Application Security

 

Discuss  the following, supplying citations to support any information that you  provide.  Do not include your opinion, only what you can support with a  citation.  Address the following topics.

  1. Describe operating system hardening 
    1. Define it
    2. Why is it done?
    3. What steps are usually done in a Windows environment? 
  2. Describe system restoration methods and procedures  
    1. Define it
    2. Why is it needed?
    3. What tools and approaches are recommended?
  3. Describe network security controls 
    1. Define it
    2. Why is it needed?
    3. What steps, tools, and policies are used to secure networks?
  4. Describe incident response teams and the role of evidence 
    1. What are incident response teams and why do they exist?
    2. How does evidence collection relate to incident response teams?
    3. Discuss evidence 
      1. Describe why evidence is collected, 
      2. How it should be collected
      3. What can happen if it is collected or handled in an inappropriate way

For all writing assignments ensure that you do the following:

  • Write 1000 to 1500 words in APA format. 
  • Utilize at least five scholarly references.  
  • Note that scholarly references do not include Wikipedia, .COM websites, blogs, or other non-peer reviewed sources.  
  • Utilize Google Scholar and/or the university library.  
  • Do  not copy and paste bulleted lists.  Instead, read the material and in  your words, describe the recommendation citing the source.  
  • Review the rubric to see how you will be graded.
  • Plagiarism will result in a zero for the assignment.  
  • The second instance of plagiarism will result in your failure of this class.
  • If you use a source, cite it.  If you do not, it is plagiarism.

5s week 9 assignment PL

 in 350 words

Watch this video about Joseph Shumpeter’s concept of Creative Destruction. For example, many think that the introduction of self-driving cars will disrupt the job market for drivers. 

Use at least three sources. Use the Research Databases available from the Danforth Library, not Google.   Include at least 3 quotes from your sources enclosing the copied words in quotation marks and cited in-line by reference to your reference list.  Example: “words you copied” (citation) These quotes should be one full sentence not altered or paraphrased. Cite your sources using APA format. Use the quotes in your paragraphs. Do Not Doublespace.

Copying without attribution or the use of spinbot or other word substitution software will result in a grade of 0. 

Write in essay format not in bulleted, numbered or other list format. 

Include references. Do not copy paste strictly

Blockchain and cryptocurrency

Research project topic: Cloud Computing

 

  • One- or two-page summary of  project proposal.
  • Describe project objective, scope, and targeted industry introduction.
  • List tentative table of contents.

 

The paper structure should be as follows:

  • Abstract
  • Introduction
  • Problem Statement/Research Gap
  • Research Analysis/Literature Review
  • General Findings
  • Strength Identification relative to disruption
  • Weakness Identification relative to disruption
  • Why is this an opportunity?
  • Why is it a threat?
  • How does this disruption solve problem X?
  • Further areas of research to consider
  • Conclusion
  • References

Discuss Malware

Discuss the following, supplying citations to support any information that you provide.  Do not include your opinion, only what you can support with a citation.  Address the following topics.

  1. What is malware? 
    1. Discuss at least five types, describing each.
    2. Discuss what they are and what they do.
    3. Discuss a notable instance of each type
  2. What impact can malware have on an organization
  3. How can an organization reduce risks associated with malware?  (Hint: talk about appropriate types of policies, procedures, and the use of technology)
  4. What is software piracy or license violations?
    1. What can an organization do to avoid it?
    2. What are the potential consequences of it?
    3. What relationship does it have with malware?

For all writing assignments ensure that you do the following:

  • Write 1000 to 1500 words in APA format.
  • Utilize at least five scholarly references. 
  • Note that scholarly references do not include Wikipedia, .COM websites, blogs, or other non-peer reviewed sources. 
  • Utilize Google Scholar and/or the university library. 
  • Do not copy and paste bulleted lists.  Instead, read the material and in your words, describe the recommendation citing the source. 
  • Review the rubric to see how you will be graded.
  • Plagiarism will result in a zero for the assignment. 
  • The second instance of plagiarism will result in your failure of this class.
  • If you use a source, cite it.  If you do not, it is plagiarism.

Need Response to below discussion-cloud IT

Please provide the responses to below discussions in 75 to 100 words for each discussion

Post1#

 

Federated architecture in cloud systems is also referred to as the Cloud Federation Architecture. It is a system that provides an intercloud service where heterogeneous cloud gets capacitated to interoperate. All the clouds participating ‘adopt unique techniques to describe the different services obtained from their platforms’ (Liu, Zhang, Song, & Letaief, 2020). Users, on the other hand, are enabled to use the created mechanism or system to benefit from the common as well as available services within the cloud, this being after the conclusive application of the federation’s architecture within the interface. There are specialist service brokers whose mandate is to provide a platform for translating services between and amongst the interfaces, thus providing the necessary updates for its successful operations.

Cloud federation architecture applies brokerages, including the most common, typical objective request broker architecture (Liu et al., 2020). Others that have gained notoriety in the market amongst consumers include the Object Request Broker, which acts as middleware, especially after introducing the XML. It is now possible to apply similar technologies in processing similar languages while avoiding unnecessary translations. Brokers play a core role in the cloud federation, ‘whereas other service providers such as the CPSs facilitate the broker-to-broker communications’ (Liu et al., 2020). Such a function can be matched with those offered under the federation resources and have to be operated using a user command just as it is done while considering the SLAs parties. It is incumbent upon the brokers to identify the unique ways cloud services and resources ca. n be applied before gathering information seamlessly and smoothly. Service pricing information is another crucial benefit that can be gained from brokerage services.

For cloud federation architecture to function correctly as designed, the engaging parties, as well as those that are interested, need to ‘subscribe for the FLA services’ (Wu, He, & Chen, 2020). This service guarantees particular interconnections, laws, and rules of operation, which also dictates the unique roles and responsibilities of the parties. Only acceptable behaviors are allowed leading to more significant financial gains. There are administrative penalties, however, following violations of the laid down protocols, which equally encourages smaller parties to subscribe and unsubscribe at will. All the pros and cons of cloud federation architecture, however, serve to ensure that the system as developed promotes interoperability, collaboration, and cooperation.

Research on the intercloud services reveals a growing interest and concern for the use of cloud federations. Some of the factors that have been cited for this ever-increasing urge include its power-efficiency, cost-effectiveness, and even the dynamism associated with it when it comes to sharing and disseminating information, services, and resources (Wu et al., 2020). It is required of the members in a federation to sign up for the Sign Service-Level Agreements, which is depended upon for continued availability as well as QoS. Other things to consider include defining the marketing system based on the costs of utilities, determine the geographic dispersion that will dictate how resources are distributed. Equally important is that it will eliminate any likely problems within the network ass that would interrupt normal services or alter access to services through delays. 

Post#2

 

Identity and access management (IAM) in enterprise IT is about defining and managing the roles and access privileges of individual network users and the circumstances in which users are granted (or denied) those privileges. Those users might be customers (customer identity management) or employees (employee identity management). The core objective of IAM systems is one digital identity per individual. Once that digital identity has been established, it must be maintained, modified and monitored throughout each user’s access lifecycle. Identity and management technologies include but aren’t limited to password-management tools, provisioning software, security-policy enforcement applications, reporting and monitoring apps and identity repositories. Identity management systems are available for on-premises systems, such as Microsoft SharePoint, as well as for cloud-based systems, such as Microsoft Office 365.

“An Identity and Access Management (IAM) framework manages these different slices of your profile, including your memberships, groups and organizations, roles, resources, resource-level roles, risk, history, status, and so on” (Scheidel, 2010). IAM systems provide administrators with the tools and technologies to change a user’s role, track user activities, create reports on those activities, and enforce policies on an ongoing basis. These systems are designed to provide a means of administering user access across an entire enterprise and to ensure compliance with corporate policies and government regulations. 

“Unlike manual new-user access and subsequent modification controls, the primary benefit of centralized and automated IAM controls is the enforcement of organizational security policies at the point of use” (George, Aldhizer, Paul & Dale, 2008). Specifically, security policies are enforced through the real-time monitoring of employee and third-party access and use of sensitive data across multiple enterprise resource planning (ERP) databases in numerous locations. Additional benefits of centralized and automated IAM controls include improved operational efficiency, increased userproductivity, enhanced internal audit efficiency, and improved compliance with federal privacy laws and regulations.

“Implementing centralized authentication is a great method when there are too many users and servers, although this itself needs a good amount of time to implement and maintain. Thus, depending on operational benefits, you can give a thought” (Vora, & Pruteanu, 2017). Many organizations should consider automating the following five IAM processes and related controls: password changes or resets, new-user access, subsequent modifications to existing user access, termination of user access, and third-party access. While the benefits of deploying a robust IAM solution are clear, the cost and complexity of implementation can derail even the most well-intentioned organization. However, when enterprises consider the cost of a potential security breach or study the inefficiencies inherent to the manual provisioning and de-provisioning of access to corporate resources, the imperative is clear. In addition, enterprises can ensure security by deploying solutions with strong multifactor authentication, while eliminating user frustration by delivering seamless access to cloud-based applications. 

Identity and access management (IAM) in enterprise IT is about defining and managing the roles and access privileges of individual network users and the circumstances in which users are granted (or denied) those privileges. Those users might be customers (customer identity management) or employees (employee identity management). The core objective of IAM systems is one digital identity per individual. Once that digital identity has been established, it must be maintained, modified and monitored throughout each user’s access lifecycle. Identity and management technologies include but aren’t limited to password-management tools, provisioning software, security-policy enforcement applications, reporting and monitoring apps and identity repositories. Identity management systems are available for on-premises systems, such as Microsoft SharePoint, as well as for cloud-based systems, such as Microsoft Office 365.

“An Identity and Access Management (IAM) framework manages these different slices of your profile, including your memberships, groups and organizations, roles, resources, resource-level roles, risk, history, status, and so on” (Scheidel, 2010). IAM systems provide administrators with the tools and technologies to change a user’s role, track user activities, create reports on those activities, and enforce policies on an ongoing basis. These systems are designed to provide a means of administering user access across an entire enterprise and to ensure compliance with corporate policies and government regulations. 

“Unlike manual new-user access and subsequent modification controls, the primary benefit of centralized and automated IAM controls is the enforcement of organizational security policies at the point of use” (George, Aldhizer, Paul & Dale, 2008). Specifically, security policies are enforced through the real-time monitoring of employee and third-party access and use of sensitive data across multiple enterprise resource planning (ERP) databases in numerous locations. Additional benefits of centralized and automated IAM controls include improved operational efficiency, increased userproductivity, enhanced internal audit efficiency, and improved compliance with federal privacy laws and regulations.

“Implementing centralized authentication is a great method when there are too many users and servers, although this itself needs a good amount of time to implement and maintain. Thus, depending on operational benefits, you can give a thought” (Vora, & Pruteanu, 2017). Many organizations should consider automating the following five IAM processes and related controls: password changes or resets, new-user access, subsequent modifications to existing user access, termination of user access, and third-party access. While the benefits of deploying a robust IAM solution are clear, the cost and complexity of implementation can derail even the most well-intentioned organization. However, when enterprises consider the cost of a potential security breach or study the inefficiencies inherent to the manual provisioning and de-provisioning of access to corporate resources, the imperative is clear. In addition, enterprises can ensure security by deploying solutions with strong multifactor authentication, while eliminating user frustration by delivering seamless access to cloud-based applications.

IA week7 DB

 

Hello,

i need this paper by 10/07 afternoon.

Strictly No plagiarism please use your own words.

Describe some ways that an administrator can harden a system on a network.

An initial post must be 300 words 

Make sure Strictly No plagiarism content should not match and even the reference should not match in plagiarism