• Log In
  • Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

Protection of Information Assets

Temple University

Protection of Information Assets

MIS 5206.951 ■ Summer 2024 ■ David Lanter
  • HomePage
  • Instructor
  • Syllabus with Readings (Start reading now!)
  • Team Project
  • Class Meeting – Online via Zoom

David Lanter

Question 1

April 29, 2024 by David Lanter 29 Comments

What are the common/shared risks and what are the different/unique risks faced by desktop applications versus web-based applications?

Filed Under: 7b: Computer Application Development Security Tagged With:

Question 1

April 29, 2024 by David Lanter 30 Comments

For an organization choosing among Chengdu Sichuan 成都市, Guangzhou Guangdong 广州, and Beijing  京 , from an environmental security perspective – where would be the best place to locate their data center?  Why is this place better and the other places worse?

Filed Under: 3b: Physical and Environmental Security Tagged With:

Question 1

April 29, 2024 by David Lanter 30 Comments

The total processing speed of microprocessors (based on clock rate and number of circuits) is doubling roughly every year.  Today a symmetric session key needs to be 100 bits long to be considered strong.  How long will a symmetric session key have to be in 30 years to be considered strong? (Hint: Consider how much longer decryption takes if the key length is increased by a single bit.) Explain.

Filed Under: 6b - Cryptography Public Key Encryption and Digital Signatures Tagged With:

Question 1

April 29, 2024 by David Lanter 31 Comments

Based on the facts presented in the case, how far had Fetcher-Allen progressed in these steps by June, 1998?  How likely is it that Fletcher-Allen would have achieved full-year 2000 compliance by December 31, 1999?  [Explain your reasoning, supported by specific evidence from the case and assigned readings.]

Filed Under: 4b Case Study 3 A Hospital catches the Millennium Bug Tagged With:

Question 1

April 29, 2024 by David Lanter 31 Comments

What is the difference between identity management and access management?

 

Filed Under: 7a: Identity Management and Access Control Tagged With:

Question 1

April 29, 2024 by David Lanter 32 Comments

What is meant by the term “acceptable information system security risk”? Who within the organization determines what is the acceptable level of information system risk? How does an organization determine what is an acceptable level of risk?

Filed Under: 2a: Risk Evaluation Tagged With:

Question 3

April 29, 2024 by David Lanter 31 Comments

Assume you are tasked with designing a new policy that highlights information security best practices related specifically to mobile devices at RIT, including laptops, smartphones, and tablets. The new policy should supplement RIT’s Information Security Policy and Acceptable Use Policy (case Exhibits 4 and 5). What practices would you recommend? How could you make staff aware of the policy and encourage their compliance?

Filed Under: 1a: Case Study 1 Snowfall and a stolen laptop Tagged With:

Question 1

April 29, 2024 by David Lanter 31 Comments

What are the 3 types of risk mitigating controls? Which is the most important?  Why is it the most important?

Filed Under: 1b: Data Classification Process and Models Tagged With:

Question 2

April 29, 2024 by David Lanter 30 Comments

What factors contribute to making an employee an information security threat actor?

Filed Under: 3a: Creating a Security Aware Organization Tagged With:

Question 3

April 29, 2024 by David Lanter 31 Comments

How can employee risks be controlled?

Filed Under: 3a: Creating a Security Aware Organization Tagged With:

  • « Go to Previous Page
  • Page 1
  • Page 2
  • Page 3
  • Page 4
  • Page 5
  • Page 6
  • Go to Next Page »

Primary Sidebar

Questions about the Readings and Case Studies

  • 0a: Course Introduction & Webinar (1)
  • 0b: Understanding an Organization's Risk Environment (4)
  • 1a: Case Study 1 Snowfall and a stolen laptop (4)
  • 1b: Data Classification Process and Models (4)
  • 2a: Risk Evaluation (4)
  • 2b: Case Study 2 Autopsy of a Data Breach: The Target Case (4)
  • 3a: Creating a Security Aware Organization (4)
  • 3b: Physical and Environmental Security (3)
  • 4b Case Study 3 A Hospital catches the Millennium Bug (4)
  • 5a: Business Continuity and Disaster Recovery (4)
  • 5b: Team Project Instructions (1)
  • 6a: Network Security (4)
  • 6b – Cryptography Public Key Encryption and Digital Signatures (4)
  • 7a: Identity Management and Access Control (4)
  • 7b: Computer Application Development Security (4)

Copyright © 2025 · Course News Pro on Genesis Framework · WordPress · Log in