Discuss Malware

Discuss the following, supplying citations to support any information that you provide.  Do not include your opinion, only what you can support with a citation.  Address the following topics.

  1. What is malware? 
    1. Discuss at least five types, describing each.
    2. Discuss what they are and what they do.
    3. Discuss a notable instance of each type
  2. What impact can malware have on an organization
  3. How can an organization reduce risks associated with malware?  (Hint: talk about appropriate types of policies, procedures, and the use of technology)
  4. What is software piracy or license violations?
    1. What can an organization do to avoid it?
    2. What are the potential consequences of it?
    3. What relationship does it have with malware?

For all writing assignments ensure that you do the following:

  • Write 1000 to 1500 words in APA format.
  • Utilize at least five scholarly references. 
  • Note that scholarly references do not include Wikipedia, .COM websites, blogs, or other non-peer reviewed sources. 
  • Utilize Google Scholar and/or the university library. 
  • Do not copy and paste bulleted lists.  Instead, read the material and in your words, describe the recommendation citing the source. 
  • Review the rubric to see how you will be graded.
  • Plagiarism will result in a zero for the assignment. 
  • The second instance of plagiarism will result in your failure of this class.
  • If you use a source, cite it.  If you do not, it is plagiarism.

Week 7

 

Create a PowerPoint that contains a FLOWCHART and a PSEUDOCODE for each problem (You may use a different application if PowerPoint is not available).

Use the information below to create a pseudocode (which can be a text-based description for solving the problems) and a flowchart (using flowchart symbols to illustrate how you would program) to solve each problem. Use Microsoft PowerPoint® for Pseudocode and the flowchart (You may use a different application if PowerPoint is not available)..

  • Problem 1: Create a list that contains the months of the year.
  • Problem 2: Create a loop to print the month number and name (do not hard code the month number)

Computer science

Briefly describe the following

1.profession (15 marks)

2.professional(15 marks)

3.code of conduct (15 marks)

4.Ethics(15 marks)

5 contracts(15 marks)

6.policies(15 marks)

7.practices(15 marks)

Web applications

 You are the webmaster for the Republican Party National Committee. Prepare a risk assessment analysis for your website. Some questions to consider:

  • Who is likely to attack your site?
  • When are attacks likely to occur?
  • What sort of attacks might take place?
  • How can you best minimize attacks and protect the integrity of your site?

Write between 200-300 words. 

Discussion and Assignment

 Discussion

 In no less than 250 words, explain what is meant by an IDS and an IPS.  How are they different?  How are they connected to a network?  List a few examples of IDS/IPS tools that are currently on the market.  

Week 11 Assignment

  • 11.1 List and briefly define three classes of intruders.
  • 11.2 What are two common techniques used to protect a password file?
  • 11.3 What are three benefits that can be provided by an intrusion detection system?
  • 11.4 What is the difference between statistical anomaly detection and rule-based intrusion detection?
  • 11.5 What metrics are useful for profile-based intrusion detection?
  • 11.6 What is the difference between rule-based anomaly detection and rule-based penetration identification?
  • 11.7 What is a honeypot?
  • 11.8 What is a salt in the context of UNIX password management?
  • 11.9 List and briefly define four techniques used to avoid guessable passwords.

Discussion

 Do you believe that all data should be encrypted? Many computing professionals think this is a good idea. But a small number of computing experts feel that no data should be encrypted—that all data and software should be openly available to anyone who wants it. Explain your answer (whether you believe all data should or should not be encrypted). 

 

Internet Research – Wk 11

In this module, you learned that random numbers (or, at least, pseudorandom numbers) are essential in cryptography, but it is extremely difficult even for powerful hardware and software to generate them. Go online and conduct research on random number generators. What are the different uses of these tools besides cryptography? How do they work? Explain your answer using your own words in 2-3 paragraphs 

Regulatory Compliance

Describe in 400 words the shared security responsibility model that a dba must be aware of  when moving to the cloud.

Use at least three sources. Include at least 3 quotes from your sources enclosed in quotation marks and cited in-line by reference to your reference list.  Example: “words you copied” (citation) These quotes should be one full sentence not altered or paraphrased. Cite your sources using APA format. Use the quotes in your paragaphs.  Stand alone quotes will not count toward the 3 required quotes.

Cybersecurity

Reflect on what you have gained from taking this course.

Write a short statement of 200 words that completes and explains the following sentence.

“One of the most important Cybersecurity learnings I am taking away from this  fundamentals of Cybersecurity course is…

9 – Imoprtance of strategic IT planning

 

Discussion: Physical Security

Discuss an organization’s need for physical security. What methods, approaches, and models can be used by organizations when designing physical security needs? Lastly, explain how these security measures will safeguard the organization.

At least two scholarly sources should be used in the initial discussion thread. Use proper citations and references in your post. The answer should be a minimum of 250 – 300 words.

computer science

if you know about computer science and programming and python text me I need someone good can help me with my class and you should know English please 

Response Required Discussion cloud DBA

Please read the below two discussion posts and provide the response for each discussion in 75 to 100 words.

 Post#1

Nowadays, there are numerous advancements in technology. As a result, the traditional workplace has gradually transformed with home offices and virtual workplaces where employees can hold meetings using video teleconferencing tools and communicate through email and other applications such as Slack (Montrief, et al., 2020). This makes the cloud more busy which brings up the need for improved cloud security.

            Generally, in a public cloud, there exists a shared responsibility between the user and the Cloud Service Provider (CSP). Due to the rise of cyber-related crimes over the years, security for things like data classification, network controls and physical security need clear owners. The division of such responsibilities is called shared responsibility model for cloud security. “According to Amazon Web Services (AWS), security responsibility is shared by both CSP and CSC and they called it as Shared Security Responsible Model” (Kumar, Raj, & Jelciana, 2018). “While client and endpoint protection, identity and access management and application level controls are a shared responsibility the responsibility resides largely with the client organization” (Lane, Shrestha, & Ali, 2017). However, the responsibilities may vary depending on the cloud service provider and the cloud environment the user is using to operate. Nevertheless, despite the cloud services used, the burden of protecting data lays upon the user.

            Normally, security is broken down into two broad categories: security of the cloud and security in the cloud. Security of the cloud is a section of the shared responsibility model handled by the cloud service provider. It comprises of hardware, host operating systems and physical security of the infrastructure. Most of these logistical challenges are offloaded when an organization moves its operations to the cloud. In contrast, security in the cloud is the security responsibility handled by the user. “The cloud service customer is responsible for securing and managing the applications that run in the cloud, the operating systems, data-at-rest, data-in-transit, policies and other responsibilities” (Bennett & Robertson, 2019). Since access to customer data remains the most critical component in cloud computing, it also determined the level of security in the cloud to be implemented by the customer.

            The customer is responsible for the following components. First, the customer is responsible for data security. While the provider is responsible for automatically encrypting data in transit and in storage, the customer is expected to configure file system encryption and protection of network traffic. Secondly, the customer is responsible for physical security of computers and other devices used to access the cloud. Thirdly, the customer is responsible for application security. Security of managed applications may be handles by cloud provider services, but the customer is responsible for configuring those services accurately and correctly. Fourthly, the customer is responsible for security hinges on identity and access management in on-premises computing. The cloud provider can implement authentication services but it’s the work of the customer to configure them. Finally, the customer is responsible for network security on-premises.

            The cloud has various advantages such as scalability, elasticity and flexible prices. However, security is remains a critical business concern for many organizations (Xue & Xin, 2016). Regardless of which cloud service provider used, the customer will always be responsible for managing the customer data, analyzing workload, traffic and performance. When implementing cloud projects, customers need to identify and understand the risks associated with digitalization, public networks and outsourcing of infrastructure components. Shared responsibility in cloud computing depends on the agreement that the customer has with the cloud service provider. This is because there are specific tasks that can be logically handled by the customer while other duties are handles by the service provider such as ensuring physical access to the data center is restricted to authorized personnel’s only.

Post#2

 

Cloud offers variety of services and virtual machine to an organization at cost effective and is thus considered as one of the most innovative advances in technology. The ability to scale as well as stored and manage data increases by using cloud. Regulatory compliance states the modification and the steps that the organization should actively take to reach its goals. Good regulatory compliances needs to be maintained while moving to cloud so that any necessary precaution and post cloud changes can be made to the organization thus moving it closure to the goal and target. “There are straight-forward ways of modeling future ownership and the progression of value creation using a combination of capitalization table analysis and the venture capital method of valuation” (Sammut, 2020).

Protecting the crucial and sensitive data while moving to cloud is the major concern of the organization and database administrator is an intrinsic component of the authorization and control process towards regulatory compliance. DBA don’t necessarily need to know who can access the system but are necessary for database security and checking security breaches and attacks. DBA most importantly needs to know about the architecture of the cloud and the various components being actively used by the organization while moving to cloud. An understanding about the difference between on premises and cloud services including the computing stack is also a requirement for DBA. Along with that, the dba should also know how to utilize all the components of the cloud both from the point of view of administrator and developer. “While current Passive optical network (PON) standards can provide data transmission capacity of tens of Gbps, in the near future, the use of more wavelengths with rates higher than 10 Gb/s could see the overall capacity increase towards hundreds of Gbps” (Afraz, 2018).

DBA also plays the crucial role in managing the budget for the cloud database and thus should have the related information as well as knowledge about application design and impact of cloud database followed by the cost of impact. Studies suggest that it is not recommended to move all the data at once to cloud, at least not initially. The DBA thus needs to work for few days in the hybrid setting of cloud and on-premises arrangement. DBA should know the traditional skills to manage on premises activities and also the advanced skill to deal with the cloud activities and database. The initial movement of database to cloud should only include the crucial and the important effective data and thus DBA should use his understanding to decide what data should be moved to cloud followed by planning for the remaining data and deciding their time to move to cloud. Dba needs to be aware about each component of cloud, the organization services and the cloud services to maintain good regulatory compliance when moving to the cloud. “Since data in the cloud is going to be placed online, it is important that these data in the clouds are well secured” (Krishna, 2018).