Explain the Assess system security at six levels: physical security, network security, application security, file security, user security, and procedural security.
(chpt 12)
Expert Answer
Physical security consists of:
1. Operations center security.
2. Server and Desktop computers.
3. Notebook computers.
Network security consists of:
1. Network
2. Network interface
3. Encrypted
4. Encrypting network traffic
–Wireless networks
– Private networks
–Virtual private networks
–Ports and services
–Firewalls
Application security consists of:
–Services
–Hardening
–Application permissions
–Input validation
–Patches and updates
–Software Logs
File security consists of:
–Permissions
•Read a file
•Write a file
•Execute a file
•Read a directory
•Write a directory
–User Groups
User security consists of:
–Privilege escalation attack
–Identity management
–Password protection
–Social engineering
–User resistance
–New technologies
•Security token
Procedural security consists of:
– Operational security
– Dumpster diving
– paper shredders