• Unauthorized access through circumvention of security access controls
• Masquerading, logon abuse (primarily internal attacks)

Class B – non-business use of systems

Class C

• Eavesdropping
• Active: Tampering with a transmission to create a covert signaling channel or probing the network
• Passive – Covertly monitoring or listening to transmissions that is unauthorized
• Covert Channel – using a hidden unauthorized communication
• Tapping – refers to the physical interception of transmission medium (like splicing of cable)

Planning to take the CISSP Exam? Get a copy of my personal notes (300plus pages worth) that I used to pass the exam for only $25.00. Click the Add To Cart Button to Purchase Plus you will also get copies of notes from other CISSPs. Learn more about this package by visiting this blog entry: CISSP REVIEW NOTES I USED TO PASS THE EXAM. CLICK BELOW TO MAKE YOUR PURCHASE NOW. All Purchases are securely processed through Paypal. Once you click the button please check your shopping cart at the upper right hand side of the page to complete your order. IMPORTANT NOTICE: I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECEIVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

Class D – denial of service saturation of network services

Class E

• Network Intrusion – external penetration
• Spoofing – a spoofing attack involves nothing more than forging one’s source address; the act of using one machine to impersonate another
• Piggy Backing – attack using another user’s connection
• Back Door – attack via dial-up or external connection

Class F

• Probing
• Gives an intruder a road map of the network for DoS attach
• Gives a list of available services
• Traffic analysis via sniffers, which scans the host for available services
  • Like a telephone wiretap allows the FBI to listen in to people’s conversation, a “sniffing” program lets someone listen in on computer conversations
• Tools: Telnet (manual), vulnerability scanners (automatic)

• Slow transfer of data to back-up
  • Retrieval time to restore
  • Off-hour processing and monitoring
• Server disk space expands over time
• Loss of data between last back-up
• Physical security of tapes

Planning to take the CISSP Exam? Get a copy of my personal notes (300plus pages worth) that I used to pass the exam for only $25.00. Click the Add To Cart Button to Purchase Plus you will also get copies of notes from other CISSPs. Learn more about this package by visiting this blog entry: CISSP REVIEW NOTES I USED TO PASS THE EXAM. CLICK BELOW TO MAKE YOUR PURCHASE NOW. All Purchases are securely processed through Paypal. Once you click the button please check your shopping cart at the upper right hand side of the page to complete your order. IMPORTANT NOTICE: I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECEIVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

Single Points of Failure

• Cabling failures
  • Coaxial – many workstations or servers attached to the same segment of cable, which creates a single point of failure if it is broken
  • Exceeding cable length is a source failure
• Twisted Pair
  • CAT3 or CAT5 – difference the two has to do with the tightness of the copper wires that were wound
  • Tightness determines its resistance to interference
  • CAT3 is older and cable length is a common failure
• Fiber Optic
  • Immune to EMI
  • Longer usable length – up to 2kms
  • Expensive

Technology Failures

Ethernet

• Most popular
• Extremely resistant to failure, especially in a star-wired configuration

Token Ring

• Since token is passed by every station on the ring, NIC set at wrong speed or in error state can bring the network down

FDDI – Fiber Distributed Data Interface

• Dual rings fault tolerance (if first ring fails, the secondary ring takes over)
• Sometimes uses second ring for improved performance

Leased Lines

• T1 and ISDN – go with multiple vendors to reduce failures

Frame Relay

• Public switched WAN
• Highly fault tolerant
• Bad segments diverts packets
• Can use multiple vendors for high availability

Other Single Points of Failure

• Can be any device where all traffic goes through a single device – Router, firewall, hub or switch
• Power failure – surges, spikes (need for UPS)

Backups are useful primarily for two purposes. The first is to restore a state following a disaster (called disaster recovery). The second is to restore small numbers of files after they have been accidentally deleted or corrupted. Data loss is also very common. 66% of internet users have suffered from serious data loss.

Planning to take the CISSP Exam? Get a copy of my personal notes (300plus pages worth) that I used to pass the exam for only $25.00. Click the Add To Cart Button to Purchase Plus you will also get copies of notes from other CISSPs. Learn more about this package by visiting this blog entry: CISSP REVIEW NOTES I USED TO PASS THE EXAM. CLICK BELOW TO MAKE YOUR PURCHASE NOW. All Purchases are securely processed through Paypal. Once you click the button please check your shopping cart at the upper right hand side of the page to complete your order. IMPORTANT NOTICE: I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECEIVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

Since a backup system contains at least one copy of all data worth saving, the data storage requirements are considerable. Organizing this storage space and managing the backup process is a complicated undertaking. A data repository model can be used to provide structure to the storage. In the modern era of computing there are many different types of data storage devices that are useful for making backups. There are also many different ways in which these devices can be arranged to provide geographic redundancy, data security, and portability.

Before data is sent to its storage location, it is selected, extracted, and manipulated. Many different techniques have been developed to optimize the backup procedure. These include optimizations for dealing with open files and live data sources as well as compression, encryption, and de-duplication, among others. Many organizations and individuals try to have confidence that the process is working as expected and work to define measurements and validation techniques. It is also important to recognize the limitations and human factors involved in any backup scheme.

Source: http://en.wikipedia.org/wiki/Backup

Backup Methodologies:

Full Back-up – every file

Incremental

• Only files that have been changed or added recently
• Only files with their archive bit set are backed up
• This method is fast and uses less tape space, but has some inherent vulnerabilities, one being that all incremental backups need to be available and restored from the date of the last full backup to the desired date should a restore be needed
• Restore = last full backup plus each incremental

Differential

• Only files that have changed since the last backup
• All files to the full back-up (additive)
• Restore = full backup plus last differential

Types of Tape

• DAT – Digital Audio Tape
• QIC – Quarter Inch Cartridge – small and slow
• 8mm Tape – Superceded by DLT
• DLT – Digital Linear Tape – 4mm tape – large and fast

Other Media

CD – permanent backups, onger shelf life than tape

ZIP or JAZZ – no longer as common

Tape Array – 32 to 63 Tape Array using RAID Technology

HSM – hierarchical; provides a continuous on-line back-up by using optical or tape “jukeboxes”, similar to WORMs

CIRT (Computer Incident Response Team) is also commonly called CERT (Computer Emergency Response Team) – they are personnel responsible for coordinating the response to computer security incidents in an organization (Source: www.net.ttu.edu/security/policy_definitions.doc)

Responsibilities include:

• Manage the company’s response to events that pose a risk
• Coordinating information
• Mitigating risk, minimize interruptions
• Assembling technical response teams
• Management of logs
• Management of resolution

Planning to take the CISSP Exam? Get a copy of my personal notes (300plus pages worth) that I used to pass the exam for only $25.00. Click the Add To Cart Button to Purchase Plus you will also get copies of notes from other CISSPs. Learn more about this package by visiting this blog entry: CISSP REVIEW NOTES I USED TO PASS THE EXAM. CLICK BELOW TO MAKE YOUR PURCHASE NOW. All Purchases are securely processed through Paypal. Once you click the button please check your shopping cart at the upper right hand side of the page to complete your order. IMPORTANT NOTICE: I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECIEVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.