Principles of Information Security (MindTap Course List)
6th Edition
ISBN: 9781337516938
Author: WHITMAN
Publisher: Cengage
expand_more
expand_more
format_list_bulleted
Expert Solution & Answer
Chapter 4, Problem 3E
Explanation of Solution
Statement of policy:
This policy has been accepted to outline the satisfactory use of all college computers. Strong obedience to this policy is a must and if any student not obeying the policy of the college, so it will be considered to be in disobedience of college policy.
Responsibility of users:
All the authorized users are accessing college owned computers by following guidelines:
General usage of computers:
- College students are responsible for the protection of all the information that the user have access to with directly or indirectly. Students are also responsible to recognize that the information is sensitive and take the necessary measures to keep it that way.
- Choose the username and password is easy to remember but hard for other unauthorized users.
- Only college staff and students are allowed to use campus computer machines.
- Never under any circumstance disclose or share the username and password.
- Follow the rules like respect all legal protections such as license and copyright.
- At the end of the class, proper shut down all computers.
- After complete the work, log off all the computers or workstations.
- Strictly prohibited playing games on college computers
Usage of internet:
- Only authorized persons are allowed to install software, modems or any other types of hardware.
- Access to the Internet is only allowed through the campus content scanning software, router and firewall...
Expert Solution & Answer
Trending nowThis is a popular solution!
Students have asked these similar questions
To learn more about your institution's security rules, look them up on the intranet or website. Is there a corporate security policy somewhere? Where have you come across security rules that are tailored to address a particular problem? What agency or department is in charge of issuing or coordinating all of these policies, or are they dispersed across the organization?
Use the framework provided in this chapter to determine whether or not the policies you found in the preceding exercise are complete. What are the omissions in these areas?
Physical security is highly distinct from other forms of security in how much and how frequently it is different from other security types. We need to know what the most serious physical security risks of our day are, so we can defend ourselves. Do they make themselves known to the broader public in any way?
Search your institution's intranet or Web site for its security policies. Do you find an enterprise security policy? What issue-specific security policies can you locate? Are all of these policies issued or coordinated by the same individual or office, or are they scattered throughout the institution?
Using the framework presented in this chapter, evaluate the comprehensiveness of each policy you located in Exercise above Which areas are missing?
Chapter 4 Solutions
Principles of Information Security (MindTap Course List)
Ch. 4 - Prob. 1RQCh. 4 - Prob. 2RQCh. 4 - Prob. 3RQCh. 4 - Prob. 4RQCh. 4 - Prob. 5RQCh. 4 - Prob. 6RQCh. 4 - Prob. 7RQCh. 4 - Prob. 8RQCh. 4 - Prob. 9RQCh. 4 - Prob. 10RQ
Ch. 4 - Prob. 11RQCh. 4 - Prob. 12RQCh. 4 - Prob. 13RQCh. 4 - Prob. 14RQCh. 4 - Prob. 15RQCh. 4 - Prob. 16RQCh. 4 - Prob. 17RQCh. 4 - Prob. 18RQCh. 4 - Prob. 19RQCh. 4 - Prob. 20RQCh. 4 - Prob. 2ECh. 4 - Prob. 3ECh. 4 - Prob. 4ECh. 4 - Prob. 5ECh. 4 - Prob. 1CEDQCh. 4 - Prob. 2CEDQCh. 4 - Prob. 3CEDQ
Knowledge Booster
Similar questions
- When we speak about physical security, what precisely do we mean, and how does it stack up against other types of protection? What are some of the most important dangers to a person's physical safety that are prevalent in the current world and how may one protect themselves from these dangers? How do they make themselves known to the wider public, and what form do their assaults on the organization take when it comes to the structure of the organization?arrow_forwardComputer Science Pick one security law that most interests you with an emphasis on the areas that impact information security and assurance. Write a 1 page summary that includes what it is, what is its purpose/relevance, why is it important, who or what it applies to, ramnifications if not followed, and impact on information and assurance.arrow_forwardWhere do you think an organization's information security begins and ends, in your opinion? To put it another way, when does a company's security policy and measures go into effect, and when do they stop? Do you think any of these restrictions will be lifted in the future? Explain how and why this is the case if this is the case. What would be the reason if that was not the case?arrow_forward
- A number of authorities in the field of information technology security are of the opinion that businesses might significantly improve their levels of protection by employing individuals who have previously worked as hackers in the capacity of consultants. Is that what you consider to be the case? Is this an acceptable reason or an unacceptable one?arrow_forwardThe CISO reaches out to complains about the interns who appear to be violating many security policies. They do not lock their workstations, download illegal music, connect their personal devices to the organization's computers, spend too much time on social media, and even download pornography to the organization's computers. The CISO asks you to address these violations by developing a security document (Rules of Behavior) stating at least 15 rules about what activities employees are not allowed to conduct on the network.arrow_forwardWhat is the difference between security and protection? What are the relationships between these two concepts?arrow_forward
- If you were to name the most common threats to computer security, what would they be?arrow_forwardWhat exactly does it mean for an individual's personal information to be protected? What should you do to ensure that the privacy of your personal information is maintained?arrow_forwardWhere do you believe information security begins and ends in a company? The organization's control determines the earliest and latest points at which its security policies and measures become active and inactive, accordingly. Do you think any of these boundaries should be expanded or extended any more? If so, how and why did you go about doing so? If not, what's the cause behind this?arrow_forward
- Discuss the differences between groups and roles in access control computer security?arrow_forwardWhat is the need-to-know principle? Why is it important for a protection system to adhere to this principle?arrow_forwardWhy and how should different security rules, standards, and guidelines be created and maintained in tandem with one another?arrow_forward
arrow_back_ios
arrow_forward_ios
Recommended textbooks for you
- Principles of Information Security (MindTap Cours...Computer ScienceISBN:9781337102063Author:Michael E. Whitman, Herbert J. MattordPublisher:Cengage LearningManagement Of Information SecurityComputer ScienceISBN:9781337405713Author:WHITMAN, Michael.Publisher:Cengage Learning,
- Principles of Information Systems (MindTap Course...Computer ScienceISBN:9781305971776Author:Ralph Stair, George ReynoldsPublisher:Cengage Learning
Principles of Information Security (MindTap Cours...
Computer Science
ISBN:9781337102063
Author:Michael E. Whitman, Herbert J. Mattord
Publisher:Cengage Learning
Management Of Information Security
Computer Science
ISBN:9781337405713
Author:WHITMAN, Michael.
Publisher:Cengage Learning,
Principles of Information Systems (MindTap Course...
Computer Science
ISBN:9781305971776
Author:Ralph Stair, George Reynolds
Publisher:Cengage Learning