Premium Essay

Unit 1 Assignment 2

In:

Submitted By bbake36
Words 257
Pages 2
The “Internal Use Only” data classification at Richman Investments will include the User domain, Workstation domain, and the LAN domain. This data classification will include information such as new employee training materials, company telephone/email directory, and internal policy manuals. Even though this is not “Top Secret” information it is still important for the company to keep the information within the company. The User domain covers all of the employees that will be connecting to the company’s network. Since human beings cannot be controlled like computers this domain is the weakest out of the seven domains. In order to protect the company employees must sign an AUP before being allowed to connect to the network. The Workstation domain is where users first access company systems, applications, and data. In order to connect users will be required to login with their own unique username and password. Users will only be allowed to use company computers on the network. Company computers will be kept up to date on all software patches and updates in order to help ensure security. The LAN domain includes all data closets and physical as well as logical elements of the LAN. All data closets will be locked down and only authorized personnel will have access. The largest threat to this domain is unauthorized access. All users will undergo background checks through Human Resources to ensure they can be trusted on the company’s LAN.

Works Cited
Kim, D., & Solomon, M. (2012). Fundamentals of Information Systems Security. Burlington: Jones and Bartlett Learning LLC.

Similar Documents

Free Essay

Unit 2 Assignment 1

...January 6, 2015 January 6, 2015 Todd Eppes NT1310 Todd Eppes NT1310 Service Provider types Unit 2 Assignment 1 Service Provider types Unit 2 Assignment 1 Todd Eppes January 1, 2015 NT1310 Unit 2 Assignment 1 Service Provider Types RBOCS stands for Regional Bell operating company. It was one of the United States regional telephone companies that were created as a result of the breakup of AT&T. They are allowed to compete for long distance telephone traffic under certain circumstances. RBOCs are generally in competition for digital data and internet traffic with wireless service providers and cable TV companies. ILEC is short for incumbent local exchange carrier. IT is a telephone company that was providing local service when the Telecommunications Act of 1996 was enacted. They are in contradistinction to CLEC. GTE was the second largest ILEC after “The Baby Bells” but has since been absorbed into Verizon. CLEC stands for competitive local exchange carrier. IT is a telecommunications provider company competing with other, already established carriers. CLECs have evolved from the competitive access providers that began to offer private line and special access services in competition with the ILECs beginning in 1985. MSO is short for multiple-system operator. This is an operator of multiple cable or direct-broadcast satellite television systems. Though in the strictest sense any cable company that serves multiple communities is an...

Words: 274 - Pages: 2

Premium Essay

Unit 2 Assignment 1

...Introduction to Networking Unit 2: Assignment 1 Indentifying Network Topologies Identify the major needs and major stakeholders for computer networks and network applications. The major stakeholders for computer networks and network applications are the ones who use it or relay on it to do business. The main stakeholders are the ones who uses the network or applications to get their work done for their company. The next stakeholder is the company or people who rely on the first company to get what they need. The ones who design the applications or the network are stakeholders in the fact they need to make sure their work is done properly so others can do their job. The owners are also stakeholders in the fact that others rely on their people and software to get their work done. Then there is the end-users who are also stakeholders because we need the network and applications to do our daily job. Identify the classifications of networks and how they are applied to various types of enterprises. PAN (Personal Area Network)—personal. You as an individual and the range is around that person LAN (Local Area Network)—network of interconnected computers within a small geographic area. Area of LAN’s are a room, building or group of buildings, offices, schools. The range is 10m – 1km MAN (Metropolitan Area Network)—a network design for a town or a city. The range is about 10km.Examples would be London, England or Geneva, Switzerland, WAN (Wide Area Network—a network that spans...

Words: 289 - Pages: 2

Premium Essay

Unit 2 Assignment 1

...10/ 1/ 2014 NT2580 Unit 2 assignment 1 The workgroup consists of three primary workgroups, which contain group membership lists of users within the Active Directory infrastructure that currently exists on the SMB Server that is located within the confines of the LAN structure. The security breach, which is defined as any event that results in a violation of any of the CIA (confidentiality, integrity, availability) security principles, was caused by the SMB server being accessed by an unauthorized user due to a security hole that was detected by the server software manufacturer the previous day. The security patch will not be available until possible as long as three days, but hopefully within that timeframe. In addition, the LAN administrator needs at least one week (minimum) to download, test, and install the patch. To calculate the Window of Vulnerability (WoV) for this security breach, the following timeline will be used as a guideline to determine the basis for calculation: First it is important to understand the variables considered in this timeline formula. The WoV is the period within which defensive measures are reduced, compromised, or lacking. The WoV covers a timeline from the moment vulnerability is discovered and identified by the vendor. It also includes the time taken to create, publish, and finally apply a fix to the vulnerability. It is also important to explore the device(s) that were targeted by the attack. In this instance, being the SMB server within...

Words: 286 - Pages: 2

Free Essay

Unit 2 Assignment 1

...IS3340-WINDOWS SECURITY | Recommendations for Access Controls | Unit 2 Assignment 1 | | [Type the author name] | 4/3/2014 | | Access Control is the defined as “the selective restriction of access to a place or other resource”, in the RFC 4949. “The act of accessing may mean consuming, entering, or using. Permission to access a resource is called authorization.” Simply put the ability to read, write, modify, or deleting information or files is what Access Control is. It is more than this, in the permissions (authorization) granted to each Security Group or Individual User. The permissions mentioned in the previous paragraph are rights that a user is allowed to access, create, modify, or delete the file(s) inside a file folder, or objects. These are all permissions (authorizations) controlled by the Authorized Windows Security Personnel of the file structure. We will list some examples of how this outlined and what the impact would be, but first understand that requirements for the permissions is controlled from the Group Level, other than by Individual User, because it is easier to control from a security standpoint when you want to modify these abilities. There are four folders created (D:\ERPdocuments, D:\ERPdocuments\HRfiles, D:\ERPdocuments\SFfiles, D:\ERPdocuments\MGRfiles) which we want to allow specific permissions for certain functions (tasks). For example; by modifying the permissions under the specific user account for HRmanager to include...

Words: 436 - Pages: 2

Free Essay

Unit 1 Assignment 2

...Unit 1 Assignment 2 The Internal Use Only data classification standard of Richman Investments has many different infrastructures domains that are affected via internal use only data classification. More than all others, the three infrastructures that are affected the most are the User Domain, Workstation Domain and the LAN Domain. The reason why the User Domain infrastructure is one of the most affected infrastructures is because the User Domain infrastructure is the infrastructure that allows users to access the network. This is a problem because many users do not fully understand everything, all the time and thus is bound to make a mistake sooner or later. With so many users on our network, this is probably the most vulnerable domain infrastructures in our network. The Workstation Domain is also another domain infrastructure that has great reason to be affect by internal use only data because this is where the user connects to the our network. The reason that this can cause security threats and other problems is because this domain can be connected via a personal laptop or even a cell phone or other mobile device. The final infrastructure domain that is greatly affected is the LAN domain. The reason that this domain infrastructure is affected by internal use only data is because this domain is the open domain available companywide, to anybody in the building or even near the building via a wireless device. If we watch these specific areas closer and implement some user...

Words: 275 - Pages: 2

Premium Essay

Unit 1 Assignment 2

...September 25, 2014 NT 2580 Unit 1 assignment 2 A Data Classification Standard is information or data shared internally by an organization. The private information or data may not be included; core communications are not planned to leave the organization. The report is designed to describe and explain the standards for the “Internal use only” data classification at the Richman Investments location, this report will address which IT set-up domains are affected by the standard and how. The first IT set-up affected by core use is the User Domain. The User Domain describes the people who access an organization’s information system. The user domain will enforce an Acceptable Use Policy (AUP) that defines what each user can and cannot do with the company’s data. With company users, any outsiders, contractor’s or third party agents will also need to agree and comply with the Acceptable Use Policy. Any violation will be taken up with management or the proper establishments to access further corrective action. Work Station Domain: This is where most of the company’s users connect to get to the IT set-up. No personal devices or removable media may be allowed on this network ever. All devices and removable media will be issued by the company for official work use. Access Control Lists (ACLs): ACLs will be tired up to appropriately define which access the users are allowed to use. Any violation causes an immediate suspension of rights and the person(s) in violation will be subject to company...

Words: 414 - Pages: 2

Free Essay

Unit 2 Assignment 1

...NT1310 Week 2 – Unit 2 Assignment 1 Service Provider Types There are five different types of telecommunication types to date. First of which is RBOC – (regional bell operating company) which was a telephone company created as a result of the breakup of AT&T. The seven original regional Bell companies were Ameritech, Bell Atlantic, BellSouth, NYNEX, Pacific Bell, Southwestern Bell, and US WEST. The reason why this was so important was because these companies are what provided local telephone service while AT&T provided the long distance phone service. These are what made up the Local Exchanges or the LEC’s. ILEC or incumbent local exchange carrier was a telephone provider that provided local service prior to the telecommunications act of 1996. These play a major role because these carriers are what own the local loops/exchange and facilities in that area. CLEC’s are the exact same thing except they are the competitor to the ILEC’s but provided their own networking and switches for local service. MSO or Multi system Operator – is owner of multiple cable and satellite television systems. This ties into what an ISP is. An ISP is simply and Internet service provider that provides a mean for accessing the internet. MSO is majorly known for being cable companies, because of this cable companies are providing internet to cable customers (usually as bundles with their plan). They work within each other because they...

Words: 314 - Pages: 2

Premium Essay

Unit 1 Assignment 2

...September 25, 2014 NT 2580 Unit 1 assignment 2 A Data Classification Standard is information or data shared internally by an organization. The private information or data may not be included; core communications are not planned to leave the organization. The report is designed to describe and explain the standards for the “Internal use only” data classification at the Richman Investments location, this report will address which IT set-up domains are affected by the standard and how. The first IT set-up affected by core use is the User Domain. The User Domain describes the people who access an organization’s information system. The user domain will enforce an Acceptable Use Policy (AUP) that defines what each user can and cannot do with the company’s data. With company users, any outsiders, contractor’s or third party agents will also need to agree and comply with the Acceptable Use Policy. Any violation will be taken up with management or the proper establishments to access further corrective action. Work Station Domain: This is where most of the company’s users connect to get to the IT set-up. No personal devices or removable media may be allowed on this network ever. All devices and removable media will be issued by the company for official work use. Access Control Lists (ACLs): ACLs will be tired up to appropriately define which access the users are allowed to use. Any violation causes an immediate suspension of rights and the person(s) in violation will be subject to company...

Words: 413 - Pages: 2

Free Essay

Unit 2 Assignment 1

...Eric Satchell NT1330 Service Provider Types Unit 2 Assignment 1 July 3, 2014 Comparing Service Providers There are a lot of companies providing services, but AT&T provided telephone communication to the public. AT&T monopolized the telecommunication industry until the United States took them to court for antitrust and won. AT&T was broken up into eleven smaller companies, call Baby Bells. One of the companies that derived from this law suit was the Regional Bell Operating Company or RBOC. RBOC was a term that described one of the US telephone companies that provided telephone, telegraph, and long distance to the consumers. RBOC is part of a local exchange carrier allowed to compete for business. RBOC services internet service which in turn dealt with digital data. The merging companies provided different types of service based on the Telecommunication Act of 1996. ILEC or incumbent local exchange carrier is a telephone company that provided local telephone communications before the ruling to break up the Ma Bell Company. The FCC ruled that the ILECs must provide other telecommunications service providers access to their equipment to be able to provide a better rate to the consumer. This ruling...

Words: 480 - Pages: 2

Premium Essay

Unit 1 Assignment 2

...Dear Supervisor: The IT infrastructure that is affected by the “Internal Use Only” data includes the following; User domain, Workstation domain, and LAN domain. The User domain is the person who is going to be using any Workstation at any given time and how this can be protected is by placing in effect an Acceptable use policy (AUP). An AUP defines what the users are allowed to access within the office. The Workstation domain is the physical computer that any employee has access to and how this can be protected from certain threats is by placing in effect the following; configure the hardware, hardening the system, and verifying antivirus files. Configuring the workstation would include not allowing the CD/DVD drive to work and any USB that is connected to the computer is automatically encrypting the data that is transferred to it so it cannot be used outside of the office. Verifying the antivirus files is just making sure that the antivirus software is up to date and is stopping most of the viruses that are coming into the network. And hardening the system is just ensuring that all the workstations have the latest software revisions, security patches, and system configurations. LAN domain is what connects all the workstations in the building. How this can be more secure is by implementing access control by setting up user LAN accounts with logins and passwords. Design of directory and file services which user will have to access. Configure workstations and servers to use...

Words: 295 - Pages: 2

Premium Essay

Unit 2 Assignment 1

...Course GS1145 06/28/2015 6:00PM Dear Mrs. Phifer, As a returning student to college I have very few if any questions. I know you are thinking if that is the case then why you haven’t graduated from a college or university. But the reason for so little questions and concerns is because I’ve realized my mistakes and I’ve come to terms with those mistakes and I’m currently in the process of making corrections to those mistakes. Anyways some of the few questions that I do have are as follows: 1. What if I want to go ahead on assignments am I allowed to? 2. How will this course assist me with my goals of obtaining an associate’s degree? 3. How will this course benefit me? Along with these questions and concerns I also have a few challenges that I need to overcome, one of those being time management with having to work all day attend school after gives me a very limited amount of time to finish and complete assignments. That’s one thing that be fixing this semester because procrastination has been my friend for far too long. Another challenge I would say is a big factor would be as previously mentioned procrastination I put tasks off for long periods of time, school being one of those tasks and it has caused some pretty good opportunities to slip away from me. Even though I have some challenges I still possess some good strengths a couple of them being persistence and motivation, both of them are essential qualities that are needed to finish and complete school and...

Words: 464 - Pages: 2

Premium Essay

Unit 2 Assignment 1

...Bill Gulliford Jacksonville City Council President Jacksonville City Council 117 West Duval Street Suite 425 Jacksonville, FL 32202 DearBill Gulliford: Recently my family and I have moved into the community so that I can take care of my elderly mother and father. I had always believe that their neighborhood was the perfect place for them to live peacefully, and for my family and I to build a life. Unfortunately, appearances were misleading. Since we have moved, I have noticed that there are people selling “illegal substances” at the corner of the street, adults and children, and in the middle of the night my family and I have been awoken several times by the sounds of gunshots. My family and I do not feel as safe as we had hope to be. The previous city we moved from had implemented a few different strategies to reduce the crime rates. One of the strategies is to increase police patrolling in neighborhoods that have been suspected of multiple law infractions. This would helpful because if law enforcement officers are there monitoring then the suspected criminals would be less likely to commit these crimes. Another strategy is “Stop-and-Frisk”. This would be helpful because if there is a suspicious character in the neighborhood the officers patrolling would legally be able to stop them and remove any weapons or illegal substances. Therefor reducing both of the issues at hand. The last suggestion I would have to offer is curfews. The only reason that I offer this suggestion...

Words: 409 - Pages: 2

Premium Essay

Unit 2 Assignment 1

...A security breach has been identified in which an authorized user due to a security hole accessed the SMB server. The server software manufacturer detected the hole the day before. A new patch will be available in three days. However the LAN administrator needs at least a week to download the software, test it, and then install the patch. Based on this information, the window of vulnerability at the very least is eight days. WOV, Window of Vulnerability, is the time it takes the attack to start all the way to when the attack is found and removed or fixed. In this case it doesn’t say what day or time the attack was found, only that the server software detected it the previous day. We will pretend that the attack was on a Monday morning. The software company will be releasing a patch for the attack in three days. We will receive the patch either Thursday or Friday. When we get the patch we will need to install and test the patch, this will take at least one week. Once the patch is installed we will need to push the update company wide to all machines that access the network. We will need to send out an email message to all employees to either leave the PC’s on so that we can remotely install the updates. From the day we found the security hole to the the time we fix the security hole, it will take approximately take 8 weeks to complete the whole process. Work Cited:...

Words: 263 - Pages: 2

Premium Essay

Unit 1 Assignment 2

...The integration of Active Directory & impact with the current Ken 7 Windows Limited environment is that all new users will be created within Active Directory at the Local Group Policy Object (GPO) level. They are assigned to Site GPO’s, Domain GPO’s, & an overall Organizational Unit GPO. The Organizational GPO would be “Ken 7 Windows Limited”, the Domain would be manager (level of authority), Site GPO would be location (state if national, country if international). The last level would be the Local GPO, where each users’ information is at. This is the level in which all new users are individually created or modified. One of the plus’ to Active Directory is that instead of having to manage each user account individually, you can modify the privileges of the higher level to apply the changes to all (eg. All users in the accounting department you want to now have access to something they previously did not). With the use of the levels of GPO’s described above, the lower level (user account) takes precedence over the higher level. If you want a specific manger or individual user to have privileges to something that the others in that GPO (Local, Site, or Domain) don’t, you have authorize that individual the privilege. It makes the management of privileges and security much easier to track, and not have to worry about mistakes being made. If they happen to be made, they can quickly be fixed or corrected. The last thing I want to cover is the use of SID’s (Security...

Words: 372 - Pages: 2

Free Essay

Unit 1 Assignment 2

...In this assignment seven stakeholders of the two businesses chosen will be explained in terms of their interests in the businesses and to evaluate the influences that they have over the businesses in terms of the business running. The two companies in this case are Tesco and Children in Need. The stakeholders for Tesco that will be assessed in this assignment are: Customers Shareholders Suppliers Employees Local Community Competition Sponsors The stakeholders for Children in Need that will be assessed in this assignment are: Owners Trustees Media Donators Volunteers Accountants The Cause Tesco The customers of Tesco are the people who buy goods and pay for the services from Tesco and Tesco try to persuade them to be lifetime customers and not just one time by offering special deals and bargains for long-time customers and new customers, so they can beat the other supermarkets and be the best. They are an external stakeholder as they are not employees and are outside of the business. In return the customers would want low prices and good quality items, great customer service and for Tesco to listen to the community and change in favour of them so that it is more suited, for example changing packaging so it is more environmentally friendly. The customers probably have the highest influence in terms of Tesco as they are needed for Tesco to increase revenue and earn a profit. They also provide as a motivator for Tesco to improve and expand as they want...

Words: 2675 - Pages: 11