StudyXY
RegisterLog in

MET CS 695 Assignment 3

Assignment covering key concepts in MET CS 695 coursework.

Isaac Ross
Contributor
4.0
40
6 months ago
Preview (2 of 4 Pages)
100%
Purchase to unlock

Page 1

MET CS 695 Assignment 3 - Page 1 preview image

Loading page ...

MET CS 695 Assignment 3Page1of4MET CS 695 Assignment 3ASSIGNMENTINFORMATIONThe following is an extract from a corporate security policy (list 1):10.5.2LOGONPROCEDURESIt is the responsibility of service providers, system administrators, and application developers toimplement logon procedures that minimize opportunities for unauthorized access.Threshold andtime periods are to be defined by the Trustee.Logon procedures should be enabled that disclose the minimum information about the system,application, or service to avoid providing an unauthorized user with unnecessary assistance.Logon procedures should:Not display system or application identifiers until the logon process has been successfully completed.Not disclose/display to the screen the password entered during logon.Display a specific warning that the system and/or application should only be accessed by authorizedusers.Not provide help messages during the logon procedure that would aid an unauthorized user.Internet-based systems must only request authentication credentials via HTTP POST method usingencryption, such as TLS.Validate the logon information only upon completion of all input credentials. If an error condition arises,the system should not indicate which part of the authentication credentials is correct and which part isincorrect.Limit the number of unsuccessful logon attempts allowed before an access denial action is taken.Three attempts are recommended and in no circumstances should more than six attempts be allowed.Establish thresholds for the maximum number of denial actions within a given period before furtherunsuccessful logon attempts are considered a security-relevant event. Six attempts by the same logonID or requesting device in a 24 hour period should be set as an upper threshold. Exceeding thresholdsshould cause one or more of the following:The authentication device is suspended or rendered inoperable until reset.The authentication device's effectiveness is suspended for a specified time period.Logging of the invalid attempts and/or a real time alert is generated.A time delay is forced before further access attempts are allowed.Limit the maximum time period allowed for the logon procedure. 20 seconds is recommended,however 30 to 40 seconds may be required for two-factor authentication.Disconnect and give no assistance after a rejected attempt to logon.Display the following information upon completion of a successful logon:Date and time of the previous successful logon.Details of any unsuccessful logon attempts since the last successful logon.The following is an extract from a detailed set of corporate security requirements(list 2):

Page 2

Preview Mode

This document has 4 pages. Sign in to access the full document!

Study Now!

XY-Copilot AI
Unlimited Access
Secure Payment
Instant Access
24/7 Support
Document Chat

Document Details

University
Boston University
Course
MET CS 695
Subject
Information Technology

Related Documents

View all
Class Notes

DevOps and Its Importance Study Notes

DevOps Overview – Covers culture, performance metrics, CI/CD, CALMS model, automation, continuous testing, and frameworks like Agile, SAFe, and SRE. Ideal for modern IT and DevOps foundation learning.

Past Exams

Veeam Certified Engineer VMCE-V12

Veeam Backup Q&A – Covers Scale-out Backup Repositories, Oracle RMAN plug-in, agent-supported OS, and retention policies. Ideal for IT pros preparing for Veeam certification or data protection roles.

Past Exams

Modules 1 - 3 Basic Network Connectivity and Commu

Modules 1–3: ITN v7.0 Exam Answers on Basic Network Connectivity and Communications. Covers OSI model, IP addressing, protocols, and network devices. Ideal for CCNA exam prep.

Class Notes

Notes CCNA

Set boot file and recover from crash on Cisco switches. Use boot system commands, mode button, and boot loader steps to restore functionality after power loss or software issues.

Class Notes

CCNA 200-301 Portable Command Guide 5th Edition 20

Configure and secure NTP for accurate time across your network. Learn NTP design, troubleshooting, clock settings, and timestamps with configuration examples to support SLAs and log accuracy.

Class Notes

CCNA 200-301 Portable Command Guide 5th Edition 22

Manage traffic using ACLs: Learn to create, apply, and verify standard, extended, named, and IPv6 ACLs. Includes tips, keywords, sequence numbers, and configuration examples.

Class Notes

CCNA 200-301 Portable Command Guide 5th Edition 36

Learn how to subnet IPv4 addresses using binary math, including Class B and C subnetting, binary ANDing, and shortcuts—essential skills for mastering the CCNA 200-301 exam.

Class Notes

Foundations of Novell Networking Section 26

Learn how web servers work and explore installing and configuring the NetWare Enterprise Web Server in NetWare 6, including support for iFolder and iPrint.

Class Presentation

Modulo 7 DHCPv4

Aprende a configurar DHCPv4 para asignar IPs dinámicamente. Ideal para redes grandes o pequeñas, usando servidores dedicados o routers Cisco con IOS como servidor DHCP eficiente.

Class Notes

Build and troubleshooting Integration Challenge

Networking Practice Exam: Configura y soluciona redes con routers y VLANs. Incluye direccionamiento IP detallado, subredes, interfaces y pruebas de conectividad para integración de sistemas.