Internal Data Protocol

In: Computers and Technology

Submitted By mandie85
Words 453
Pages 2
Mandie Brayley
NT2580 – Intro to Info Sec
Unit 1 Assignment 2: Impact of a Data Classification Standard

When you hear Internal Use Only, the first thing that seems to pop into your head would be that any data transferred has to stay inside wherever the domains are. While there are seven IT infrastructure domains, there are only three that are actually affected by the “Internal Use Only” data standard. These domains are the user domain, workstation domain and the LAN domain. As with all infrastructures these domains have their own tasks and responsibilities.
The user domain is the first layer of the IT infrastructure defense system. This domain is used to access systems, applications, data and more. You will also find the AUP or Acceptable Use Policy here. The AUP is a policy tells the user what they are and are not allowed to do with any organization-owned IT equipment. This domain is affected by the Internal Use Only standard because it is the first partition of the IT Infrastructure.
After the user domain, we have the workstation domain. This domain is used to configure hardware and hardening systems. Hardening systems is the process of ensuring that controls are in place to handle any known threats. This process is done by ensuring that the infrastructure has all the latest software revisions, security patches, and systems configurations. But these aren’t the only things that go on in the domain, this is also where the antivirus files are verified. While you would think that this would be a good place this domain needs additional layers of defense because multiple users can access the workstation domain. A way this can be done is by implementing workstation Logon ID’s and passwords. This way any user that is attempting to use the workstation domain has to verify who they are and their credentials.
This is also done in the LAN Domain.…...

Similar Documents

Data

...C H A P T E R 5 AppleTalk Data Stream Protocol (ADSP) 5 This chapter describes the AppleTalk Data Stream Protocol (ADSP) that you use to establish a session to exchange data between two network processes or applications in which both parties have equal control over the communication. You should read this chapter if you want to write an application that supports the exchange of more than a small amount of data between two parties who each can both send and receive streams of data. This chapter also describes the AppleTalk Secure Data Stream Protocol (ASDSP), a secure version of ADSP, that allows users of your application to communicate over an ADSP session after the users’ identities have been authenticated. Users can then exchange encrypted data over the session. For your application to use ASDSP, the system on which it runs must have the AppleTalk Open Collaboration Environment (AOCE) software installed and must have access to an AOCE server. To use ASDSP, you must also use the Authentication Manager, which is a component of the AOCE software. For information on the Authentication Manager, refer to Inside Macintosh: AOCE Application Programming Interfaces. ASDSP enhances ADSP with authentication and encryption features. When this chapter discusses components of ADSP, such as connection ends and connection listeners, you can assume that the information also applies to ASDSP. The sections in this chapter that discuss ASDSP describe any specific differences between......

Words: 29341 - Pages: 118

(2012, 11). Richman Investments "Internal Use Only" Data Classification Standard. Studymode.Com. Retrieved 11, 2012, from Http: //Www.Studymode.Com/Essays/Richman-Investments-Internal-Use-Only-Data-

...Richman Investments “Internal Use Only” data classification standard Tamara Beecher December 16, 2013 Internal use only – Information or data shared internally by an organization. While confidential information or data may not be included, communications are not intended to leave the organization. This report is designed to describe clarify the standards for the “Internal use only” data classification for Richman Investments, this report will address which IT infrastructure domains are affected by the standard and how. The first IT infrastructure affected by the Internal Use Only classification is the User Domain. The User Domain defines the people who access an organization’s information system. The User Domain also will enforce an acceptable use policy (AUP) to define what each user can and cannot do with any company data shall he or she have access to it. As well as with company users, any outsider contractor or third-party representatives shall also need to agree and comply with the AUP. Any violation will be taken up with company executives and/or the authorities to assess further punitive action. Workstation Domain- is where most users connect to the IT infrastructure. No personal devices or removable media may be used on this network. All devices and removable le media will be issued by the company for official use only. Access Control Lists (ACLs) will be drawn up to appropriately define what access each individual will have. Any violations will cause...

Words: 319 - Pages: 2

Routing Protocol

...Introduction 1 2.1 Industry Standard protocols vs. Proprietary protocols: 2 3.0 Technical Background 2 3.1 Types Of Routing Protocols 2 3.1.1 Static Routing 2 3.1.2 Distance Vector Protocols 3 3.1.3 Link-State Protocols 4 3.1.4 Advanced Distance Vector Protocol 5 3.1.5 Path Vector Protocols 5 4.0 Protocol Decision Criteria 5 5.0 OSPF 8 6.0 EIGRP 18 7.0 Analysis 21 8.0 Recommendation 22 9.0 References 23 9.1 URLs 23 9.1.1 OSPF 23 9.1.2 EIGRP 24 9.2 Books 24 9.2.1 OSPF 24 9.2.2 EIGRP 24 Executive Summary The network is based on the TCP/IP protocol, which permits the efficient routing of data packets based on their IP address. Cisco routers are used at various points in the network to control and forward the data. Alcatel OmniSwitch switch/routers are also used in the Site 2 facilities. At the current point a decision is being made by on whether to keep the existing Alcatel infrastructure in the Site 2 facility or migrate that equipment to similar Cisco equipment as exists in Site 1. The current Alcatel equipment is experiencing severe problems such as hardware failures, power supply failures, operating system memory leaks resulting in reboots. If the decision is made to upgrade the Alcatel switch/routers then an evaluation will need to be made on what the proper routing protocol should be running......

Words: 8531 - Pages: 35

Richman Investments “Internal Use Only” Data Classification Standard Brief Report

...RICHMAN INVESTMENTS “INTERNAL USE ONLY” DATA CLASSIFICATION STANDARD Brief Report This Brief Report is to describe Richman Investments policy of “Internal Use Only” data classification standard. This document is to be used as an informational guide for any employee or third party representative who is to access any or all of Richman Investments internal data base information system. To access Richman Investments internal data base any user, employee or third party representative must agree to the acceptable use policy (AUP). “While confidential information or data may not be included, communications, documents or any data are not intended to leave the organization.” (Beecher, 2013) There are 3 types of IT infrastructure domains that are affected by the “Internal Use Only” data classification standard of Richman Investments listed as follows: User Domain is the first layer of the infrastructure and is defined as any person (single user) accessing Richman Investments internal data base information system who has agreed to the AUP. This Domain defines the user permissions. This is where the IT department defines what access each individual user will have on the network. This is considered to weakest link in the company’s infrastructure. Workstation Domain is the second layer of the infrastructure and is defined as the first access point to the Richman Investments internal data base information system, applications and data. This layer requires a login and password......

Words: 440 - Pages: 2

Protocols

...LAB 3.1-3.4 3.1.1 – WHAT WOULD HAPPEN IF WIRELESS DEVICES WERE NOT GOVERNED BY THE WI-FI ALLIANCE AND EACH VENDOR HAD ITS OWN STANDARDS AND PROTOCOLS? A. WIRELESS DEVICES WOULD HAVE DIFFICULTY COMMUNICATING. WHAT IS OKAY WITH ONE VENDOR MAY NOT BE OKAY WITH ANOTHER VENDOR. PRICES OF DEVICES AND CONNECTIONS WOULD ALSO CHANGE. 3.1.2 – GIVE AN EXAMPLE OF A MODEL THAT IS USED TO VISUALIZE SOMETHING THAT IS DIFFICULT TO OBSERVE OR PERCEIVE. A. CONNECTIONS REQUIRING ROUTER EQUIPMENT – HUBS, SWITCHES AND ROUTERS. 3.1.3 – WHAT ARE THE DIFFERENT LAYERS YOU THINK WOULD BE NECESSARY FOR COMMUNICATION TO BE MAPPED TO A MODEL? A. APPLICATION LAYER, PRESENTATION LAYER, SESSION LAYER, TRANSPORT LAYER, DATA LINK LAYER AND PHYSICAL LAYER. 3.1.4 – WHAT WILL HAPPEN IF A MODEL IS TOO GENERAL? TOO GRANULAR? A. THE MODEL WOULD NOT BE FLEXIBLE IF TOO GENERAL; IF TOO GRANULAR, A LOAD IMBALANCE WOULD OCCUR. 3.1 REVIEW – 1. WHY WOULD A 3-LAYER MODEL OF COMMUNICATION THAT HAS THE LAYERS PHYSICAL, NETWORK AND APPLICATIONS BE INSUFFICIENT TO ADEQUATELY DESCRIBE NETWORK COMMUNICATIONS? A. THE 7-LAYER COMMUNICATION MODEL WAS TESTED AND SUCCESSFULLY PROVEN TO WORK. IF A LAYER IS MISSING THE MODEL WILL NOT WORK PROPERLY. 2. WHAT IS THE HISTORY OF THE OSI REFERENCE MODEL? A. TO SERVE AS THE FOUNDATION OF THE ESTABLISHED WIDELY ADOPTED SUITE OF PROTOCOLS THAT ARE USED BY INTERNATIONAL INTERNETWORKS. 3. WHAT IS THE HISTORY OF THE TCP/IP MODEL? A. BOTH DEVELOPED TOGETHER (INTERNET AND TCP/IP)...

Words: 996 - Pages: 4

Protocols

...A protocol is a set of invisible compute rules that govern how an Internet document will be transmitted onto the screen. For two computers to communicate with one another, they must be able to understand one another through the same language. In order for computers to exchange information there must be a preexisting agreement as to how the information will be structured and how the sides will send and be received. The most important that defines the common networking protocols is the OSI known as Open Systems Interconnection. Introducing the TCP and the IP are two different protocols that are often linked together. The linking of several protocols is fairly common since the functions of different protocols may be complementary so that together they carry out particular tasks that are bases of operation layers. These suits of protocols are often used with many local area networks and carries out the basic operations of the Internet. Emailing also has its own set of protocols that has a variety of both for sending and receiving mail. The most common protocol for sending mail is the SMTP that is known for as Simple Mail Transfer Protocol. Then for receiving emails, the protocol being most commonly used is the Post Office Protocol, POP for short. Both the SMTP and the POP is used for managing the transmission for delivery of mail across the Internet. Web pages that are constructed to a standard method are called Hypertext Markup Language known as HTMO. The HTMP......

Words: 413 - Pages: 2

Data

...William Wragg Mr. Thomas Fortenberry IST 113471 17 October 2014 Chapter 7 Exercises 1. What is the definition of a local area network? a. A communication network that interconnects a variety of data communicating devices within a small geographic area and broadcasts data at high data transfer rates with very low error rates. 2. List the primary activities and application areas of local area network. b. File server, print server, connections to other networks. 3. List the advantages and disadvantages of local area networks. c. The advantages are sharing of files and devices, and intercommunication. d. The disadvantages are maintenance, complexity, and costs. 4. What are the basic layouts of local area networks? List two advantages that each layout has over the others. e. Buses advantages are the use of low-noise coaxial cable, and inexpensive taps. f. Star-wired buses are simple to interconnect, have easy to add components, and are most popular. g. Star-wired rings are simple to interconnect and have easy to add components. 5. What is meant by a passive device? h. A signal that enters is neither amplified nor regenerated. The signal is simply passed on. 6. What is meant by a bidirectional signal? i. A signal that propagates in either direction on a medium. 7. What are the primary differences between baseband technology and broadband technology? j. Baseband is a digital...

Words: 806 - Pages: 4

Protocols

...Protocols Just like wired and TCP/IP communications, wireless communications has its own set of protocols. These protocols exist to govern wireless communications for mobile phones, pagers, and other wireless devices (Protocols.com). Protocols that exist for wireless communications such as wireless session protocol, wireless transaction protocol, wireless transport layer security, and wireless datagram protocol each covering different aspects of the communications model (Protocols.com). Just like wired and TCP/IP communications, wired communication protocols exist in a wireless communications OSI model (Protocols.com). The wireless communications OSI model is divided into the following layers; application layer, session layer, transaction layer, security layer, transport layer (Protocols.com). Each layer of the wireless communications OSI model has is associated protocols. The necessity for different protocols for wireless communications comes from this “WAP Stack” which is the model for wireless data transfer (Protocols.com). Each layer of the model is governed by different protocols, and are divided as follows. * Application Layer Protocols * WAE or Wireless Application Environment * WTA or Wireless Telephony Application (Protocols.com) * Session Layer Protocols * WSP or Wireless Session Protocol (Protocols.com) * Transaction Layer Protocols * WTP or Wireless Transaction Protocol (Protocols.com) * Security Layer Protocols * WTLS or Wireless Transport Layer......

Words: 278 - Pages: 2

Protocols

...The four major protocols for circuit switching and packet switching are as follows: • X.25 • Frame Relay • ATM or Asynchronous Transfer Mode protocol • TCP/IP X.25 is probably one of the very first of packet switching protocols. It performs really well, especially considering how long it has been around. X.25 uses a virtual circuit approach, mainly using POTS or plain old telephone service lines, which are different from lines such as ISDN. The POTS lines are analog copper lines, so they can experience a lot of errors. But, once the lines have been connected, X.25 connections are really reliable. It's quite an efficient way to send packets across various data networks, with the X.25 protocol redundant error checking at each of the nodes. Frame relay is different because it doesn't require the need for analog wires or overhead wires like X.25 does. But this means that Frame Relay doesn't have the added framing and processing that X.25 has that provide guaranteed data transfers. It also doesn't have link to link reliability. So if a frame is corrupted, it is discarded, which is different than TCP as it detects and recovers any and all discarded frames. Asynchronous Transfer Mode protocol is used with either a coaxial cable, twisted pair, or fiber. ATM also takes advantage of a 53-btye cell, having 48 application bytes and 5 bytes are allocated for the ATM headers. ATM shows a lot more enhancements over Frame......

Words: 487 - Pages: 2

Richman Investments “Internal Use Only” Data Classification Standard

...RICHMAN INVESTMENTS “INTERNAL USE ONLY” DATA CLASSIFICATION STANDARD Brief Report This Brief Report is to describe Richman Investments policy of “Internal Use Only” data classification standard. This document is to be used as an informational guide for any employee or third party representative who is to access any or all of Richman Investments internal data base information system. To access Richman Investments internal data base any user, employee or third party representative must agree to the acceptable use policy (AUP). “While confidential information or data may not be included, communications, documents or any data are not intended to leave the organization.” (Beecher, 2013) There are 3 types of IT infrastructure domains that are affected by the “Internal Use Only” data classification standard of Richman Investments listed as follows: User Domain is the first layer of the infrastructure and is defined as any person (single user) accessing Richman Investments internal data base information system who has agreed to the AUP. This Domain defines the user permissions. This is where the IT department defines what access each individual user will have on the network. This is considered to weakest link in the company’s infrastructure. Workstation Domain is the second layer of the infrastructure and is defined as the first access point to the Richman Investments internal data base information system, applications and data. This layer requires a login and password......

Words: 306 - Pages: 2

Advantages and Disadvantages of the Sources of Internal Data

...CHAPTER 4 EXPLORATORY RESEARCH DESIGN: SECONDARY DATA Opening Questions 1. Why are secondary data important? How do we distinguish secondary data from primary data? 2. What are the advantages and disadvantages of secondary data? 3. How should secondary data be evaluated to determine their usefulness? 4. What are the different sources of secondary data, including internal sources and external sources? 5. What is database marketing? How does it make use of secondary data? 6. How can published secondary data be classified? 7. How can computerized databases be classified? 8. How do we identify and classify the sources of secondary data useful in international marketing research? 9. How can technology and what ethical issues are involved in the use of secondary data? AUTHOR'S NOTES: CHAPTER FOCUS This chapter provides an overview of secondary data. Secondary data are defined and their advantages, disadvantages, and evaluations discussed. A classification of secondary data is presented. Internal sources, published external sources, and computerized databases are discussed. Applications of secondary data in the context of a buying power index and computer mapping are provided. The several classifications of secondary data, presented in Figures 4.3 through 4.6, are unique to this book. In addition, a focus on international marketing research, technology, and ethics is placed at the end of this chapter. This chapter could be taught by focusing...

Words: 4683 - Pages: 19

Protocols

...LAYER PROTOCOLS • IP (Internet Protocol) • ICMP (Internet Control Message Protocol) • ARP (Address Resolution Protocol) • RARP (Reverse Address Resolution Protocol) 4.7.1 The IP PROTOCOL • IP represents the heart of the Internet Protocol suite • Provides the main service of the layer: data transmission in connectionless mode – datagram IP Header Format IP Header Format (Including user data, this makes an IP packet) IP Header fields: • Version - Indicates the version of IP currently used (now 4); • IP Header Length - Indicates the datagram header length in 32-bit words (value = 5); • Type-of-service - Specifies how a particular upper-layer protocol would like the current datagram to be handled. Datagrams can be assigned various levels of importance through this field; • Total length - Specifies the length of the entire IP packet, including data and header, in bytes. • Identification - Contains an integer that identifies the current datagram (sequence number). This field is used for re-assembling the datagram fragments; • Flags - A 3-bit field for fragmentation control:  000 - last fragment;  001 - not last fragment;  010 - the fragmentation not allowed. • Fragment offset - measured in double-words (offset from main datagram); • Time-to-live - Maintains a counter that gradually decrements down to zero, at which point the datagram is discarded. This keeps packets from looping endlessly; • Protocol - Indicates which upper-layer protocol......

Words: 1379 - Pages: 6

Build a Comprehensive Interview Protocol That Generates Change-Process Data.

...Qualitative Data Collection By April Madison For Dr. Kevin Freer Capella University Qualitative Data Collection I want to thank you for taking time to participate today. My name is April Madison and I am a graduate student at Capella University steering my action research project for the requirements of a professional doctoral degree. I would like to talk about your experience as a general educator in a collaborative setting. Specifically, as one of the components of our overall program evaluation we are assessing program effectiveness in order to create lessons that can be used in a future collaborative setting. I am the researcher, specifying your participation in the action research project: General and Special Educators Combines Specialties. I will include 3 questions regarding your experiences and what might affect your satisfaction as a general education teacher in a collaborative setting. The interview should take less than an hour. I would like your permission to video this interview, so I may accurately document the information. If at any time during the interview you wish to stop the video, please feel free to let me know. All of your responses will be kept confidential. This means that your interview responses will only be shared with me and I will ensure that any information included in my report does not identify you as the respondent. Remember, you don’t have to talk about anything you don’t want to and you may end the......

Words: 383 - Pages: 2

Ethics Protocol

...[pic] Summary Protocol Form (SPF) University Human Research Ethics Committee [pic]Office of Research – Ethics and Compliance Unit: GM 1000 – 514.848.2424 ex. 2425 Important Approval of a Summary Protocol Form (SPF) must be issued by the applicable Human Research Ethics Committee prior to beginning any research involving human participants. The University Human Research Ethics Committee (UHREC) reviews all Faculty and Staff research, as well as some student research (in cases where the research involves more than minimal risk - please see below). Research funds cannot be released until appropriate certification has been obtained. For faculty and staff research Please submit one signed copy of this form to the UHREC c/o the Research Ethics and Compliance Unit, GM-1000. Please allow one month for the UHREC to complete the review. Electronic signatures will be accepted via e-mail at ethics@alcor.concordia.ca For graduate or undergraduate student research • If your project is included in your supervising faculty member’s SPF, no new SPF is required. • Departmental Research Ethics Committees are responsible for reviewing all student research, including graduate thesis research, where the risk is less than minimal. In Departments where an ethics committee has not been established, please contact the Research Ethics and Compliance Unit. • In cases where the student research is more than minimal risk (i.e. the research involves participants......

Words: 1622 - Pages: 7

Richman Investments "Internal Use Only" Data Classification Standard

...The "Internal Use Only" data classification standard at Richman Investments will include the most basic IT infrastructure domains to include the User Domain, Workstation Domain, and the LAN Domain. This will encompass all users and their workstations, as well their access to the internet and company server databases and any information in between. The User Domain will enforce an acceptable use policy (AUP) to define what each user can and cannot do with any company data shall he or she have access to it. As well as with company users, any outside contractor or third-party representatives shall also need to agree and comply with the AUP. All users must be properly identified and sign this AUP prior to gaining any access whatsoever to the company network. No exceptions. Any violation will be taken up with company executives and/or the authorities to assess further punitive action. The Workstation Domain includes all workstations approved on the company network. No personal devices or removable media may be used on this network. All devices and removable media will be issued by the company for official use only. To access any workstation, a user will need to be first verified, then setup with an account to be logged in with a username and pass code adhering to the IT departments set standards. All systems will undergo regular updates and be provided with anti-virus and anti-malware software for system monitoring. Access Control Lists (ACLs) will be drawn up to appropriately......

Words: 482 - Pages: 2