IS3230 Unit 4 Assignment 1
Chris Wiginton
ITT Technical Institute, Tampa FL
Instructor: David Marquez
14 April, 2014
Access Control Plan
INTRODUCTION
This Dragon Net Solutions (DNS) Access Control and Account Management Plan details the access control and account management activities for Dragon Net Solutions. It facilitates compliance with the National Institute of Standards and Technology’s (NIST) Recommended Security Controls for Federal Information Systems (NIST 800-53) and the NIST Guide for Accessing the Security Controls in Federal Information Systems (NIST 800-53A). Specifically, the following NIST Access Controls (AC) are addressed:
AC-1 Access Control Policy and Procedures
AC-2 Account Management
AC-3 Access
…show more content…
AUDIT METHODOLOGY
The CTSP/SA will conduct an audit at least once during an incident assignment and annually in a local unit setting. The Auditing function is accessed by user accounts with the DB Admin access right. Auditing allows users to audit the following activities within the DNS application:
DNS Login History – Logins and Logoffs of different databases
External Access History – External User Accounts that have accessed an DNS database in an external application
User Account History – Changes made to User and Admin Accounts
External Account History – Changes made to External User Accounts
The CTSP/SA will also confirm the following:
Least privilege for all user accounts has been verified
Separation of duties for all user accounts has been verified
AUTHORIZED ACCESS CONTROLED
Item Name: Router, Switch 1, Switch 2, Switch 3, Wireless AP1, Wireless AP 2, Wireless PC1, Wireless PC2, Wireless PDA, Network PC 1, Network PC 2, Network PC 3, File Server, Web Server, Intranet.
Description and relevant performance metrics: Digital Computers with 2688 Intel Itanium Processors and 384 MIPS Processors distributed amongst 10 single image NUMA-based clusters. Individual clusters have a compute capability in excess of 190 million MTOPS
Physical:
Only authorized personnel are allowed unescorted access to the Computer Room with proper security credentials.
Prior to a tour, Operations conducts a sweep of the
That means that with the network operating system we can have lots of users all concurrently using resources on our serve.One of the most important aspects about server operating systems is the security. Workstation OS provides great security for end-users, but it's still not as tight as the security offered by the network operating systems. The reason for that is that with the network operating system were providing services to hundred or thousands of concurrent users. Therefore security is critical Workstation operating systems also provide some type of authentication by using user names and passwords which reside on local database on the local
Paper chosen: Atzori, Luigi, Antonio Iera, and Giacomo Morabito. "The internet of things: A survey." Computer networks 54.15 (2010): 2787-2805.
* Assist in planning new software installation for security and any new routers and switches
After you register a new domain name or when you update the DNS servers on your domain name, it usually takes about 12-36 hours for the domain name servers world-wide
At this point during our configuration, we have all of the hardware implementation in place. We will be utilizing seven servers, rather than the initially proposed four. The servers and networking components are configured. Once we acquire licence from OnApp, we will be able to install the OS onto the servers. As of now, all of our servers are connected and ready to be used. Once the desired operating systems are installed onto each servers, we will be able to configure core networking services in order to cluster them. In addition, we have acquired appropriate subnet mask and IP ranges to be used for our nodes. All our hardware will using static IP addresses.
The section where it asks for my playtime doesn't accept words, so I'll just throw my full schedule in here if it helps.
ID Name of asset Owner Description of Asset Asset Type Data Type Retention Risks / impact Key asset 01 Personal Computers Staffs Each particular employee used their own PC for their works. Hardware Personal 1.5 year Availability Yes 02 Laptops Head of IT The device could be handled by many peoples Hardware Personal 1.5year Availability
#include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include using namespace std; #define NUM_USERS 10 #define MSG_SIZE 50 #define SERVER_PORT 5045 #define CLIENT_SERVER_PORT 7400 void quitClient(int file_disc, fd_set *readfiledis, char fd_array[], int *client_num) { int i; close(file_disc); FD_CLR(file_disc, readfiledis); for (i = 0; i < (*client_num) - 1; i++) if (fd_array[i] = = file_disc) break; for (; i < (*client_num) - 1; i++) (fd_array[i]) = (fd_array[i + 1]); (*client_num)--; } struct cell { string ip; string name; }; struct cell info[1000]; void getclientlist(string s) { int number
Guide to Enterprise Password Management National Institute of Standards and Technology (NIST) Special Publication 800-118. Retrieved from:
Hardening the OS is an important step because it reduces the attack surface and opportunities for hackers to get into the system. The Linux Security Checklist from SANS has basic step by step guidance one can follow in securing an OS (Homsher & Evans, n.d.).
1.Authentication: It has to do with the process of identifying one’s self into the application. For a user to be authenticated into the SAP system he needs to have a valid user I.D. and a password.
Install OpenVPN onto Windows Server 2012r2 into the H1 Country Club Network for Remote Access
IS3350 Unit 2 Assignment 1: Executive Summary on Veteran’s Affairs (VA) and Loss of Private Information
The proposed network is designed to serve DesignIT which consist 56’x36’ office space, 4 cubicles, 1 office, 1 server room, 1 receptionist desk and 1 conference room.
mandatory and discretionary access control policies. ACM Transactions on Information and System Security, Vol. 3, No. 2.