SOLUTION MANUAL - Whitman and Mattord, Principles of Information Security 7th Edition, Module 1 - 12, Complete Latest Version

Instructor Manual Principles of Information Securi
gi gi gi gi gigi




ty, 7th Edition by Michael E.Whitman
gi gi gi gi gi

,InstructorManual gi




Whitman and Mattord, Principles of Information Security 7e, ISBN 978-0-357-50643-
gi gi gi gi gi gi gi gi gi


1; Module 1: Introduction to Information Security
gi gi gi gi gi gi




Table of Contents gi gi




Purpose and Perspective of the Module ...................................................................................... 2
gi gi gi gi gi



Cengage Supplements ................................................................................................................ 2
gi



Module Objectives ....................................................................................................................... 2
gi



Complete List of Module Activities and Assessments................................................................... 2
gi gi gi gi gi gi



Key Terms................................................................................................................................... 3
gi



What's New in This Module ......................................................................................................... 4
gi gi gi gi



Module Outline ............................................................................................................................ 4
gi



Discussion Questions ................................................................................................................ 15
gi



Suggested Usage for Lab Activities ........................................................................................... 16
gi gi gi gi



Additional Activities and Assignments ........................................................................................ 17
gi gi gi



Additional Resources ................................................................................................................. 17
gi



Cengage Video Resources ........................................................................................................................ 17
gi gi



Internet Resources................................................................................................................................... 17
gi



Appendix ................................................................................................................................... 18
Grading Rubrics ....................................................................................................................................... 18
gi

,Purpose and Perspective of the Module gi gi gi gi gi




The first module of the course in information security provides learners the foundational knowle
gi gi gi gi gi gi gi gi gi gi gi gi gi


dge to become well versed in the protection systems of any size need within an organization to
gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi


day. The module begins with fundamental knowledge of what information security is and the ho
gi gi gi gi gi gi gi gi gi gi gi gi gi gi


w computer security evolved into what we know now as information security today. Additionally,
gi gi gi gi gi gi gi gi gi gi gi gi gi


learners will gain knowledge on the how information security can be viewed either as an art or
gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi


a science and why that is the case.
gi gi gi gi gi gi gi




Cengage Supplements gi




The following product-
gi gi


level supplements are available in the Instructor Resource Center and provide additional inform
gi gi gi gi gi gi gi gi gi gi gi gi


ation that may help you in preparing your course:
gi gi gi gi gi gi gi gi



 PowerPoint slides gi


 Test banks, available in Word, as LMS-ready files, and on the Cognero platform
gi gi gi gi gi gi gi gi gi gi gi gi


 MindTap Educator Guide gi gi


 Solution and Answer Guide gi gi gi


 This instructor‘s manual
gi gi




Module Objectives gi




The following objectives are addressed in this module:
gi gi gi gi gi gi gi



1.1 Define information security. gi gi



1.2 Discuss the history of computer security and explain how it evolved into information
gi gi gi gi gi gi gi gi gi gi gi gi


security.
gi



1.3 Define key terms and critical concepts of information security.
gi gi gi gi gi gi gi gi



1.4 Describe the information security roles of professionals within an organization.
gi gi gi gi gi gi gi gi gi




Complete List of Module Activities and Assessments gi gi gi gi gi gi




For additional guidance refer to the MindTap Educator Guide.
gi gi gi gi gi gi gi gi




Module gi PPT slide gi Activity/Assessment Duration
Objective
2 Icebreaker: Interview Simulation gi gi 10 minutes gi


1.1–1.2 19–20 Knowledge Check Activity 1 gi gi gi 2 minutes
gi


1.3 34–35 Knowledge Check Activity 2 gi gi gi 2 minutes
gi


1.4 39–40 Knowledge Check Activity 3 gi gi gi 2 minutes
gi


1.1–1.4 MindTap Module 01 Review Questions gi gi gi 30–40 minutes gi


1.1 – 1.4 gi gi MindTap Module 01 Case Exercises gi gi gi 30 minutes gi


1.1 – 1.4 gi gi MindTap Module 01 Exercises gi gi 10–30 minutes per gi gi


question; 1+ hour pe gi gi gi


r module
gi


1.1 – 1.4 gi gi MindTap Module 01 Security for Life gi gi gi gi 1+ hour gi


1.1 – 1.4 gi gi MindTap Module 01 Quiz gi gi 10–15 minutes gi



[return to top] gi gi

, Key Terms gi




In order of use:
gi gi gi



computer security: In the early days of computers, this term specified the protection of the ph
gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi


ysical location and assets associated with computer technology from outside threats, but it later
gi gi gi gi gi gi gi gi gi gi gi gi gi gi


came to represent all actions taken to protect computer systems from losses.
gi gi gi gi gi gi gi gi gi gi gi



security: A state of being secure and free from danger or harm as well as the actions taken to
gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi


make someone or something secure.
gi gi gi gi



information security: Protection of the confidentiality, integrity, and availability of information
gi gi gi gi gi gi gi gi gi gi gi


assets, whether in storage, processing, or transmission, via the application of policy, education,
gi gi gi gi gi gi gi gi gi gi gi gi g


training and awareness, and technology.
i gi gi gi gi



network security: A subset of communications security; the protection of voice and data netwo
gi gi gi gi gi gi gi gi gi gi gi gi gi


rking components, connections, and content.
gi gi gi gi



C.I.A. triad: The industry standard for computer security since the development of the mainfra
gi gi gi gi gi gi gi gi gi gi gi gi gi


me; the standard is based on three characteristics that describe the attributes of information tha
gi gi gi gi gi gi gi gi gi gi gi gi gi gi


t are important to protect: confidentiality, integrity, and availability.
gi gi gi gi gi gi gi gi



confidentiality: An attribute of information that describes how data is protected from disclosure
gi gi gi gi gi gi gi gi gi gi gi gi


or exposure to unauthorized individuals or systems.
gi gi gi gi gi gi gi



personally identifiable information (PII): Information about a person‘s history, background,
gi gi gi gi gi gi gi gi gi gi


and attributes that can be used to commit identity theft that typically includes a person‘s name,
gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi


address, Social Security number, family information, employment history, and financial informa
gi gi gi gi gi gi gi gi gi gi


tion.
integrity: An attribute of information that describes how data is whole, complete, and uncorrupt
gi gi gi gi gi gi gi gi gi gi gi gi gi


ed.
availability: An attribute of information that describes how data is accessible and correctly form
gi gi gi gi gi gi gi gi gi gi gi gi gi


atted for use without interference or obstruction.
gi gi gi gi gi gi



accuracy: An attribute of information that describes how data is free of errors and has the value
gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi


that the user expects.
gi gi gi



authenticity: An attribute of information that describes how data is genuine or original rather th
gi gi gi gi gi gi gi gi gi gi gi gi gi gi


an reproduced or fabricated.
gi gi gi



utility: An attribute of information that describes how data has value or usefulness for an end p
gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi


urpose.
possession: An attribute of information that describes how the data‘s ownership or control is le
gi gi gi gi gi gi gi gi gi gi gi gi gi gi


gitimate or authorized. gi gi



McCumber Cube: A graphical representation of the architectural approach used in computer
gi gi gi gi gi gi gi gi gi gi gi gi


and information security that is commonly shown as a cube composed of 3×3×3 cells, similar to
gi gi gi gi gi gi gi gi gi gi gi gi gi gi gi g


a Rubik‘s Cube.
i gi gi



information system: The entire set of software, hardware, data, people, procedures, and netw
gi gi gi gi gi gi gi gi gi gi gi gi


orks that enable the use of information resources in the organization.
gi gi gi gi gi gi gi gi gi gi



physical security: The protection of material items, objects, or areas from unauthorized access
gi gi gi gi gi gi gi gi gi gi gi gi gi


and misuse. gi