Short note on Security Assessment.

-

Security Assessment 

- Security assessment has something in common with a safety assessment.

- It is intended to demonstrate that the system cannot enter some state (an unsafe or an insecure state) rather than to demonstrate that the system can do something.

- However, there are differences

  • Safety problems are accidental; security problems are deliberate;
  • Security problems are more generic - many systems suffer from the same problems; Safety problems are mostly related to the application domain


Security validation

Experience-based validation

- The system is reviewed and analyzed against the types of attacks that are known to the validation team.

Tool-based validation

- Various security tools such as password checkers are used to analyze the system in operation.

Tiger teams

- A team is established whose goal is to breach the security of the system by simulating attacks on the system.

Formal verification

- The system is verified against a formal security specification.



Comments

Post a Comment

Popular posts from this blog

Legislations and IT in Nepal MCQ IT Officer(PSC)

-
  1. A genetic term that is concerned to the legal and regulatory aspects of Internet and computer technology. a. Copyright law b. Cyber law c. Computer Crime d. None of them Correct Answer: b Explanation: Cyber law encompasses the legal and regulatory aspects of internet and computer technology. The correct answer is "b". 2. "The Electronic Transaction and Digital Signature Act Ordinance" is Known as: a. Intellectual Property Law b. Cyber Law c. Telecommunication Law d. Data Protection Law Correct Answer: b Explanation: This act is commonly referred to as Cyber Law in Nepal, governing electronic transactions and digital signatures. The correct answer is "b". 3. A criminal activity within the information technology infrastructure. a. Digital crime b. Intellectual property c. Cybercrime d. All of them Correct Answer: c Explanation: Cybercrime specifically refers to criminal activities conducted within IT infrastructure. The correct ...
Read more

Explain Aneka thread life cycle /Explain local thread and Aneka thread.

-
Image
 Thread Life Cycle As Aneka threads exist and operate in a distributed environment, their life cycle differs from that of local reads.  The following figure depicts the possible execution states for local threads supported by the .Net framework.  A thread may be in one or more of those statuses at any given moment. When a new thread is created, its status is Unstarted, and when the Start method is called, it changes to Running. There is also a Background state that specifies whether a thread is operating in the background or the foreground. The diagram below depicts the life cycle of an Aneka Thread. Because the two thread types are essentially different, one is local and the other is distributed, the possible states they might take vary from instantiation to termination. Most state transitions in local threads are managed by the developer, who causes the state transition by executing methods on the thread instance, but many state transitions in Aneka threads are handled ...
Read more

Explain advantages of authority delegation

-
Image
Advantages of authority delegation 1. Reducing workload:     Delegation of authority allows subordinates to make decisions in their responsibility area. Routine and operating functions can be performed by delegating authority to subordinates. Thus, a delegation of authority allows top-level management to be focused on strategic areas. 2. Improving efficiency:  Effective delegation increases the speed of decision-making. This facilitates increasing the rate of job accomplishment. Subordinates need not wait for their superior for decisions. Subordinates can complete more jobs within a limited time because which efficiency of employees, as well as an organization, can be improved. 3. Empowering employees:  Delegation of authority provides decision-making power to the subordinates which is the means of their empowerment. Delegation of authority makes employees more loyal, dedicated, creative, and efficient as they have to make effective decisions. It increases the mortal...
Read more