main idea of collective security is the assumption that no state will want to change the power and order of world community, and if so, all other states will act together against the aggressor state in order to reestablish the global equilibrium. An ideal collective security organization assumes a very high degree of congruent interest among its members.1 Interstate rivalry and power politics and effectively elliminated.2 As a legal form of states’ cooperation, a collective security system differs from any...

    1711  Words | 7  Pages

  • Security Project Essay
    ...2014 Timken WHQ I am employed by United American Security and staff the Timken World Headquarters. Therefore, I thought it would be easiest to do my project on a place where I have constant access to the security management personnel, the insiders of the office, and I see the system at work daily. In my first two weeks of working for United American Security, I started to note flaws in the current structure and made recommendations, two of which have since gone into effect and will be documented here. Firstly, look at the layout of the World Headquarters, behind the brilliant office of the white collar workers, research and development is attached and that is where the main security goes into play: Convenient for Security is the fact that every single Timken Facility in the world has a similar layout to this one. The unconvenience: When making rounds, security personnel are required to lock the main lobby and go outside in order to check the hydromation building, and well as the pumphouse not seen on this layout. When I first started, one officer was on duty at a time. The Timken World Headquarters was not meant to be more than a research and development lab, and then the stockholders decided to split the steel company from the research company, and Timken decided to have a vast expansion of their steel company in Ohio. Therefore all the executives would now be brought into the...

    1137  Words | 2  Pages

  • NETWORK SECURITY Essay
    ...SCENARIO 1 According to scenario 1, the followings are the threads and security measure to control it. THREADS SECURITY MEASURE 1.Fire outbreaks, begins just outside the data center. The attack is an internal and active attack caused by a disgruntled employee or worker i.e an unhappy or a dissatisfied employee I. Availability of fire department center II. Implementation of well programmed sprinkler system III. Building has been evacuated to prevent loss of lives SUGGESTIONS 1.Figure out the worker by investigating and either dismiss him/her or by compensating him/her by treating him right or well. 2. This can also be controlled by enforcing the physical security of the company i.e by installing cctv camera in every hook and corner of the company this will monitor all the employees activities within the vicinity of the company; of which any employee that engages in such a destructive act can be fished out easily by replaying the record. 3. RFID can also be deployed to monitor the in and out of every employee. 2.Anthrax box was detected by an employee in the lobby I. Evacuation of building has be done again to prevent loss of lives II. Health department is on scene to investigate the issues and treat people III. The sprinkler system has been implemented which caused the email and web server to stop working. SUGGESTIONS 1. Employees and visitors should be properly screened and be checked thoroughly...

    1129  Words | 6  Pages

POPULAR ESSAYS

Reyem Affair-Case Report Alienation and Integration the Usage of Marked Language in “a Clockwork Orange” Old Kingdom Essay Oxygen Essay Poverty Essay Strategic management Essay International Federation of Social Workers Essay Mukesh Ambani Essay
©2017 StudyMode.com Legal Site Map Advertise
StudyMode.com, Online Education, Hollywood, CA

More great study tools:


tracking img