CISSP: Certified Information Systems Security Professional Study Guide 2nd Edition phần 5 pdf

... (and it’s not for small systems) , but consider the following figures: Number of Participants Number of Keys Required 21 32 46 51 0 10 45 100 4, 950 1,000 499 ,50 0 10,000 49,9 95, 000 Obviously, the ... is shown in Figure 10.1. 43 35. book Page 288 Wednesday, June 9, 2004 7:01 PM Answers to Review Questions 251 15. D. The maximum allowed ping packet size is 65, 536 bytes. To engage...

Ngày tải lên: 14/08/2014, 18:20

... sensitive information. Security policies that prevent information flow from higher security levels to lower security levels are called multilevel security policies. As a system is developed, the security ... Multistate systems are capable of implementing a much higher level of security. These systems are certified to handle multiple security levels simultaneously by...

Ngày tải lên: 14/08/2014, 18:20

... directive control is a security tool used to guide the security implementation of an organi- zation. Examples of directive controls include security policies, standards, guidelines, proce- dures, ... Security Models 12. What is the best definition of a security model? A. A security model states policies an organization must follow. B. A security model provides a framework to i...

Ngày tải lên: 14/08/2014, 18:20

... Activity 54 9 Confiscating Equipment, Software, and Data 55 0 Incident Data Integrity and Retention 55 1 Reporting Incidents 55 1 Ethics 55 2 (ISC) 2 Code of Ethics 55 2 Ethics and the Internet 55 3 Summary ... 54 3 Business Attacks 54 3 Financial Attacks 54 4 Terrorist Attacks 54 4 Grudge Attacks 54 5 “Fun” Attacks 54 5 Evidence 54 6 Incident Handling 54 6 Common Types of...

Ngày tải lên: 14/08/2014, 18:20

... in RFC 1918. The private IP address ranges are 10.0.0.0–10. 255 . 255 . 255 , 172.16.0.0–172.31. 255 . 255 , and 192.168.0.0–192.168. 255 . 255 . These ranges of IP addresses are defined by default on routers ... in Token Ring networks Cat 5 100Mbps Used in 100Base-TX, FDDI, and ATM networks Cat 6 155 Mbps Used in high-speed networks Cat 7 1Gbps Used on gigabit-speed networks 43 35. book...

Ngày tải lên: 14/08/2014, 18:20

... not routed on the Internet? A. 169.172.0.0–169.191. 255 . 255 B. 192.168.0.0–192.168. 255 . 255 C. 10.0.0.0–10. 255 . 255 . 255 D. 172.16.0.0–172.31. 255 . 255 10. Which of the following is not a benefit of NAT? A. Hiding ... Private 43 35. book Page 1 45 Wednesday, June 9, 2004 7:01 PM Chapter 5 Security Management Concepts and Principles THE CISSP EXAM TOPICS COVERED IN THIS...

Ngày tải lên: 14/08/2014, 18:20

... of systems development activities with an eye toward security concerns that should be fore- most on the mind of any information security professional engaged in solutions development. 43 35. book ... dif- ferences between compartmented security mode, dedicated security mode, multilevel security mode, and system-high security mode. Understand the different types of classifie...

Ngày tải lên: 14/08/2014, 18:20

... continuing 43 35. book Page 4 65 Wednesday, June 9, 2004 7:01 PM In the early days of computer security, information security profes- sionals were pretty much left on their own to defend their systems ... organizational asset during the next year 43 35. book Page 471 Wednesday, June 9, 2004 7:01 PM Summary 4 65 Emergency Response Guidelines The emergency response guidelines outlin...

Ngày tải lên: 14/08/2014, 18:20

... Gramm-Leach-Bliley Act 4335c17.fm Page 53 4 Thursday, June 10, 2004 5: 41 AM Review Questions 55 7 Review Questions 1. What is a computer crime? A. Any attack specifically listed in your security policy B. ... organization D. Use automated tools to scan the organization’s systems for vulnerable ports 43 35. book Page 55 7 Wednesday, June 9, 2004 7:01 PM 55 6 Chapter 18  Incidents an...

Ngày tải lên: 14/08/2014, 18:20

... protection, and the extent to which security solutions should go to provide the necessary protection. security professional Trained and experienced network, systems, and security engineer who is responsible ... time. compartmented security mode A security mode in which systems process two or more types of compartmented information. All system users must have an appropriate...

Ngày tải lên: 14/08/2014, 18:20