SOLUTION MANUAL - Whitman and Mattord, Principles of Information Security 7th Edition, Module 1 - 12, Complete Latest Version

Instructor Manual Principles of Information Securi
ju ju ju ju juju




ty, 7th Edition by Michael E.Whitman
ju ju ju ju ju

,InstructorManual u
j




Whitman and Mattord, Principles of Information Security 7e, ISBN 978-0-357-50643-
ju ju ju ju ju ju ju ju ju


1; Module 1: Introduction to Information Security
ju ju ju ju ju ju




Table of Contents ju ju




Purpose and Perspective of the Module ...................................................................................... 2
ju ju ju ju ju



Cengage Supplements ................................................................................................................ 2
ju



Module Objectives ....................................................................................................................... 2
ju



Complete List of Module Activities and Assessments................................................................... 2
ju ju ju ju ju ju



Key Terms................................................................................................................................... 3
ju



What's New in This Module ......................................................................................................... 4
ju ju ju ju



Module Outline ............................................................................................................................ 4
ju



Discussion Questions ................................................................................................................ 15
ju



Suggested Usage for Lab Activities ........................................................................................... 16
ju ju ju ju



Additional Activities and Assignments ........................................................................................ 17
ju ju ju



Additional Resources ................................................................................................................. 17
ju



Cengage Video Resources ........................................................................................................................ 17
ju ju



Internet Resources .................................................................................................................................. 17
ju



Appendix ................................................................................................................................... 18
Grading Rubrics ....................................................................................................................................... 18
ju

,Purpose and Perspective of the Module ju ju ju ju ju




The first module of the course in information security provides learners the foundational knowle
ju ju ju ju ju ju ju ju ju ju ju ju ju


dge to become well versed in the protection systems of any size need within an organization to
ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju


day. The module begins with fundamental knowledge of what information security is and the ho
ju ju ju ju ju ju ju ju ju ju ju ju ju ju


w computer security evolved into what we know now as information security today. Additionally,
ju ju ju ju ju ju ju ju ju ju ju ju ju


learners will gain knowledge on the how information security can be viewed either as an art or
ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju


a science and why that is the case.
ju ju ju ju ju ju ju




Cengage Supplements ju




The following product-
ju ju


level supplements are available in the Instructor Resource Center and provide additional inform
ju ju ju ju ju ju ju ju ju ju ju ju


ation that may help you in preparing your course:
ju ju ju ju ju ju ju ju



 PowerPoint slides ju


 Test banks, available in Word, as LMS-ready files, and on the Cognero platform
ju ju ju ju ju ju ju ju ju ju ju ju


 MindTap Educator Guide ju ju


 Solution and Answer Guide ju ju ju


 This instructor‘s manual
ju ju




Module Objectives ju




The following objectives are addressed in this module:
ju ju ju ju ju ju ju



1.1 Define information security. ju ju



1.2 Discuss the history of computer security and explain how it evolved into information
ju ju ju ju ju ju ju ju ju ju ju ju j


security.
u



1.3 Define key terms and critical concepts of information security.
ju ju ju ju ju ju ju ju



1.4 Describe the information security roles of professionals within an organization.
ju ju ju ju ju ju ju ju ju




Complete List of Module Activities and Assessments ju ju ju ju ju ju




For additional guidance refer to the MindTap Educator Guide.
ju ju ju ju ju ju ju ju




Module ju PPT slide ju Activity/Assessment Duration
Objective
2 Icebreaker: Interview Simulation ju ju 10 minutes ju


1.1–1.2 19–20 Knowledge Check Activity 1 ju ju ju 2 minutes
ju


1.3 34–35 Knowledge Check Activity 2 ju ju ju 2 minutes
ju


1.4 39–40 Knowledge Check Activity 3 ju ju ju 2 minutes
ju


1.1–1.4 MindTap Module 01 Review Questions ju ju ju 30–40 minutes ju


1.1 – 1.4 ju ju MindTap Module 01 Case Exercises ju ju ju 30 minutes ju


1.1 – 1.4 ju ju MindTap Module 01 Exercises ju ju 10–30 minutes per ju ju


question; 1+ hour pe ju ju ju


r module
ju


1.1 – 1.4 ju ju MindTap Module 01 Security for Life ju ju ju ju 1+ hour ju


1.1 – 1.4 ju ju MindTap Module 01 Quiz ju ju 10–15 minutes ju



[return to top] ju ju

, Key Terms ju




In order of use:
ju ju ju



computer security: In the early days of computers, this term specified the protection of the ph
ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju


ysical location and assets associated with computer technology from outside threats, but it later
ju ju ju ju ju ju ju ju ju ju ju ju ju ju


came to represent all actions taken to protect computer systems from losses.
ju ju ju ju ju ju ju ju ju ju ju



security: A state of being secure and free from danger or harm as well as the actions taken to
ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju


make someone or something secure.
ju ju ju ju



information security: Protection of the confidentiality, integrity, and availability of information
ju ju ju ju ju ju ju ju ju ju ju


assets, whether in storage, processing, or transmission, via the application of policy, education,
ju ju ju ju ju ju ju ju ju ju ju ju j


utraining and awareness, and technology. ju ju ju ju



network security: A subset of communications security; the protection of voice and data netwo
ju ju ju ju ju ju ju ju ju ju ju ju ju


rking components, connections, and content.
ju ju ju ju



C.I.A. triad: The industry standard for computer security since the development of the mainfra
ju ju ju ju ju ju ju ju ju ju ju ju ju


me; the standard is based on three characteristics that describe the attributes of information tha
ju ju ju ju ju ju ju ju ju ju ju ju ju ju


t are important to protect: confidentiality, integrity, and availability.
ju ju ju ju ju ju ju ju



confidentiality: An attribute of information that describes how data is protected from disclosure
ju ju ju ju ju ju ju ju ju ju ju ju j


or exposure to unauthorized individuals or systems.
u ju ju ju ju ju ju



personally identifiable information (PII): Information about a person‘s history, background,
ju ju ju ju ju ju ju ju ju ju


and attributes that can be used to commit identity theft that typically includes a person‘s name,
ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju


address, Social Security number, family information, employment history, and financial informa
ju ju ju ju ju ju ju ju ju ju


tion.
integrity: An attribute of information that describes how data is whole, complete, and uncorrupt
ju ju ju ju ju ju ju ju ju ju ju ju ju


ed.
availability: An attribute of information that describes how data is accessible and correctly form
ju ju ju ju ju ju ju ju ju ju ju ju ju


atted for use without interference or obstruction.
ju ju ju ju ju ju



accuracy: An attribute of information that describes how data is free of errors and has the value
ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju


that the user expects.
ju ju ju



authenticity: An attribute of information that describes how data is genuine or original rather th
ju ju ju ju ju ju ju ju ju ju ju ju ju ju


an reproduced or fabricated.
ju ju ju



utility: An attribute of information that describes how data has value or usefulness for an end p
ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju


urpose.
possession: An attribute of information that describes how the data‘s ownership or control is le
ju ju ju ju ju ju ju ju ju ju ju ju ju ju


gitimate or authorized. ju ju



McCumber Cube: A graphical representation of the architectural approach used in computer
ju ju ju ju ju ju ju ju ju ju ju ju


and information security that is commonly shown as a cube composed of 3×3×3 cells, similar to
ju ju ju ju ju ju ju ju ju ju ju ju ju ju ju j


a Rubik‘s Cube.
u ju ju



information system: The entire set of software, hardware, data, people, procedures, and netw
ju ju ju ju ju ju ju ju ju ju ju ju


orks that enable the use of information resources in the organization.
ju ju ju ju ju ju ju ju ju ju



physical security: The protection of material items, objects, or areas from unauthorized access
ju ju ju ju ju ju ju ju ju ju ju ju ju


and misuse. ju