Note: This assignment will be checked for plagiarism by the professor and this assignment should be a minimum of 600 words without references and should be in APA format and have to include at least two references. Please find the below attachment and refer to it to prepare the answer. And I need the answer by Tuesday evening 06:00 pm EST. (04/21/2020).

Length:  Minimum of 600 words

Question:

 

Briefly respond to all the following questions. Make sure to explain and backup your responses with facts and examples. This assignment should be in APA format and have to include at least two references.

At the end of your textbook on page 385, the author mentions several “encouraging security architecture developments”:

•  The Open Group has created an Enterprise Security Architect certification. One of their first certified architects has subsequently created a few enterprise security reference architectures.
• The SANS Institute hosted three “What Works in Security Architecture” Summits.
• The IEEE initiated a Center for Secure Design. The Center published a “Top 10 Design Flaws” booklet.
• Adam Shostack published Threat Modeling: Designing for Security, and renown threat modeler, John Steven, has told me that he’s working on his threat modeling book.
• Anurag Agrawal of MyAppSecurity has been capturing well-known attack surfaces and their technical mitigations within his commercial threat modeling tool, “Threat Modeler.”

Choose 2 or 3 three items from the list above and provide an update to their development status.  Make sure you provide some background on your selection and then provide the update of the development.

Your final research paper assignment is to write a research paper that explains how defense-in-depth (chapter 6) and awareness (chapter 10) are complementary techniques to detect emerging threats and strengthen countermeasures.

Paper MUST address:  How defense-in-depth (chapter 6) and awareness (chapter 10) are complimentary techniques to detect emerging threats and strengthen countermeasures

To complete this assignment, upload a Microsoft Word document (.doc or .docx) that contains your complete paper. Remember that your list of sources must be in APA format, and you MUST cite your reference in the body of the paper using APA in-text citation format. A source is any paper or article that you will reference in your paper. If you need more information on APA format (for references list AND in-text citations), visit this reference: https://owl.english.purdue.edu/owl/resource/560/01/

This assignment must be YOUR OWN WORK!  This is an individual assignment. Plagiarism detected in your work will result in a grade of zero for the entire paper. (Originality report should be at least 35% or less.)

Here are a few details about the overall research paper Please look at the attached rubric for details on how the paper will be graded.

You must reference two (2) peer-reviewed articles or papers that support your thesis statement. One of these papers may be from your annotated bibliography assignment. The final paper must be at least 500 words in length. (DO NOT exceed 500 words by a material amount. Excessive words or too many references will NOT impress me.)

So in summary, here are the research paper requirements:

• 2 peer reviewed resources (articles or papers) (1 may be from your annotated bibliography assignment)
• Paper MUST address:  How defense-in-depth (chapter 6) and awareness (chapter 10) are complimentary techniques to detect emerging threats and strengthen countermeasures
• Cited sources must directly support your paper (i.e. not incidental references)
• At least 500 words in length (but NOT longer than 1000 words)
• Originality report should be at least 35% or less.

Admin Notes:

APA Paper Formatting guidelines

1.Title page

2.Abstract

3.Body

4.Text citation and references

Additionally

-As usual, the text is typed on standard white paper that has familiar parameters of 8.5″ x 11″.

-The APA style requires using an easy to read font and recommends using a 12pt Times New Roman font.

-Double spacing is required on both the title page and throughout the paper.

-Margins should be 1″ concerning all sides of the page.

-Paragraph indentation should be set to one half inch from the left side of the page.

-The unique aspect is in creating a special page header that consists of the page number and the running head as typed on the title page in all capitals.

For more information on APA format consult APA, 6th Edition American Psychological Association, also  The OWL at Purdue is a good resource (see related link) on APA format.

https://owl.english.purdue.edu/owl/resource/560/01/

Help with peer reviewed papers or articles

If you are not sure how to identify peer reviewed papers or articles, please visit the following resources:

http://diy.library.oregonstate.edu/using-google-scholar-find-peer-reviewed-articles

http://libguides.gwu.edu/education/peer-reviewed-articles

Blog Post On Internet And Security Related To All The Bullets Below.

To complete this Assignment:

1. Use the search engine of your choice, search for “free blog tool.”
2. Select the tool that you feel is most appropriate for the task.
3. Sign up for a free account. (Note: if you already have a blog account, you may use that.)
4. Choose an appropriate background or theme.
5. Give your blog an appropriate name.
6. Create a post that contains a short paragraph on each of the following topics:
7. Brief history of the Internet and security issues.
8. Methods of communication
   1. Social networking
   2. Email
   3. Wikis and blogs
   4. Podcasts and webcasts
   5. Streaming media
9. E-commerce and m-commerce
10. Include a relevant image in each of your blog posts. Make sure that the pictures are free to use and share. (Hint: Use Google Advanced Image Search. Under “License,” choose “Free to use and share.”)
11.  Provide a direct link for each image you use.

Imagine you are an Information Security consultant for a small college registrar’s office consisting of the registrar and two assistant registrars, two student workers, and one receptionist. The office is physically located near several other office spaces. The assistant registrars utilize mobile devices over a wireless network to access student records, with the electronic student records being stored on a server located in the building. Additionally, each registrar’s office has a desktop computer that utilizes a wired network to access the server and electronic student records. The receptionist station has a desktop computer that is used to schedule appointments, but cannot access student records. In 1974, Congress enacted the Family Educational Rights and Privacy Act (FERPA) to help protect the integrity of student records. The college has hired you to ensure technical safeguards are appropriately designed to preserve the integrity of the student records maintained in the registrar’s office.

Write a three to five page paper in which you:

1. Analyze proper physical access control safeguards and provide sound recommendations to be employed in the registrar’s office.
2. Recommend the proper audit controls to be employed in the registrar’s office.
3. Suggest three logical access control methods to restrict unauthorized entities from accessing sensitive information, and explain why you suggested each method.
4. Analyze the means in which data moves within the organization and identify techniques that may be used to provide transmission security safeguards.
5. Use at least three quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Find an article on cybersecurity and write about 250 words about that article. References must be contained in the paper and no plagiarism. Must be a peer-reviewed article published within the last 5 years and located on Google Scholar.

Project 3: Government Mobile Apps Security Assessment & Strategy

For this research report you will research and then present your findings about cybersecurity issues specific to mobile applications. You will also provide a set of recommendations for best practices (your “strategy”) for security architectures and designs for mobile apps.

Mobile applications are important because they allow citizens and other stakeholders to access information and services through the federal government’s digital government initiatives. For more information about requirements to provide mobile friendly websites and mobile apps see this blog posting from GSA.GOV https://www.gsa.gov/blog/2018/08/07/collaborating-for-better-design-technology-and-user-experience and the text of the Connected Government Act Public Law 115-114 https://www.congress.gov/115/plaws/publ114/PLAW-115publ114.pdf

Note: this assignment requires inclusion of diagrams or graphics that help to explain the information provided in your analysis and strategy. You are not required to create these on your own. Instead, you should look for useful graphics/diagrams in the readings and use those to support your work. You must cite the source for each piece of artwork used in your project. Put a figure caption under the diagram or chart and then place the in-text citation at the end of the caption. See the example at the end of this file.

Research:

1. Review the Weekly readings.
2. Review recent changes in US Laws regarding the requirement for mobile friendly government websites.
   114. https://www.congress.gov/115/plaws/publ114/PLAW-115publ114.pdf
   115. https://www.nextgov.com/ideas/2018/01/what-digital-government-cx-pros-should-know-about-connected-government-act/144987/
   116. https://www.fedscoop.com/bill-mobile-friendly-government-websites-cruises-senate/
3. Research the “best” of federal mobile apps to see examples of the type of apps that other agencies have created in the past.
   1. 19 of the Coolest Government Mobile Apps https://www.govloop.com/community/blog/cool-gov-mobile-apps/
   2. 10 Most Entertaining Government Mobile Apps https://www.govloop.com/community/blog/10-most-entertaining-government-mobile-apps/
   3. The Best Government Mobile Apps for Business…and Your Office https://www.govloop.com/community/blog/best-government-mobile-apps-business-office/
   4. 3 Innovative Ways Agencies are Leveraging Mobile Apps http://fedscoop.com/great-government-mobile-apps
4. Research the federal government’s perspective on mobile app security architectures and design recommendations. Here are three sources to help you get started:
   1. App Developers: Start with Security
      https://www.ftc.gov/tips-advice/business-center/guidance/app-developers-start-security
   2. Mobile Security Reference Architecture
      https://s3.amazonaws.com/sitesusa/wp-content/uploads/sites/1151/downloads/2013/05/Mobile-Security-Reference-Architecture.pdf
   3. How to build a secure mobile app: 10 tips
      https://www.techrepublic.com/article/how-to-build-a-secure-mobile-app-10-tips/
5. Research industry recommendations for mobile app security. Begin with the following sources:
   1. OWASP Mobile Security Project https://www.owasp.org/index.php/OWASP_Mobile_Security_Project
   2. Top 10 Mobile Risks (click on tab) https://www.owasp.org/index.php/OWASP_Mobile_Security_Project#tab=Top_10_Mobile_Risks
   3. Mobile app security: Always keep the back door locked http://arstechnica.com/security/2013/02/mobile-app-security-always-keep-the-back-door-locked/
6. Find five or more best practice recommendations for ensuring the security of mobile apps. These recommendations must include security for the platform (mobile device), the data on the device, and the transmission path between the device and the mobile application server. Your focus should be upon recommendations that can be implemented as part of a strategy for reducing risk.

Write:

Write a five to seven page report in which you summarize your research and present your “best practices” based strategy for reducing risk and ensuring security for government provided mobile apps and their users. You should focus upon clarity and conciseness more than length when determining what content to include in your paper. At a minimum, your report must include the following:

1. An introduction or overview of mobile apps for digital government. Include 5 or more examples of mobile apps recognized as being innovative or “best of category” applications for delivering government information and services to mobile devices. This introduction should be suitable for an executive audience.
2. A separate section in which you discuss the federal government’s requirements and recommendations for mobile app security architectures and the associated design recommendations. Write this section for non-technical managers; you will need to translate from tech-speak to manager-speak. Include at least three diagrams or pictures in this section and remember to include the appropriate in-text citations for the source (append to the figure caption).
3. A separate section in which you discuss industry’s recommendations for security architectures and risk reduction for mobile app security. Write this section for non-technical managers; you will need to translate from tech-speak to manager-speak. Include at least three diagrams or pictures in this section and remember to include the appropriate in-text citations for the source (append to the figure caption).
4. A section in which you present 5 or more best practice recommendations for building security (the confidentiality, integrity, availability, authenticity, and non-repudiation for Mobile Applications) into mobile applications used to deliver government information and services. Present these strategies as recommendations for reducing risk.
5. A separate section in which you summarize your research and recommendations.

“Security Mechanisms” Please respond to the following:

• Use the Internet and Strayer Library to research (within the past 1 [1] year) various techniques that an organization uses to determine if someone has breached its security. Next, examine various techniques that an organization can use to determine whether or not it has been the object of a security attack. Determine which method is the most effective. Provide a rationale for your response.
• Use the Internet to research a recent (within the past [1] year) cybersecurity / hacking attack on an organization. Next, describe (1) how the company discovered the attack and (2) the major repercussions of the attack. Recommend the three (3) most appropriate methods to prevent these types of attacks. Provide rationale for your response.