1. Separation Within a Network

            Cybersecurity on our national infrastructures can be achieved through separation. Separation is a technique used to protect assets from malicious intruders using several separation methods. Separation of networks is critical since it prevents attackers from causing a malicious attack (Amoroso, 2012). The firewall has been the most commonly used method to protect network assets. It provides security through antivirus filtering, identity management, and intrusion detection. Despite the fact that the firewall is an important security technique, it does not work in protecting large-scale networks. This is because networks and systems that are associated with national infrastructure assets are more complex. Therefore, it contains a multitude of entry points that intruders can use to attack caused by internet service providers.

            Nevertheless, traditional perimeter firewalls are essential in providing security to national infrastructures. When protecting large scale, national networks, separation can be achieved by using three different firewall approaches. These include network-based separation, internal separation, and tailored separation. The purpose of using a separation technique in protecting network assets is to separate the network from an attacker in order to reduce the risk of a direct attack (Amoroso, 2012). Component distribution is also an important purpose of separation. This involves separating components in the networks infrastructure in order to distribute risks. Firewalls are also necessary for protecting unsecured networks such as the internet.

            The future of firewall functionality in the protection of the national infrastructure is the use of a firewall in the cloud (Stewart, 2013). This will be effective with the development of a new partnership that will be between carriers and end-user group for effective protection. Additionally, the network-based firewall can be applied distributed denial of service (DDOS) filtering. It is usually placed in a wide area network with the aim of throttling DDOS attacks. This approach is essential in modern networking. It is important to note that filtering DDOS attacks at the edge do not provide effective protection. Therefore, it is important to move it into the network.

References

Amoroso, E., (2012). Cyber Attacks: Protecting National Infrastructure, STUDENT EDITION. Amsterdam: Elsevier.

Stewart, J. M., (2013). Network Security, Firewalls, and VPNs. Burlington: Jones & Bartlett Publishers.

2 nd Discussion 

2. Separation within a network

Mainly SOD has two objectives. The first is the prevention of conflict of interest (real or apparent), wrongful acts, fraud, abuse and errors. The second is the location of control disappointments that incorporate security breaks, data burglary and circumvention of security controls. Right SOD is intended to guarantee that people don’t have clashing obligations or are not in charge of writing about themselves or their unrivaled. 

Separation of duties (SOD) is main key role of all internal controls and most expensive to achieve the goal in sometime because of difficulty. For a specific security process in many people, the objective to achieve by disseminating the tasks. It is basically financial systems for account. Even in all types or sizes in companies can know or understand the not to combine the roles. The main theme of the separation of roles is to became more relevant to the IT organization when the regulatory mandates. An extremely high part of SOX inner control issues, for instance, originate from or depend on IT. This constrained IT associations to put more prominent accentuation on SOD over all IT capacities, particularly security.

There are few examples for separations:

 Receipt and distribution of Mail

Verification and development for Application

Analysis for network administration

Payments and payment authorization.

With regards to isolation of obligations, private company best practices are particularly significant. An absence of isolation of obligations is a noteworthy contributing component in practically all events of misrepresentation, and is regularly observed to be a weakness during post-analysis of system compromises.

References

        Behr, A., & Coleman, K. (2017, August 03). Separation of duties and IT security. Retrieved May 23, 2019, from https://www.csoonline.com/article/2123120/separation-of-duties-and-it-security.html

Segregation of duties: Small business best practices. (n.d.). Retrieved May 23, 2019, from https://www.computerweekly.com/tip/Segregation-of-duties-Small-business-best-practicesk

 

• Required Readingshttp://blog.securitymetrics.com/2014/05/hipaa-faq.html
  https://www.hitechanswers.net/hipaa-hospitals-five-reasons-medical-data-storage-often-not-compliant/
  https://www.careersinfosecurity.com/2-million-hipaa-penalty-after-patient-data-exposed-on-web-a-9465
  https://www.medscape.org/viewarticle/810563_2
  https://www.bankinfosecurity.com/ocr-considering-hipaa-privacy-rule-enforcement-changes-a-10750

• Required Videoshttps://www.youtube.com/watch?v=E6mSlxux1Co
  HIPAA Risk Analysis
  HIPAA Security Risk Assessment
• Week 10 PaperWrite an essay of at least 500 words discussing the Safe Harbor provisions under HIPAA.  
  Do not copy without providing proper attribution. This paper will be evaluated through SafeAssign. 
  Write in essay format not in outline, bulleted, numbered or other list format.  
  Use the five paragraph format. Each paragraph must have at least five sentences. Include 3 quotes with quotation marks and cited in-line and in a list of references. Include an interesting meaninful title.
  Include at least one quote from each of 3 different articles, place the words you copied (do not alter or paraphrase the words) in quotation marks and cite in-line (as all work copied from another should be handled). The quotes should be full sentences (no more, less) and should be incorporated in your discussion (they do not replace your discussion) to illustrate or emphasize your ideas.
  Cite your sources in a clickable reference list at the end. Do not copy without providing proper attribution (quotation marks and in-line citations). Write in essay format not in bulleted, numbered or other list format. 

 

write a research paper that explains how defense-in-depth (chapter 6) and awareness (chapter 10) are complimentary techniques to detect emerging threats and strengthen countermeasures. 

To complete this assignment, upload a Microsoft Word document (.doc or .docx) that contains your complete paper. Remember that your list of sources must be in APA format, and you MUST cite your reference in the body of the paper using APA in-text citation format. A source is any paper or article that you will reference in your paper. If you need more information on APA format (for references list AND in-text citations), visit this reference: https://owl.english.purdue.edu/owl/resource/560/01/

This assignment must be YOUR OWN WORK!  This is an individual assignment. We will check for Plagiarism, if any is detected in your work will result in a grade of zero for the entire paper.  Attention your originality report should be at least  35% or lower to received a passing grade.

Here are a few details about the overall research paper Please look at the attached rubric for details on how the paper will be graded. 

You must reference two (2) peer-reviewed articles or papers that support your thesis statement. One of these papers may be from your annotated bibliography assignment. The final paper must be at least 500 words in length. (DO NOT exceed 500 words by a material amount. Excessive words or too many references will NOT impress me.) 

So in summary, here are the research paper requirements:

• 2 peer reviewed resources (articles or papers) (1 may be from your annotated bibliography assignment)
• Paper MUST address:  How defense-in-depth (chapter 6) and awareness (chapter 10) are complimentary techniques to detect emerging threats and strengthen countermeasures
• Cited sources must directly support your paper (i.e. not incidental references)
• At least 500 words in length (but NOT longer than 1000 words)

Admin Notes:

APA Paper Formatting guidelines

1.Title page

2.Abstract

3.Body

4.Text citation and references

Additionally

-As usual, the text is typed on standard white paper that has familiar parameters of 8.5″ x 11″.

-The APA style requires using an easy to read font and recommends using a 12pt Times New Roman font.

-Double spacing is required on both the title page and throughout the paper.

-Margins should be 1″ concerning all sides of the page.

-Paragraph indentation should be set to one half inch from the left side of the page.

-The unique aspect is in creating a special page header that consists of the page number and the running head as typed on the title page in all capitals.

For more information on APA format consult APA, 6th Edition American Psychological Association, also  The OWL at Purdue is a good resource (see related link) on APA format.

https://owl.english.purdue.edu/owl/resource/560/01/

Help with peer reviewed papers or articles

If you are not sure how to identify peer reviewed papers or articles, please visit the following resources:

http://diy.library.oregonstate.edu/using-google-scholar-find-peer-reviewed-articles

http://libguides.gwu.edu/education/peer-reviewed-articles

 As part of the Final Project, you will need to create and include an original graph. Input the data into an Excel document and create a graph you will be using in your Final Project. Be sure to include a clear title for the graph and correctly label all data and units.  Include your approved topic somewhere on the page. 

The information below is not an assignment for this due date it is just a description of the final project that is due later, but since Milestone 5 is a part of it, i included it below.

 

Narrated PowerPoint Presentation

Social, Cultural, and Ethical Issues

For your Final Project, you will create a PowerPoint presentation based on a topic from your current field of study. Since this is a fully online course and we do not meet in person in a traditional classroom setting, you will need to narrate this presentation so it can be viewed electronically.

To assist in the completion of your Final Project, some of the required pieces are included in this course as Milestones. These Milestones are completed throughout the course by the student and the instructor will provide feedback for each Milestone, in order to help the student better the overall quality of their project.  See below where the milestones align with the Final Project requirements.

Topic:

Choose a social, cultural, or ethical issue related to your current major or field of study. Chose ONE area to focus on. For example, you cannot talk about ethics in healthcare, public safety, or IT in general. You would need to pick a single ethical issue to discuss and not just ethics in general. (Milestone 2 & 3)

Research:

Conduct a search using both internet and library database resources. You must use at least 3 sources, one of which must be from the library database. Keep track of these sources! You will need to include a reference slide at the end of your presentation. (Milestone 4)

Content:

Create a NARRATED PowerPoint presentation that contains between 12 to 18 slides. You must add your voice using the narration feature in PPT. Include the following:

Title Slide (1 slide) – includes your name and the presentation title. (Milestone 2)

Introduction Slide (1 slide) – should be something catchy and explain why this issue is important. (Milestone 3)

Body/Content Slides (8-14 slides) – must be interesting, well organized, and presented clearly. Slides should not contain full sentences/paragraphs.
Summary Slide (1 slide) – may also include a way for others to get involved, help, or get more information.
Reference Slide (1 slide) – must be in APA style and be a minimum of 3 resources. When including hyperlinks in the reference list, they must be hyperlinked. (Milestone 4)

PowerPoint Elements:

Include the following PowerPoint elements:

Apply a single theme or design template.
Apply a transition to each slide.
Do NOT use animation.
Provide at least one hyperlink to a video or useful online article.
Use at least 5 open or creative commons images (Clipart, photos, shapes, etc). (Milestone 6)
Use smart art at least one time.
Include an original graph. (Milestone 5)
Include a footer on each slide with the slide number and your last name.

Narration:

To earn full points, your presentation must be narrated. Do NOT read word for word from your slides. Slides should only contain bulleted information, but full sentences should be spoken!  The narration audio should start automatically when you start the slideshow and should continue through the entire presentation.

Submission:

Please upload your completed PowerPoint project with a filename formatted as:

PowerPoint_SectionProject_yourfirstname_yourlastname.

Due DateAug 5, 2019 11:30 PM 

1.                (TCOs 1–8) Suppose A is an interface and B is a concrete class with a default constructor that implements A. Which of the following is correct? (Points : 3)
B b = new B();
A a = new A();
B b = new A();
none of them

Question 2.2. (TCOs 1–8) Which of the following is a correct interface? (Points : 3)
abstract interface A { abstract void print({ };}
interface A { void print() { }; }
abstract interface A { print(); }
interface A { void print();}

Question 3.3. (TCOs 1–8) Which of the following statements will not convert a string s into i of int type? (Points : 3)
i = Integer.valueOf(s);
i = (new Integer(s)).intValue();
i = Integer.valueOf(s).intValue();
i = Integer.parseInt(s);
i = (int)(Double.parseDouble(s));

Question 4.4. (TCOs 1–8) Analyze the following code.
public class Test { // 1
public static void main(String[ ] args) { // 2
Fruit[ ] fruits = {new Fruit(2), new Fruit(3), new Fruit(1)}; // 3
java.util.Arrays.sort(fruits); // 4
} // 5
} // 6

class Fruit {
private double weight;

public Fruit(double weight) {
this.weight = weight;
}
} (Points : 3)
The program has a compile error because the Fruit class does not have a default constructor.
The program has a runtime error on Line 3 because the Fruit class does not have a default constructor.
The program has a runtime error on Line 4 because the Fruit class does not implement the java.lang.Comparable interface and the Fruit objects are not comparable.
The program has a compile error on Line 4 because the Fruit class does not implement the java.lang.Comparable interface and the Fruit objects are not comparable.

Question 5.5. (TCOs 1–8) Analyze the following code.
import java.util.*; // 1
public class Test { // 2
public static void main(String[ ] args) { // 3
Calendar[ ] calendars = new Calendar[10]; // 4
calendars[0] = new Calendar(); // 5
calendars[1] = new GregorianCalendar(); // 6
} // 7
} // 8 (Points : 3)
The program has a compile error on Line 4 because java.util.Calendar is an abstract class.
The program has no compile errors.
The program has a compile error on Line 6 because Calendar[1] is not of a GregorianCalendar type.
The program has a compile error on Line 5 because java.util.Calendar is an abstract class.

Question 6.6. (TCOs 1–8) Suppose A is an anonymous inner class in Test. A is compiled into a file named _____ (Points : 3)
A.class.
Test$1.class.
A$Test.class.
Test$A.class.
Test&1.class.

Question 7.7. (TCOs 1–8) You cannot use getWhen() to find the time of an _____ (Points : 3)
KeyEvent.
WindowEvent.
ActionEvent.
MouseEvent.

Question 8.8. (TCOs 1–8) Which of the following statement is false? (Points : 3)
You can add multiple listeners for a Timer object.
To start a timer, invoke timer.start().
To stop a timer, invoke timer.stop().
When a timer is created, it is automatically started.
You must always specify a listener when creating a Timer object.

Question 9.9. (TCOs 1–8) To be a listener for ActionEvent, an object must be an instance of _____ (Points : 3)
WindowEvent.
EventObject.
WindowListener.
ActionEvent.
ActionListener.

Question 10.10. (TCOs 1–8) What is the value of evt.getKeyCode() or evt.getChar() for the keyTyped() events? (Points : 3)
VK_UNDEFINED
The Unicode code of the character
The ASCII code of the character
A character