What are the six security levels? Provide examples of threat categories, attacker profiles, and types of attacks.

What will be an ideal response?

---

The six security levels are physical security, network security, application security, file security, user security, and procedural security. The following is a list of issues that pertain to each security level:

Physical Security Issues
• Computer room security
Biometric scanning systems
Motion sensors
• Servers and desktop computers
• Keystroke loggers
• Tamper-evident cases
• BIOS-level passwords; boot-level passwords; power-on passwords
• Notebook computers
Universal Security Slot (USS)
Tracking software
Stringent password requirements
Account lockout thresholds

Network Security Issues
• Encrypting network traffic
Encryption vs. plain text]
Public key encryption
Wi-Fi Protected Access (WPA and WPA2)
Wired Equivalent Privacy (WEP)
• Private networks
Tunnels
• Virtual private networks
• Ports and services
Destination ports
Services
Port scans
Denial of service attacks
• Firewalls
Protocols that control traffic

Application Security Issues
• Services
Security holes
Permissions
• Input validation
• Patches and updates

File Security Issues
• Permissions
• User groups

User Security Issues
• Identity management
• Password protection
• Social engineering
• User resistance

Procedural Security Issues
• Managerial policies and controls
• Corporate culture that stresses security
• Define how particular tasks are to be performed
• Employee responsibility for security
• Dumpster diving
• Use of paper shredders
• Classification levels.
An attack is a hostile act that targets the system, or the company itself. Thus, an attack might be launched by a disgruntled employee, or a hacker who is 10,000 miles away. Attackers break into a system to cause damage, steal information, or gain recognition, among other reasons. Attackers typically can be identified by one or more the profiles shown in Figure 12-21.