Presentation is loading. Please wait.

Presentation is loading. Please wait.

CS/IS 196 Final Exam Review

Published byAlbert Paré Modified over 5 years ago

Similar presentations

Presentation on theme: "CS/IS 196 Final Exam Review"— Presentation transcript:

1 CS/IS 196 Final Exam Review
Final Exam: Wednesday, December 12

2 Final Exam Overview Chapters 13 through 25 Multiple Choice
Similar to questions in the homework assignments. 50 questions You will have the full class time to complete

3 Chapter 13 Intrusion Detection Systems and Network Security
IDS Components: Traffic collector Signature database User interface Host Based (active vs. passive) Advantages Disadvantages Network Based

4 Chapter 14 System Hardening & Baselines
Baselining Sandboxing Antispam Egress Filtering Updates: Hotfix Patch Service pack

5 Chapter 15 Types of Attacks and Malicious Software
Malware Spoofing War dialing War driving Trojan Logic Bomb Worm Buffer overflow

6 Chapter 16 E-mail and Instant Messaging
Spam encryption PGP SMIME

7 Chapter 17 Web Components
SSL Stripping Attack http and https FTP and SFTP SSL/TLS Cross-site scripting attack

8 Chapter 18 Secure Software Development
Secure Development Lifecycle Phases Minimizing the attack surface (Design Phase) Database attacks SQL injection Spiral method Fuzz testing

9 Chapter 19 Disaster Recovery, Business Continuity, and Organizational Policies
Alternate sites Hot Warm Cold RAID 1 (disk mirroring) 5 ( data spreading with parity ) Backups Full Differential Incremental Delta

10 Chapter 20 Risk Management
Vulnerabilities Threat Vectors Qualitative risk assessment SLE, ARO, ALE Compute ALE given SLE and ARO ALE = SLE * ARO

11 Chapter 21 Change Management
Least privilege Separation of duties Change management primary objective

12 Chapter 22 Incident Response
Information Criticality Scanning Threats Remote Administration Trojan (Tool) (RAT) Data Minimization Quarantine

13 Chapter 23 Computer Forensics
Software Bomb Disk/Drive Partition Free space Volatility of data CPU RAM Hard drive Kernel tables

14 Chapter 24 Legal Issues and Ethics
Law Statutory Common Administrative Computer trespass CAN-SPAM Act Sarbanes-Oxley Act

15 Chapter 25 Privacy Freedom of Information Act (FOIA) Cookie cutter
Country with poor privacy practices Family Education Records and Privacy Act of 1974 Data Destruction Shredding Degaussing Burning Wiping

16 The Final Exam Bring a #2 pencil and an eraser.
Mr. Hodges will supply the scantron forms. Closed book, closed note, closed computer.

17 Questions Any Questions?

Download ppt "CS/IS 196 Final Exam Review"

Similar presentations

Ethics, Privacy and Information Security

Ethics, Privacy and Information Security
1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.
1 MIS 2000 Class 22 System Security Update: Winter 2015.

1 MIS 2000 Class 22 System Security Update: Winter 2015.
1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?

1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?
Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.

Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.
Chapter 9: Privacy, Crime, and Security

Chapter 9: Privacy, Crime, and Security
Chapter 8 Chapter 8 Digital Defense: Securing Your Data and Privacy

Chapter 8 Chapter 8 Digital Defense: Securing Your Data and Privacy
Security+ Guide to Network Security Fundamentals, Third Edition

Security+ Guide to Network Security Fundamentals, Third Edition
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,

Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Lesson 14-Desktop Protection. Overview Protect against malicious code. Use the Internet. Protect against physical tampering.

Lesson 14-Desktop Protection. Overview Protect against malicious code. Use the Internet. Protect against physical tampering.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Security+ Guide to Network Security Fundamentals, Third Edition

Security+ Guide to Network Security Fundamentals, Third Edition
Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.

Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.
Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software.

Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software.
Chapter Nine Maintaining a Computer Part III: Malware.

Chapter Nine Maintaining a Computer Part III: Malware.
SHASHANK MASHETTY Email security. Introduction Electronic mail most commonly referred to as email or e- mail. Electronic mail is one of the most commonly.

SHASHANK MASHETTY security. Introduction Electronic mail most commonly referred to as or e- mail. Electronic mail is one of the most commonly.
Information Security Introduction to Information Security Michael Whitman and Herbert Mattord 14-1.

Information Security Introduction to Information Security Michael Whitman and Herbert Mattord 14-1.
Our Digital World Second Edition

Our Digital World Second Edition
Windows Server MIS 424 Professor Sandvig. Overview Role of servers Performance Requirements Server Hardware Software Windows Server IIS.

Windows Server MIS 424 Professor Sandvig. Overview Role of servers Performance Requirements Server Hardware Software Windows Server IIS.

Similar presentations

Ads by Google