Cyber Security
Instructions: Answer all questions in a single document. Each response to a single essay question should be about a half-page in length (about 150 words).
1. Communications within a computer network rely on numerous components for data to traverse from the initial sender of a message or file to the receiver at the distant end of the communication path. In addition to the media that the data travels across, the devices that guide the data packets through the network, and the protocols that establish end-to-end connectivity and negotiate the communication, network services play a critical role in providing the necessary addressing and name resolution services. Describe the following services and their role in network communications: ARP, DHCP, ICMP, SNMP, and DNS.
2. Modern organizations rely on the Internet for information and research necessary to stay competitive but this access can come with significant risk if they don’t take the necessary steps to safeguard their internal resources from outside attackers. In this week’s reading, various types of firewalls and firewall configurations were discussed. Describe the terms bastion host, DMZ, dual-homed firewall, screened host, and screened subnet and their roles in firewall architectures.
3. Many organizations employ a mobile workforce and/or provide the option of telework to their employees to allow them to work from home. In both situations, a secure means of accessing the corporate network remotely must be provided. Discuss the four main tunneling protocols used to provide virtual private network access between remote users and their corporate network.
4. Access controls are security features that are usually considered the first line of defense in asset protection. They are used to dictate how subjects access objects, and their main goal is to protect the objects from unauthorized access. Access control models are frameworks that use access controls to enforce the rules and objectives of the model. In your essay response, compare the different Access Control Models and give an example of one that you have used in a work situation or if that is not possible, one that you’ve read about in a scholarly article.
5. Relying on a password to secure access to a system does not provide enough security in today’s complex world. The Office of Personnel Management learned this the hard way in 2015. Since OPM was hacked and it was learned that the attackers compromised their system administrator accounts that were protected only with passwords, the Federal government has required the use of multifactor authentication for privileged accounts. Describe the three factors that can be used in authentication and give at least two examples for each.
6. There are two main methods of access control administration that an organization can choose between to achieve the level of protection that they need to secure their assets and information: centralized and decentralized. Describe the RADIUS, TACACS, and DIAMETER forms of centralized access control administration. What are the advantages and disadvantages of decentralized administration.
7. Providing physical security to a facility involves numerous methods designed to discourage a determined attacker. Perimeter fencing, gates, bollards, lighting, CCTV, as well as roaming security patrols and dogs are all designed to prevent easy access to the facility. In the event that these physical security controls are breached, perimeter monitoring and detecting devices can provide notification of further attempts to gain access to the facility. Describe three perimeter intrusion detection systems and give an example of one that you have seen deployed either at work or another location that you are familiar with.
8. Many organizations value their information so highly that they invest in a redundant site in the event that a catastrophic event interrupted service operations in their primary site. Different options are available for facility recovery at varying costs and states of readiness. Describe the differences between the hot, warm, and cold site methods of facility recovery. What is a rolling hot site? What is a reciprocal agreement?
9. There are many different categories of evidence and each type varies in its value in supporting an investigation. What are the four characteristics that help ensure that evidence is legally admissible in court? Describe hearsay evidence and its admissibility.
Instructions: Answer all questions in a single document.
Each response to a single essay
question should
be about a half
-
page in length (about 150 words).
1. Communications within a computer network rely on numerous components for data to traverse from
the initial sender of a message or file to the receiver at the distant end of the communica
tion path. In
addition to the media that the data travels across, the devices that guide the data packets through the
network, and the protocols that establish end
-
to
-
end connectivity and negotiate the communication,
network services play a critical role i
n providing the necessary addressing and name resolution services.
Describe the following services and their role in network communications: ARP, DHCP, ICMP, SNMP, and
DNS.
2. Modern organizations rely on the Internet for information and research necessary
to stay competitive
but this access can come with significant risk if they don’t take the necessary steps to safeguard their
internal resources from outside attackers. In this week’s reading, various types of firewalls and firewall
configurations were dis
cussed. Describe the terms bastion host, DMZ, dual
-
homed firewall, screened
host, and screened subnet and their roles in firewall architectures.
3. Many organizations employ a mobile workforce and/or provide the option of telework to their
employees to all
ow them to work from home. In both situations, a secure means of accessing the
corporate network remotely must be provided. Discuss the four main tunneling protocols used to
provide virtual private network access between remote users and their corporate ne
twork.
4
. Access controls are security features that are usually considered the first line of defense in asset
protection. They are used to dictate how subjects access objects, and their main goal is to protect the
objects from unauthorized access. Acces
s control models are frameworks that use access controls to
enforce the rules and objectives of the model. In your essay response, compare the different Access
Control Models and give an example of one that you have used in a work situation or if that is n
ot
possible, one that you’ve read about in a scholarly article.
5
. Relying on a password to secure access to a system does not provide enough security in today’s
complex world. The Office of Personnel Management learned this the hard way in 2015. Since OPM
was
hacked and it was learned that the attackers compromised their system administrator accounts that
were protected only with passwords, the Federal government has required the use of multifactor
authentication for privileged accounts. Describe the three
factors that can be used in authentication and
give at least two examples for each.
6
. There are two main methods of access control administration that an organization can choose
between to achieve the level of protection that they need to secure their as
sets and information:
centralized and decentralized. Describe the RADIUS, TACACS, and DIAMETER forms of centralized access
control administration. What are the advantages and disadvantages of decentralized administration.
7
. Providing physical security t
o a facility involves numerous methods designed to discourage a
determined attacker. Perimeter fencing, gates, bollards, lighting, CCTV, as well as roaming security
patrols and dogs are all designed to prevent easy access to the facility. In the event that
these physical
Instructions: Answer all questions in a single document. Each response to a single essay question should
be about a half-page in length (about 150 words).
1. Communications within a computer network rely on numerous components for data to traverse from
the initial sender of a message or file to the receiver at the distant end of the communication path. In
addition to the media that the data travels across, the devices that guide the data packets through the
network, and the protocols that establish end-to-end connectivity and negotiate the communication,
network services play a critical role in providing the necessary addressing and name resolution services.
Describe the following services and their role in network communications: ARP, DHCP, ICMP, SNMP, and
DNS.
2. Modern organizations rely on the Internet for information and research necessary to stay competitive
but this access can come with significant risk if they don’t take the necessary steps to safeguard their
internal resources from outside attackers. In this week’s reading, various types of firewalls and firewall
configurations were discussed. Describe the terms bastion host, DMZ, dual-homed firewall, screened
host, and screened subnet and their roles in firewall architectures.
3. Many organizations employ a mobile workforce and/or provide the option of telework to their
employees to allow them to work from home. In both situations, a secure means of accessing the
corporate network remotely must be provided. Discuss the four main tunneling protocols used to
provide virtual private network access between remote users and their corporate network.
4. Access controls are security features that are usually considered the first line of defense in asset
protection. They are used to dictate how subjects access objects, and their main goal is to protect the
objects from unauthorized access. Access control models are frameworks that use access controls to
enforce the rules and objectives of the model. In your essay response, compare the different Access
Control Models and give an example of one that you have used in a work situation or if that is not
possible, one that you’ve read about in a scholarly article.
5. Relying on a password to secure access to a system does not provide enough security in today’s
complex world. The Office of Personnel Management learned this the hard way in 2015. Since OPM was
hacked and it was learned that the attackers compromised their system administrator accounts that
were protected only with passwords, the Federal government has required the use of multifactor
authentication for privileged accounts. Describe the three factors that can be used in authentication and
give at least two examples for each.
6. There are two main methods of access control administration that an organization can choose
between to achieve the level of protection that they need to secure their assets and information:
centralized and decentralized. Describe the RADIUS, TACACS, and DIAMETER forms of centralized access
control administration. What are the advantages and disadvantages of decentralized administration.
7. Providing physical security to a facility involves numerous methods designed to discourage a
determined attacker. Perimeter fencing, gates, bollards, lighting, CCTV, as well as roaming security
patrols and dogs are all designed to prevent easy access to the facility. In the event that these physical