Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

Let\'s do some risk analysis on Trent\'s information assets. Trent stores many t

ID: 3741373 • Letter: L

Question

Let's do some risk analysis on Trent's information assets. Trent stores many types of information and 3 of these: parking permit information, student marks/transcripts, and student loan information. 4. a. For EACH of these 3 types of information describe who would want to illegally access this type of information and why? Parking Permit Information Student Marks/Transcripts- Student Loan Information- b. Consider what the impact would be for EACH of the 3 types of information mentioned above if the information was improperly accessed or damaged. Is the impact Catastrophic (expose school to serious lawsuits, loss of reputation, and/or information cannot be recreated), Serious (some exposure to lawsuits, loss of reputation and/or information is expensive to recreate), or No Big Deal (small chance of lawsuits, information can easily be recreated). Be sure to justify your choice for each type of information. c. Now consider what the likelihood is that EACH type of information could be accessed or damaged: not likely, moderately likely, very likely. Justify why you think the information fits in that category. d. Now let's look at how we can manage the risk. Basic techniques are: avoiding the risk, modifying the risk -impact and/or likelihood), transferring the risk to others, and accepting the risk. what techniques would you use for EACH of the types of information and how would you implement it?

Explanation / Answer

Answer 4. a :

Parking permit information: Terrorists, who want to get hold of parking permit information to silently sneak into parking lots by using existing parking permits of users and using it to park their cars without being noticed by police. This can be used by car thieves to get a car information and use that to steal it.

Student marks/transcripts : Students who want to see and alter their marks in the system also tamper with the transcripts to alter their reports.

Student loan information: students who want to tamper with their loan details and try to waive it off somehow. Hackers also who want to get access to bank details through the loan database and hack into bank accounts.

Answer 4. B.:

Parking permit information: Catastrophic , because if someone gets this information they can perform a attack like 26/11 easily which may cause damage to the national security.

Student marks/transcripts: No big deal, as the marks and transcripts are always manually stored in report cards/ papers which can be reverted back in case someone tampers it.

Student loan information: Serious, as the bank account details can be retrieved and hacked into it. It is not catastrophic as the information can be used to hack that students back account and others will be safe. Also bank systems are secured so it is unlikely that the person can hack even though they have the information.

Answer 4. C.:

Parking permit information: moderately likely , as parking databases are secured and managed by the government. But it is moderately likely because this is a very small database and is unnoticed and not monitored extensively due to its less importance. Hence hackers can get into it easily.

Student marks/transcripts: very likely , student database of a school may not have the level of security. It might be a simple database with all the information so it can be accessed pretty easily.

Student loan information: not likely , loan information will be stored in an encrypted manner due to the confidentiality and sensitivity of data hence it is not likely that it could be accessed.

Answer 4. d.:

Parking permit information: segregating the database into several tables like car, parking etc. and encrypting the sensitive tables so that even if the hacker gets into the system they will not have access to the complete parking information. And small chunks of data will be of no use to them.

Student marks/transcripts: student marks database should be backed up so that even if data is altered it can be automatically retrieved from the backup database.

Student loan information: this needs to be transferred to the banks as bank systems are very secured and hacking into is nearly impossible.

I have answered your question. Please do not forget to give a positive feedback to the answer. Thank you.

Related Questions

Let\'s assume your secondary education has led you to rob armored cars. In your
Question #562528
Let\'s assume your secondary education has led you to rob armored cars. In your
Question #579732
Let\'s assume, for instance, that you are drawing a sample from a normal distrib
Question #2909788
Let\'s assume/pretend that webbed toes are a recessive trait (we are assuming th
Question #132011
Let\'s assume/pretend that webbed toes are a recessive trait (we are assuming th
Question #3496367
Let\'s augment our plotting skills a bit. The following script declares two cons
Question #3649268
Let\'s begin by determining the equilibrium position of a seesaw pivot You and a
Question #1998219
Let\'s begin by determining the equilibrium position of a seesaw pivot. You and
Question #1466457

Navigate

Previous
Let\'s do some order of magnitude and scaling exercises related to the 2 body nd
Next
Let\'s do some true/false questions. That\'s pretty much it; you determine if th

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.