<?xml version="1.0"?>
<rss version="2.0">
   <channel>
      <title>Revision for CSC408 by Farhanah Asyikin</title>
      <link>https://padlet.com/farhanahasyikin/revisioncscfarhanah</link>
      <description>Prepared for 
Madam Sri Yusmawati</description>
      <language>en-us</language>
      <pubDate>2018-12-27 09:57:11 UTC</pubDate>
      <lastBuildDate>2018-12-27 10:23:57 UTC</lastBuildDate>
      <webMaster>hello@padlet.com</webMaster>
      <image>
         <url>https://padlet-assets.s3.amazonaws.com/icons/Shakinghands.png</url>
      </image>
      <item>
         <title>PART A</title>
         <author>farhanahasyikin</author>
         <link>https://padlet.com/farhanahasyikin/revisioncscfarhanah/wish/316730651</link>
         <description><![CDATA[<div><strong>QUESTION 1</strong><br><strong>Briefly explain the following computer crimes.</strong><br><br></div><div>a)      Sniffer</div><div>- A program or device that captures vital information from the network traffic specific to a particular network.</div><div>- Sniffing is a data interception technology.</div><div>- For examples, the objectives of sniffing to steal passwords from email, web or telnet.<br><br></div><div>b) Phishing</div><div>- Phishing is the attempt to obtain sensitive information such as usernames, passwords and credit card details.</div><div>- Often for malicious reasons by masquerading as a trustworthy entity in an electronic communication.</div><div>- For examples, some phishing emails also contain malicious or unwanted software that can track your activities or slow your computer.<br><br></div><div>c) Pharming</div><div>- Pharming is similar to phishing but instead of deceiving people as phishing does, a pharming attack deceives people’s computer.</div><div>- This is where that when you type in a completely genuine URL.</div><div>- For examples, the online banking website. Your computer is tricked into displaying a fake website which is often a very accurate copy.<br><br></div><div>d) Spoofing</div><div>- Spoofing is the act of using one machine in the network communication to impersonate another.</div><div>- This is where that spoofing is a tampering activity because the hacker convinces a host computer that the hacker is another, trusted host computer and therefore should receive information.</div><div>- For examples, the objectives is to provide false information about principal’s identity to obtain unauthorized access to systems and their services.<br><br><strong>QUESTION 2</strong></div><div><br></div><div><mark>a)      Distinguish the TWO (2) methods for encrypting network traffic on the Web.</mark><br><br></div><div>1. <mark> </mark>     Secure Sockets Layer (SSL)</div><div>-          SSL and its successor Transport Layer Security (TLS) enable client and the server computers to establish a secure connection session and to manage encryption and decryption activities.</div><div> </div><div>2.       Secure Hypertext Transfer Protocol (S-HTTP)<mark> </mark></div><div>-          Another protocol used for encrypting data flowing over the Internet but it is limited to individual messages.<br><br></div><div><mark>b) Briefly explain the following terms.</mark><br><br></div><div>i. Cyber warfare</div><div>-  Cyberwarfare is internet-based conflict involving politically motivated attacks on information systems.</div><div>- This is where that cyberwarfare attacks can disable official websites and networks, disrupt or disable essential services, steal or alter classified data and any cripple financial systems.<br><br></div><div>ii. Computer Forensic</div><div>-          Computer forensics is therefore described as those activities associated with the identification and preservation of computer or electronic evidence in support of some official or legal action.</div><div>-          For examples, to recover thousands of deleted emails or performing investigation after multiple users had taken over the system.<br><br><strong>QUESTION 3<br></strong><br><strong><mark>a) Without protection against malware and intruders, connecting to the Internet could be very dangerous. Firewalls, intrusion detection system and antivirus software have become the tools to overcome this problem. Briefly explain these THREE (3) tools. </mark></strong><strong><br></strong><br></div><div><strong>i) Firewalls</strong><br>Firewall is a combination of hardware and software that prevents unauthorized users from accessing private networks. The technologies include static packet filtering, stateful inspection, network address translation (NAT) and application proxy filtering. A firewall is a network security device that monitors incoming and outgoing network traffic and decides whether to allow or block specific traffic based on a defined set of security rules. They establish a barrier between secured and controlled internal networks that can be trusted and untrusted outside networks, such as the Internet.<br><br></div><div><strong>ii) Intrusion detection system</strong><br>Intrusion detection system is a monitor’s hot spot on corporate networks to detect and deter intruders. This examines event as they are happening to discover attacks in progress. An intrusion detection system (IDS) is a system that monitors network traffic for suspicious activity and issues alerts when such activity is discovered. While anomalydetection and reporting is the primary function, some intrusion detection systems are capable of taking actions when malicious acitivity or anomalous traffic is detected, including blocking traffic sent from suspicious IP addresses.<br><br></div><div><strong>iii) Antivirus software</strong><br>Antivirus software is responsible to checks computers for presence of malware and can often eliminate it as well and it requires continual updating. Antivirus software is a type of utility used for scanning and removing viruses from your computer. While many types of antivirus (or "anti-virus") programs exist, their primary purpose is to protect computers from viruses and remove any viruses that are found. Most antivirus programs include both automatic and manual scanning capabilities.<br><br></div><div><strong><mark>b) Contrast between General Controls and Application Controls. </mark></strong><strong><br></strong><br></div><div><strong>i) General Controls</strong></div><div> General controls is govern design, security and use of computer programs and security of data files in general throughout organization’s information technology infrastructure. This type of controls can apply to all computerized applicationsThe general controls consists of many types which are software, hardware, computer operations, data security, implementation and administrative controls. On the whole, general controls apply to all computerized applications and consist of a combination of hardware, software, and manual procedures that create an overall control environment. General controls include software controls, physical hardware controls, computer operations controls, data security controls, controls over implementation of system processes, and administrative controls.<br><br></div><div><strong>ii) Application Controls</strong><br>Application controls is a specific controls unique to each computerized application, such as payroll or order processing. This include both automated and manual procedures and this type of control ensure that only authorized data are completely and accurately processed by that application. It is includes input controls, processing controls and output controls. Input controls check data for accuracy and completeness when they enter the system. There are specific input controls for input authorization, data conversion, data editing, and error handling while processing controls establish that data are complete and accurate during updating and last, output controls ensure that the results of computer processing are accurate, complete, and properly distributed.</div><div><br><strong>QUESTION 4</strong></div><div><strong>Malicious Software programs are referred to as Malware. Describe FOUR (4) types of malicious software.</strong><br><br></div><div>1)      Virus </div><div>-          Malware that, when executed, tries to replicate itself into other executable code. When it succeeds the code is said to be infected. When the infected code is executed, the virus also executes.</div><div>2)      Worm</div><div>-          A computer program that can run independently and can propagate a complete working version of itself onto other hosts on a network.</div><div>3)      Trojan horse</div><div>-          A computer program that appears to have a useful function, but also has a hidden and potentially malicious function that evades security mechanisms, sometimes by exploiting legitimate authorization of a system entity that invokes the Trojan horse program.</div><div>4)      Logic bomb</div><div>-          A program inserted into software by an intruder. A logic bomb lies dormant until a predefined condition is met the program then triggers an unauthorized act.</div><div> <br><br></div><div><strong>Question 5<br></strong><br></div><div><strong>a) Nowadays securing information systems has become an important issue in organization to protect itself against computer crime.<br></strong><strong><mark>Define computer crime and provide an appropriate example.<br></mark></strong><br></div><div>-          Computer crime encompasses any criminal act dealing with cyber and networks called hacking. </div><div>-          The computer crime may however be target for unlawful acts in the following cases such as unauthorized access to computer.</div><div>-          The computer crime may be used as a tool in the following kinds of activities such as financial crimes, sale of illegal articles, pornography, online gambling, intellectual property crime, e-mail spoofing, forgery, cyber defamation and cyber stalking.<br><br></div><div><mark>b) Briefly explain THREE (3) reasons why information systems are vulnerable to destruction, error and abuse?</mark><br><br></div><div>1)      -Corporate systems using the Internet are especially vulnerable because the Internet is designed to be an open system and makes internal corporate systems more vulnerable to actions from outsiders. </div><div>-Hackers can unleash denial of service (DoS) attacks or penetrate corporate networks to cause serious system disruptions.</div><div>2)      - Wi-Fi networks can easily be penetrated by intruders using sniffer programs to obtain an address to access the resources of the network.</div><div>3)      - Computer viruses and worms can spread rampantly from system to system, clogging computer memory or destroying programs and data. </div><div>-Software presents problems because software bugs may be impossible to eliminate and because software vulnerabilities can be exploited by hackers and malicious software.<br><br></div><div><mark>c) Discuss the THREE (3) most important tools and technology for safeguarding information resources.</mark><br><br></div><div>1)      Firewall – Prevents the accesses of private networks or systems when connected to the internet from the unauthorized users,</div><div>2)      Intrusion detecting systems – Monitors the private networks and provides access to the corporate systems.</div><div>3)      Antivirus and Antispyware software – One checks the system from infections like virus worms and deletes the malicious software’s. While other will fights with the intrusive and harmful spyware programs.<br><br></div><div> <br><br></div><div><strong>Question 6</strong><br><br></div><div><mark>a) Identity management software automates the process of keeping track of all information systems users and their system privileges, assigning each user a unique digital identity for accessing each system. Define authentication.</mark><br><br></div><div>- Authentication is the process of verifying the identity of a person or digital entity.<br><br></div><div>-  It is a fundamental component of information security that essentially validates that entities are who or what they claim to be.<br><br></div><div>- In a simple word, the process of verifying who you are to log on something devices or systems.<br><br></div><div><mark>b) Identify and briefly describe FOUR (4) authentication technologies.</mark><br><br></div><div>1)      Username/Password</div><div>-           Most commonly used electrical authentication method across the globe. It does not require any physical device and has a very low implementation cost.</div><div>-          It is reasonably good for low assurance applications</div><div>2)      One-time Password Device </div><div>-           These generate a new password at fixed intervals of time, using which it is possible to access restricted data. </div><div>-          They provide true dual-factor authentication which makes the password difficult to steal or share.</div><div>3)      Biometric Authentication </div><div>-          This uses a part of the body, like a retinal scan or fingerprint, to authenticate the user.</div><div>-          This is completely unique to each user and nearly impossible to steal. </div><div>-          These devices are usually expensive and highly invasive, besides increasing the complexity of administration</div><div>4)      Smart Card</div><div>-          A wallet-sized card that has a computer embedded in it for purposes such as identification, authentication, data storage and application processing.</div><div>-           They are often used to enhance security by making cards difficult to copy or manipulate.<br><br></div><div><strong>Question 7</strong><br><br></div><div><mark>a) Describe ransomware.</mark><br><br></div><div>- A ransomware is a type of malware that locks your files, data or the PC itself and extorts money from you in order to provide access. <br><br></div><div>-This is a new way for malware writers to ‘collect funds’ for their illegitimate activities on the web.<br><br></div><div>-Ransomware may also be referred to as a crypto-virus, crypto-Trojan or crypto-worm.<br><br></div><div><mark>b) State how do we prevent and protect our computer from ransomware.</mark><br><br></div><div>- Use a safe and password-protected internet connection.<br><br></div><div>- Avoid browsing websites that are often the breeding grounds for malware such as illegal download sites, adult sites and gambling sites.<br><br></div><div>- Install, use, and regularly update an antivirus solution<br><br></div><div><mark>c) Discuss the effects of computer crime to an organization.</mark><br><br></div><div>1) </div><div>- A company suffers losses due to computer crime when a hacker steals confidential information and future plans of the company.</div><div>- The hacker simply sells the information to a competitor company and they use the information to get benefits.<br><br>2) <br>It is not just affect the organization itself. it is affect trust of people. whenever the people knows that the organization has lost their system it will lead to dissatisfaction  by the people as an user or customer. because its all about data and system.<br><br></div><div><br><br></div><div><br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2018-12-27 09:58:48 UTC</pubDate>
         <guid>https://padlet.com/farhanahasyikin/revisioncscfarhanah/wish/316730651</guid>
      </item>
      <item>
         <title>PART B (CASE STUDY)</title>
         <author>farhanahasyikin</author>
         <link>https://padlet.com/farhanahasyikin/revisioncscfarhanah/wish/316731410</link>
         <description><![CDATA[<div><strong><br>CASE STUDY (STORY)<br></strong><br></div><div><strong>1. Is cyberwarfare a serious problem? Why or why not?<br></strong><br></div><div>Absolutely, cyberwarfare is a big problem. This is because<strong> </strong>cyberwarfare is more complex than conventional warfare. Although many potential targets are military a country’s power grids, financial systems, and a communication network can also be crippled. Non-state actors such as terrorist ore criminal groups can mount attacks, and it is often difficult to tell who is responsible. Nations must constantly to be on the alert for new malware and other technologies that could be used against them, and some of these technologies develop by skilled hacker groups are openly for sale to interested governments. It involved big asset of nation state especially on their military and financial matter which must  be uphold from external intervention to ensure peace and harmony.</div><div> </div><div><strong>2. What solutions are available for this problem? Do you think they will be effective? Why or why not?</strong></div><div>There have been several attempts to take effective measures against cyber attacks but none have been successful on international base. For example, in 2011 the Shanghai Cooperation Organization proposed to the UN the “International code of conduct for information security” which did not pass because it enabled to much internet censorship according to many western countries. Another measure taken by the US and Russia is the establishment of a cyberwar-hotline which should be used in ciris situation to prevent an accidential cyberwar. This might not prevent any cyber attacks but it is certainly an important step because as mentioned, cyber attacks can be commited through other computers which could lead to tensions between to countries caused by someone else. In order to effectively prepare for a possible cyberwar the USA has launched a simulation called Cyber ShockWave in 2010 which simulate the situation as realistic as possible. The results were shocking and showed that the USA isn’t prepared for such attacks, especially not if they would be attacked by surprise. Similar simulations have been conducted before by the USA. They have proved very efficient as it showed in which aspects the USA was unprepared and in which aspects they were.<br><br><strong><br>CASE STUDY (VIDEO)<br></strong><br></div><div><strong>1.</strong>  <strong>Security isn’t simply a technology issue, it’s a business issue. Discuss.</strong></div><div>It’s a business issue because most of the organization are depending on their technology and system to sustain their business. Any risk towards their security will give huge impact in their business as well as profit. The more problem related to their security such as leak of employees and consumer personal details will jeopardize their organization. This is because people will lose trust to keep their information with them as all the personal data is very crucial to be well protected to ensure there is no abuse of information. If the technology or system made unable to protect people security it shows that the organization had failed to protect their consumer right at first place. </div><div> </div><div><strong>2.</strong> <strong>Who poses the biggest security threat: insiders or outsiders?</strong></div><div>The biggest security threat comes from the insiders. This is because the insider is the employees that directly involved with any transaction related. They are the one who control all the processes and there might be higher chances for them to easily breach the security. There is no doubt that employee itself can sabotage the organization if they feel dissatisfied with their organization. </div><div> </div><div><strong>3.</strong>  <strong>Suppose your business had an e-commerce Web site where it sold goods and accepted credit card payments. Discuss the major security threats to this Web site and their potential impact. What can be done to minimize these threats?</strong></div><div>-The major security threats to e-commerce are malicious code threats. These code threats typically involve viruses, worms, Trojan horses.Viruses are normally external threats and can corrupt the files on the website if they find their way in the internal network. They can be very dangerous as they destroy the computer systems completely and can damage the normal working of the computer. </div><div>Worms are places itself directly through the internet. It can infect millions of computers in a matter of just few hours. A Trojan horse is a programming code which can perform destructive functions. They normally attack your computer when you download something. </div><div>-way to minimize this threat is look closely at the URL from any email for special characters, numbers<strong>.</strong> If your financial institution, or a site that you have an account with, sends you a ‘password reset’ email, log in to the bank directly instead of clicking on the link in the email. </div>]]></description>
         <enclosure url="" />
         <pubDate>2018-12-27 10:18:05 UTC</pubDate>
         <guid>https://padlet.com/farhanahasyikin/revisioncscfarhanah/wish/316731410</guid>
      </item>
   </channel>
</rss>
