Itsecurity finalproject
•
0 likes•202 views
This document summarizes the key assets, security policies, threats, and recommended actions for different areas within an IT system. It discusses security for the door entrance, a printer for uploading files, and a printer for printing files. Recommendations include logging all door access, requiring a PIN and card to print, locking printer cables, and hiding printer IP addresses. The overall goal is to control physical access and authentication, while maintaining data confidentiality, integrity and availability.
More Related Content
Viewers also liked
Similar to Itsecurity finalproject
Similar to Itsecurity finalproject (20)
More from Fabienne Pimenta
More from Fabienne Pimenta (6)
Recently uploaded
Recently uploaded (20)
Itsecurity finalproject
- 1. IT Security SYSTEM KNORD CAROLINA CORREIA FA B I E N N E P I M E N TA
- 2. KEY ASSETS SYSTEM DOOR ENTRANCE PRINTER – UPLOAD FILES KNORD PRINTER – PRINT FILES DOOR ENTRANCE PRINTER –UPLOAD FILES PRINTER – PRINT FILES SECURITY POLICY
- 3. DOOR ENTRANCE SYSTEM CONFIDIENTIALITY IN THIS CASE IT’S NOT NECESSARY KNORD INTEGRITY DOOR ENTRANCE ALSO NOT NECESSARY PRINTER –UPLOAD FILES AVAILABILITY THE DOORS MUST BE AVAILABLE 24H EVERYDAY PRINTER – PRINT FILES SECURITY POLICY
- 4. DOOR ENTRANCE SYSTEM ACCOUNTABILITY AND AUTHENTICATION KNORD THE USER NEEDS TO AUTHENTICATE HIMSELF WITH A PERSONAL IDENTIFICATION DOOR ENTRANCE NON-REPUDIATION PRINTER –UPLOAD TO OPEN THE DOOR THE USER NEEDS TO USE BOTH – FILES NON-PHYSICAL AND PHYSICAL INFROMATION (CARD+PINCODE) FORACORRECTLOGIN PRINTER – PRINT FILES SECURITY POLICY
- 5. DOOR ENTRANCE SYSTEM THREATS SOMEONE ENTERS THE ROOM WITHOUT PERMISSION; KNORD SOMEONE OPENS THE DOOR WITHOUT PERMISSION DOOR ENTRANCE VULNERABILITIES MORE THAN ONE PERSON CAN ENTER THE ROOM ONCE PRINTER –UPLOAD FILES THE DOOR IS OPEN PRINTER – PRINT IS THE THREAT LARGE? FILES YES. IT’S REALLY EASY TO ENTER IN THE ROOM AFTER SECURITY POLICY SOMEONE HAD OPENED THE DOOR
- 6. DOOR ENTRANCE SYSTEM CONTROLS THERE IS NO CONTROL FOR THE NUMBER OF THE PEOPLE KNORD THAT ENTERS ONCE THE DOOR IS OPEN. DOOR ENTRANCE IS IT HARMFUL? PRINTER –UPLOAD NO, IT ISN’T. FILES PRINTER – PRINT FILES SECURITY POLICY
- 7. DOOR ENTRANCE SYSTEM ACTION PLAN IF IT’S DETECTED THAT SOMEONE THAT IS NOT ALLOWED KNORD IS INSIDE THE ROOM, ALL PEOPLE INSIDE SHOULD BE EVACUATED AND THE DOOR CLOSED DOOR ENTRANCE PRINTER –UPLOAD FILES PRINTER – PRINT FILES SECURITY POLICY
- 8. PRINTER – UPLOAD FILES SYSTEM CONFIDIENTIALITY ONLY THE USER CAN ACCESS HIS PERSONAL FILES KNORD INTEGRITY DOOR ENTRANCE ONLY IF THE USER CAN DELETE HIS PERSONAL FILES, UNLESS THEY’RE ALREADY PRINTED PRINTER –UPLOAD FILES AVAILABILITY PRINTER – PRINT THE FILES ARE AVAILABLE TO READ, WRITE AND DELETE FILES 24H EVERYDAY SECURITY POLICY
- 9. PRINTER – UPLOAD FILES SYSTEM ACCOUNTABILITY THE FILES UPLOADED ARE PRIVATE-SENSITIVE DATA AND KNORD ONLY PRINTABLE BY THE USER WHO UPLOAD THEM DOOR ENTRANCE AUTHENTICATION THE USER NEEDS TO USE A LOGIN TO UPLOAD THE FILES PRINTER –UPLOAD FILES NON-REPUDIATION PRINTER – PRINT TO UPLOAD FILES TO THE SERVER, THE USER NEEDS A FILES PERSONAL LOGIN SECURITY POLICY
- 12. PRINTER – UPLOAD FILES SYSTEM THREATS SOMEONE ACCESSES THE FILES OF OTHER USER; KNORD VULNERABILITIES DOOR ENTRANCE WE DIDN’T FIND ANY VULNERABILITIES, BUT HACKING THE SERVER IS ALWAYS A POSSIBILITY PRINTER –UPLOAD FILES IS THE THREAT LARGE? PRINTER – PRINT NO, IT’S VERY SMALL BECAUSE ITS DIFFICULT ACCESS TO FILES THE SERVER SECURITY POLICY
- 13. PRINTER – UPLOAD FILES SYSTEM CONTROLS THE PERSONAL LOGIN IS UNIQUE KNORD THE FILES ARE DELETED AFTER BEING PRINTED DOOR ENTRANCE PRINTER –UPLOAD IS IT HARMFUL? FILES YES, BECAUSE THE PRIVACY OF THER PERSONAL PRINTER – PRINT DOCUMENTS IS VIOLATED FILES SECURITY POLICY
- 14. PRINTER – UPLOAD FILES SYSTEM ACTION PLAN IF A SECURITY BRIGDE IS DETECTED, ALL FILES ON THE KNORD SERVER ARE AUTOMATICALLY DELETED. DOOR ENTRANCE PRINTER –UPLOAD FILES PRINTER – PRINT FILES SECURITY POLICY
- 15. PRINTER – PRINT FILES SYSTEM CONFIDIENTIALITY ONLY THE USER CAN PRINT HIS PERSONAL FILES KNORD INTEGRITY DOOR ENTRANCE NOT APPLIED PRINTER –UPLOAD FILES AVAILABILITY THE FILES ON THE SERVER ARE AVAILABLE TO PRINT 24H PRINTER – PRINT FILES SECURITY POLICY
- 16. PRINTER – PRINT FILES SYSTEM ACCOUNTABILITY AND AUTHENTICATION THE USER NEEDS TO USE HIS PERSONAL CARD TO ACCESS KNORD THE FILES TO PRINT DOOR ENTRANCE NON-REPUDIATION THE USE OF A PERSONAL CARD BY THE USER PRINTER –UPLOAD FILES PRINTER – PRINT FILES SECURITY POLICY
- 17. PRINTER – PRINT FILES SYSTEM THREATS SOMEONE PRINTS FILES OF OTHER USERS KNORD SOMEONE PRINTS FILES WITHOUT PAYING DOOR ENTRANCE VULNERABILITIES PRINTER –UPLOAD WITH THE USER'S CARD, ANYONE CAN PRINT HIS FILES FILES CONNECT THE PRINTER CABLE TO THE COMPUTER AND DIRECTLY FROM THERE PRINTER – PRINT FILES FIND THE IP ADDRESS OF THE PRINTER SECURITY POLICY IS THE THREAT LARGE? YES, IT’S EASY TO STEAL A CARD YES, IT’S EASY TO DISCONNECT AND CONNECT THE CABLE MODERATELY, JUST FOR ADVANCED USERS
- 18. PRINTER – PRINT FILES SYSTEM CONTROLS THERE ISN’T CONTROL FOR THE USE OF THE CARD KNORD THERE ISN’T CONTROL FOR THE PRINTER'S CABLE THERE ISN’T CONTROL TO HIDE THE PRINTER'S IP ADDRESS DOOR ENTRANCE PRINTER –UPLOAD IS IT HARMFUL? FILES YES, BECAUSE THE PERSONAL DOCUMENTS CAN BE PRINTER – PRINT PRINTED BY OTHER USERS FILES NO, BECAUSE ITS FINANCIAL INJURY IS PRETTY SMALL SECURITY POLICY
- 19. PRINTER – PRINT FILES SYSTEM ACTION PLAN IF A SECURITY BRIGDE IS DETECTED, ALL THE PRINTERS ARE KNORD AUTOMATICALLY SHUTTED OFF DOOR ENTRANCE PRINTER –UPLOAD FILES PRINTER – PRINT FILES SECURITY POLICY
- 20. SECURITY POLICY SYSTEM DOOR ENTRANCE THERE SHOULD BE A LOG OF THE ENTRANCES IN THE KNORD ROOM ONLY PEOPLE WITH THE RIGHT LOGIN COULD ACCESS THIS DOOR ENTRANCE LOG THERE SHOULD BE CONTROL OVER THE NUMBER OF PRINTER –UPLOAD FILES PEOPLE THAT ENTER WITH ONE CARD (EXAMPLE: A SECURITY CAMERA) PRINTER – PRINT FILES SECURITY POLICY
- 21. SECURITY POLICY SYSTEM PRINTER – UPLOAD FILES WE THINK THAT THE PRINTERS SYSTEM, REGARDING FILE KNORD UPLOADING, IS IN A VERY GOOD PLACE, SO KNORD SHOULD KEEP IT WORKING DOOR ENTRANCE PRINTER –UPLOAD FILES PRINTER – PRINT FILES SECURITY POLICY
- 22. SECURITY POLICY SYSTEM PRINTER – PRINT FILES IT SHOULD BE REQUIRED TO TYPE THE PIN CODE ALONG KNORD WITH THE CARD IN ORDER TO PRINT THE FILES THE PRINTER'S CABLE SHOULD BE LOCKED WITH A DOOR ENTRANCE PADLOCK THE PRINTER'S IP ADDRESS SHOULD BE HIDDEN, ANYONE PRINTER –UPLOAD FILES SHOULD BE ABLE TO PRINT WITHOUT THE USE OF A LOGIN PRINTER – PRINT FILES SECURITY POLICY
- 23. QUESTIONS?