Intrusion Detection w1

Part 1: Network Security Fundamentals 

Answer and provide a brief explanation (20–50 words) for each of the following five questions.  

1. A                                          is a network that uses a public network to provide access to a secured private network. 

2. True or False: A restrictive policy on a firewall denies all traffic by default, and only specifically allowed traffic is permitted into the network. 

3.                      is the ability to log and trace any performed action over a secured network, preventing a participant from denying it performed an action. 

4. Antivirus software and IDPSs are similar in that both make use of                                to identify threats.

A. Cookies

B. Signatures

C. Security patches 

5. Which access control method relies on access being defined in advance by system administrators?

A. Role-based access control (RBAC)

B. Discretionary access control (DAC)

C. Mandatory access control (MAC)  

Part 2: The Goals of a Network Security Program 

Answer and provide a 100–200-word explanation to each of the following two questions. 

1. There are five goals of a network security program. Describe each. 

2. Summarize the four motivations that compel individuals and groups to attack a network. 

Part 3: Attack Characteristics 

Consider the following and respond in 200–300 words:  

1. There are four attack characteristics used to categorize the level of threat an attack poses. Describe each. 

2. What is meant by target value? Describe two target values.