Computers and Technology, 11.11.2020 17:50, yalley1982

Given the data below that was collected during a risk identification and assessment initiative, answer the questions below. Asset ID Information Asset Asset Weighted Score
A Internet Gateway Network 50
Component
B e-commerce web server 80
An evaluation of the provided asset vulnerabilities results in:
Asset A: This is a network component that has two vulnerabilities. The first vulnerability involves a traffic overflow condition with a likelihood of 0.2 with a current control to address 40% of its risk. The second vulnerability involves a DoS attack likelihood of 0.4 with a current control to address 90 % of its risk.
Asset B: This is a web server that deals with e-commerce transactions. It has one vulnerability with a likelihood of 0.25 with a current control to address 60 % of its risk.
Let: Like=Likelyhood
AWScore=Asset
Weighted Score Control=Current Control Assumption= (1 - decimal value of the % Accuracy of Assumptions) IE: (1-6) or 4 Risk Rating = (AWScore Like) - (AWScoreLike) Control) + ((AWScore Like) *Assumption) It is estimated that Assumptions and data on all assets are 80 % accurate.
a. Compute the relative risk ratings for each asset/vulnerability pair. Show your work.
b. Which asset/vulnerability needs to be examined first for implementing an additional control?
c. Which asset/vulnerabilities have residual risk?

Answers: 3

Show answers

Other questions on the subject: Computers and Technology

Computers and Technology, 23.06.2019 18:30, bsept1018

Report all segments of identity by descent longer than 20 polymorphisms between pairs of individuals in the following cohort of 15 individuals across 49 polymorphisms: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 numeric input 2 points possible (graded) you have 2 attempts to complete the assignment below. for example if the sequence is "bcd", which occurs in "abcdef" , the starting point would be 2 (b), and the finishing point would be 4(d). individuals 7,10 between positions

Answers: 1

continue

Computers and Technology, 24.06.2019 03:00, paguy12

What is one potential problem associated with an organization purchasing new technology early in its lifecycle

Answers: 1

continue

Computers and Technology, 24.06.2019 21:40, justintintran

Assume you need to test a function named inorder. the function inorder receives three int arguments and returns true if and only if the arguments are in non-decreasing order: that is, the second argument is not < the first and the third is not < the second. write the definition of driver function testinorder whose job it is to determine whether inorder is correct. so testinorder returns true if inorder is correct and returns false otherwise. for the purposes of this exercise, assume inorder is an expensive function call, so call it as few times as possible!

Answers: 1

continue

Computers and Technology, 24.06.2019 22:00, sierrawalk2283

True or false technology is often discovered by accident

Answers: 2

continue

Do you know the correct answer?

Given the data below that was collected during a risk identification and assessment initiative, answ...