Presentation is loading. Please wait.

Presentation is loading. Please wait.

CS/IS 196 Final Exam Review Final Exam: Wednesday, December 16.

Published byEmerald Lewis Modified over 8 years ago

Similar presentations

Presentation on theme: "CS/IS 196 Final Exam Review Final Exam: Wednesday, December 16."— Presentation transcript:

1 CS/IS 196 Final Exam Review Final Exam: Wednesday, December 16

2 Final Exam Overview Chapters 13 through 25 Multiple Choice Similar to questions at the end of each chapter and in the homework assignments. 50 questions You will have the full class time to complete

3 Chapter 13 Intrusion Detection Systems and Network Security Honeypots IDS – Host Based – Network Based Antivirus Anti-spam

4 Chapter 14 Baselines Baselining Good password selection Operating System Hardening Updates: – Hotfix – Patch – Service pack

5 Chapter 15 Types of Attacks and Malicious Software Spoofing War dialing War driving Trojan Logic Bomb Worm Buffer overflow

6 Chapter 16 E-mail and Instant Messaging Spam Email encryption – PGP – SMIME

7 Chapter 17 Web Components http and https Encryption algorithms Ftp and Sftp SSL/TLS Cookies

8 Chapter 18 Secure Software Development Secure Development Lifecycle – Phases – Minimizing the attack surface Database attacks – SQL injection Spiral method

9 Chapter 19 Disaster Recovery, Business Continuity, and Organizational Policies Alternate sites – Hot – Warm – Cold RAID – 0 – 1 (disk mirroring) – 5 ( data spreading with parity ) Backups – Full – Differential – Incremental – Delta

10 Chapter 20 Risk Management Risk Threat Assesment Purpose of risk management SLE, ARO, ALE – Compute ALE given SLE and ARO – ALE = SLE * ARO

11 Chapter 21 Change Management Least privilege Separation of duties Change management application to software development

12 Chapter 22 Privilege Management Groups MAC DAC RBAC – Role Based – Rule Based Time of day restrictions Password policies – Enforce History – Maximum Age – Minimum Length

13 Chapter 23 Computer Forensics Message Digests Free space Slack space Volatility of data – CPU – RAM – Hard drive – Kernel tables

14 Chapter 24 Legal Issues and Ethics Law – Statutory – Common – Administrative Computer trespass Computer Fraud and Abuse Act CAN-SPAM Act Sarbanes-Oxley Act

15 Chapter 25 Privacy Freedom of Information Act (FOIA) Cookie cutter Country with poor privacy practices Family Education Records and Privacy Act of 1974

16 The Final Exam Bring a #2 pencil and an eraser. Mr. Hodges will supply the scantron forms. Closed book, closed note, closed computer.

17 Questions Any Questions?

Download ppt "CS/IS 196 Final Exam Review Final Exam: Wednesday, December 16."

Similar presentations

Generic Security Concepts Review

Generic Security Concepts Review
Ethics, Privacy and Information Security

Ethics, Privacy and Information Security
Crime and Security in the Networked Economy Part 4.

Crime and Security in the Networked Economy Part 4.
Database Administration and Security Transparencies 1.

Database Administration and Security Transparencies 1.
1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.

1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.
Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.

Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.
Chapter 9: Privacy, Crime, and Security

Chapter 9: Privacy, Crime, and Security
Ch.5 It Security, Crime, Compliance, and Continuity

Ch.5 It Security, Crime, Compliance, and Continuity
Chapter 8 Chapter 8 Digital Defense: Securing Your Data and Privacy

Chapter 8 Chapter 8 Digital Defense: Securing Your Data and Privacy
MIS PERSONAL, LEGAL, ETHICAL, AND ORGANIZATIONAL ISSUES OF INFORMATION SYSTEMS CHAPTER 4 Hossein BIDGOLI Phishing Email that bites Paying for Privacy Pirates.

MIS PERSONAL, LEGAL, ETHICAL, AND ORGANIZATIONAL ISSUES OF INFORMATION SYSTEMS CHAPTER 4 Hossein BIDGOLI Phishing that bites Paying for Privacy Pirates.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
1 McGraw-Hill/Irwin Copyright © 2004, The McGraw-Hill Companies, Inc. All rights reserved. Ethical Challenges Ethics Principles of right and wrong that.

1 McGraw-Hill/Irwin Copyright © 2004, The McGraw-Hill Companies, Inc. All rights reserved. Ethical Challenges Ethics Principles of right and wrong that.
1010 CHAPTER PRIVACY AND SECURITY. © 2005 The McGraw-Hill Companies, Inc. All Rights Reserved. 10-2 Competencies Describe concerns associated with computer.

1010 CHAPTER PRIVACY AND SECURITY. © 2005 The McGraw-Hill Companies, Inc. All Rights Reserved Competencies Describe concerns associated with computer.
Factors to be taken into account when designing ICT Security Policies

Factors to be taken into account when designing ICT Security Policies
Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.

Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.
Computer Security 1 Keeping your computer safe. Computer Security 1 Computer Security 1 includes two lessons:  Lesson 1: An overview of computer security.

Computer Security 1 Keeping your computer safe. Computer Security 1 Computer Security 1 includes two lessons:  Lesson 1: An overview of computer security.
Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.

Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.
UNIT 9 SEMINAR – THE LAST ONE  ! Unit 9 Chapter 9 in CompTIA Security + 1 Course Name – IT286-01 Introduction to Network Security Instructor – Jan McDanolds,

UNIT 9 SEMINAR – THE LAST ONE  ! Unit 9 Chapter 9 in CompTIA Security + 1 Course Name – IT Introduction to Network Security Instructor – Jan McDanolds,
Eleventh Edition 1 Introduction to Information Systems Essentials for the Internetworked E-Business Enterprise Irwin/McGraw-Hill Copyright © 2002, The.

Eleventh Edition 1 Introduction to Information Systems Essentials for the Internetworked E-Business Enterprise Irwin/McGraw-Hill Copyright © 2002, The.

Similar presentations

Ads by Google