Question

In: Computer Science

1. The community college you work for would like to get a security test performed, explain...

1. The community college you work for would like to get a security test performed, explain the different test types and the advantages and disadvantages of them


.2. The community college now wants to have a security company come in and perform security tests. Explain what they should expect before, during, and after the testing.


Solutions

Expert Solution

Q1 Answer :-

Types of Security Testing :-

  1. Vulnerability Scanning .
  2. Security Scanning .
  3. Penetration testing .
  4. Risk Assesment .
  5. Security Auditing .
  6. Posture Assessment.
  7. Ethical hacking

1 - Vulnerability Scanning :-

This is done through automated software to scan a system against known vulnerability signatures.

Advantages :-

  • Fast Result.
  • Repetable .
  • User-friendly.
  • Constant Monitoring.

Disadvantages :-

  • A vulnerability scanning tool will not find nearly all vulnerabilities .
  • Constant updates required.
  • False positives.
  • Implications of vulnerability unclear .

2 - Security Scanning :-

It involves identifying network and system weaknesses, and later provides solutions for reducing these risks. This scanning can be performed for both Manual and Automated scanning.

Advantages :-

  • It Can find the Vulnerability of system and provide solution.

Disadvantages :-

  • Not locate all vulnerability .

3 - Penetration testing :-

This kind of testing simulates an attack from a malicious hacker. This testing involves analysis of a particular system to check for potential vulnerabilities to an external hacking attempt.

Advantages :-

  • Reveal vulnerabilities
  • Show real risks.
  • Test your cyber-defence capability.

Disadvantage :-

  • Limited resourses .
  • Position of attack .
  • Creating a skilled team .

4 - Risk Assesment :-

This testing involves analysis of security risks observed in the organization. Risks are classified as Low, Medium and High. This testing recommends controls and measures to reduce the risk.

Advantages :-

  • Saving cost and time.
  • New opportunities.
  • Protecting resources.

Disadvantages :-

  • Difficulty in implementing.
  • Performance.
  • Potential threats.

5 - Security Auditing :-

This is an internal inspection of Applications and Operating systems for security flaws. An audit can also be done via line by line inspection of code .

Advantages :-

  • Operational improvements .
  • Confidentiality .
  • High-quality perfection .

Disadvantages :-

  • Extra cost .
  • Unsuitable changes .

6 - Posture Assessment :-

This combines Security scanning, Ethical Hacking and Risk Assessments to show an overall security posture of an organization .

7- Ethical hacking :-

It's hacking an Organization Software systems. Unlike malicious hackers, who steal for their own gains, the intent is to expose security flaws in the system.

Advantages :-

  • Having a computer system that prevents malicious hackers from gaining access .
  • Having adequate preventative measures in place to prevent security breaches .

Disadvantages :-

  • The ethical hacker using the knowledge they gain to do malicious hacking activities .
  • The possibility that the ethical hacker will send and/or place malicious code, viruses, malware and other destructive and harmful things on a computer system .

Q 2 Answer :-

  • Before Testing :- They can expect before Testing , the testing team can perform all testing and make system secure .
  • During Testing :- In during testing they can ecpect each test can perform correctly
  • After Testing :- After the testing they can expext all the system vulnerability can be minized or patched , make system fully secure .

Related Solutions

3. The College of Business would like to test if there is a positive relationship between...
3. The College of Business would like to test if there is a positive relationship between GPA and starting monthly salary of its graduates. They ask 8 recent graduates their GPA and starting salaries and find that the correlation coefficient in the sample is 0.802. Test using α=0.05. a. Set up the null and alternate hypotheses. b. Calculate an appropriate test statistic. c. What is the p-value? Explain your conclusion in the context of the question.
The state of Oregon would like to test whether the average GPA of college students is...
The state of Oregon would like to test whether the average GPA of college students is different than 3.2 or not for scholarship purposes. They take a random sample of 1000 college students in Oregon. Here is the summary statistics. Sample mean, x ¯ 3.18 Sample size, n 10,000 Sample standard deviation, s 0.46 Refer to the information in the previous problem. Suppose we test like to test the hypotheses, H0 : μ = 3.2  vs.  Ha: μ ≠ 3.2 with a...
The state of Oregon would like to test whether the average GPA of college students is...
The state of Oregon would like to test whether the average GPA of college students is different than 3.2 or not for scholarship purposes. They take a random sample of 1000 college students in Oregon. Here is the summary statistics. Sample mean, x ¯ 3.18 Sample size, n 10,000 Sample standard deviation, s 0.46 Refer to the information in the previous problem. Suppose we test like to test the hypotheses, H0 : μ = 3.2  vs.  Ha: μ ≠ 3.2 with a...
You are a nurse working in a disadvantaged community (indigenous community). Describe how you would work...
You are a nurse working in a disadvantaged community (indigenous community). Describe how you would work in partnership using a strengths-based approach with community groups to develop a mutually respectful and supportive collaboration in a high needs community to address a health issue on obesity
You are at a company where you would like to get hired. How would you engage...
You are at a company where you would like to get hired. How would you engage in authentic self-presentation or strategic self-presentation in this context (explain both types of self presentation)
Describe the results you would get back if you performed a Chip-Seq experiment for an E....
Describe the results you would get back if you performed a Chip-Seq experiment for an E. coli strain containing plasmid RK2, to investigate where DnaA-ATP binding occurs throughout the genome. Will you find sequences from multiple regions of the genome?
Choose a company or organization you would like to work for. Explain your rational and list...
Choose a company or organization you would like to work for. Explain your rational and list the reasons why you would want to work for them.
1- Think of a problem situation you would like to change at work, at school, or...
1- Think of a problem situation you would like to change at work, at school, or at home and describe how you would frame the topic and approach the change using appreciative inquiry. 2-How could you increase the number of novel and useful solutions you come up with to solve this problem?
I am trying to get this code to work but I am having difficulties, would like...
I am trying to get this code to work but I am having difficulties, would like to see if some one can solve it. I tried to start it but im not sure what im doing wrong. please explain if possible package edu.hfcc; /* * Create Java application that will create Fruit class and Bread class * * Fruit class will have 3 data fields name and quantity which you can change. * The third data field price should always...
You are at a networking mixer for a company where you would like to get hired....
You are at a networking mixer for a company where you would like to get hired. How would you engage in authentic self-presentation or strategic self-presentation in this context (explain both types of self presentation)
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT