a) Contingency planning
A contingency is an unscheduled interruption of computing services that requires measures outside the day to day routine operating procedures. A contingency plan must provide for standby procedures to continue operations, recovery procedures to correct the breakdown and personnel management policies for the procedures.
Contents of a contingency plan include:
? Definition of responsibilities.
? Setting priorities.
? Back-up and standby arrangements.
? Communication with staff.
? Public relations.
? Risk assessment.
b) The two forms of control
Physical access control
This ensures intruders do not get near computer equipment or storage media.
Methods of controlling human access include:
? Personnel (security guards)
? Mechanical devices (lock and keys)
? Electronic identification (card swipe systems, keypad systems)
Logical access systems
These are controls designed to prevent those who have access to a terminal or computer from gaining access to data or software. A logical access system performs three operations when access is requested:
? Identification of the user.
? Authentication of the user identity.
? Check on user authority.
Logical access is accomplished through:
- Password systems
- Encryption
- Biometrics
Password systems
A password is a set of characters, which may be allocated to a user, terminal or facility which are required to be keyed into the system before further access is permitted. Passwords should be kept secret, changed regularly and should not be obvious.
Encryption
Data transmitted over telecommunication links or networks suffers three security dangers:
? Hardware faults.
? Unauthorised access by eavesdroppers.
? Direct intervention by an impostor who sends false messages down the line.
Encryption involves scrambling the data at one end of the line, transmitting the scrambled data and unscrambling (decrypting) it at the receiving end of the line.
Authentication involves making sure that the message has come from an authorised user by the addition of an extra identification field to the message.
Biometrics- use of human biological features e.g retina, sound, to identify or authenticate individuals accessing the system.
c) Hackers and Viruses
A hacker is a person who attempts to invade the privacy of a system. A virus is a piece of software that invades programs or data, and which replicates itself and causes harm to data or the IS.
Viruses are written by programmers and are usually placed in:
? Free software.
? Pirated software. ? Games software.
Examples of viruses are:
? TROJANS. This is a program that while visibly carrying out one function, secretly carries out another.
? WORM. This is a program that replicates itself inside a computer system.
? TRAP DOORS. These are undocumented entry points into the system to which malicious code can be attached.
? LOGIC BOMBS. These are pieces of code triggered by a certain event.
? TIME BOMBS. These are pieces of code triggered by a certain date.
Protection against viruses includes:
? Vaccine programs.
? Guarding against introduction of unauthorised software.
? Cleaning of disks before downloading.
Gregorymasila1 answered the question on March 28, 2018 at 12:38
- Differentiate between static and dynamic testing as used in system analysis and design(Solved)
Differentiate between static and dynamic testing as used in system analysis and design.
Date posted: March 24, 2018. Answers (1)
- Distinguish between adaptive and probabilistic systems (Solved)
Distinguish between adaptive and probabilistic systems.
Date posted: March 24, 2018. Answers (1)
- Explain the term environment as used in information systems(Solved)
Explain the term environment as used in information systems.
Date posted: March 24, 2018. Answers (1)
- What are the physical parts of a computer?(Solved)
What are the physical parts of a computer?
Date posted: March 23, 2018. Answers (1)
- List any four likely causes of data and program loss in a computer system?(Solved)
List any four likely causes of data and program loss in a computer system?
Date posted: March 19, 2018. Answers (1)
- Write a program that solves a quadratic equation gives the answer for the roots.(Solved)
Write a program that solves a quadratic equation gives the answer for the roots.
Date posted: March 8, 2018. Answers (1)
- Write a C++ program that accepts an integer and checks whether it is even or odd and then prints an appropriate message(Solved)
Write a C++ program that accepts an integer and checks whether it is even or odd and then prints an appropriate message.
Date posted: March 8, 2018. Answers (1)
- Discuss process synchronization in the context of computer operating systems(Solved)
Discuss process synchronization in the context of computer operating systems
Date posted: March 5, 2018. Answers (1)
- What is a Knowledge Based System?(Solved)
What is a Knowledge Based System?
Date posted: March 3, 2018. Answers (1)
- Explain Key challenges Facing Software Engineering.(Solved)
Explain key challenges facing Software Engineering.
Date posted: March 3, 2018. Answers (1)
- Explain types of Software products.(Solved)
Explain types of software products
Date posted: March 3, 2018. Answers (1)
- Differentiate between Software Engineering and System Engineering.(Solved)
Differentiate between Software Engineering and System Engineering
Date posted: March 3, 2018. Answers (1)
- Differentiate between Computer Science and Software Engineering.(Solved)
Differentiate between Computer Science and Software Engineering.
Date posted: March 3, 2018. Answers (1)
- Describe the term Quality assurance in relation to Software Engineering.(Solved)
Describe the term Quality assurance in relation to Software Engineering.
Date posted: March 3, 2018. Answers (1)
- Explain types of Software process Models(Solved)
Explain types of Software process Models.
Date posted: March 3, 2018. Answers (1)
- What Computer Aided Software Engineering (C.A.S.E)?(Solved)
What is Computer Aided Software Engineering (C.A.S.E)?
Date posted: March 3, 2018. Answers (1)
- Explain the three levels of abstraction.(Solved)
Explain the three levels of abstraction.
Date posted: March 3, 2018. Answers (1)
- What is software process and what activities are involved?(Solved)
What is software process and what activities are involved?
Date posted: March 3, 2018. Answers (1)
- Explain the term user requirements.(Solved)
Explain the term user requirements.
Date posted: March 3, 2018. Answers (1)
- What do you understand by the term requirements in software engineering?(Solved)
What do you understand by the term requirements in software engineering?
Date posted: March 3, 2018. Answers (1)