Description

Key Assignment

• Security Management Document
  • Use Word
  • Title page
    • Course number and name
    • Project name
    • Your name
    • Date
  • Table of Contents (TOC)
    • Use an autogenerated TOC.
    • This should be on a separate page.
    • This should be a maximum of 3 levels deep.
    • Be sure to update the fields of the TOC so that it is up-to-date before submitting your project.
  • Section headings
    • Week 1: Introduction to Information Security
      • This section will describe the organization and establish the security model that it will use.
    • Week 2: Security Assessment
      • This section will focus on risks that are faced by organizations and how to deal with or safeguard against them.
    • Week 3: Access Controls and Security Mechanisms
      • This section examines how to control access and implement sound security controls to ensure restricted access to data.
    • Week 4: Security Policies, Procedures, and Regulatory Compliance
      • This section will focus on the protection of data and regulatory requirements that the company needs to implement.
    • Week 5: Network Security
      • This section combines all of the previous sections and gives the opportunity to examine the security mechanisms that are needed at the network level.

• Include cover, outline, abstract, and Reference pages. (FINAL PROJECT MUST INCLUDE THIS)

The case study company has expressed a desire to have a secure company-wide network infrastructure. Because the network has to be re-evaluated from the beginning, the company wants to ensure that the new network has as many reasonable security controls and mechanisms in place. What solutions can you propose to support these initiatives? Create the following section for Week 5:

• Week 5: Network Security
  • Propose an appropriate network infrastructure that offers sound security practices for the existing intranet and the new proposed expansion.
  • Create and describe a diagram of the network architecture, discussing how it can meet the goals of the company.
  • Describe the access controls and how the company can ensure that devices and the topology are effective and working to protect the company infrastructure.
  • Review and describe the need for intrusion detection systems (IDSs) and intrusion prevention systems (IPSs) based on research of the latest elements of intrusion detection and prevention available.
  • Discuss how they can effectively be used in a network operations setting.
  • Ensure that there is an appropriate use of the IDSs and IPSs in the network diagram.
• Section 5 should be 4–5 pages long (2–3 pages of network topology, 1–2 pages of IPSs and IDSs).
• Name the document “CS651_FirstnameLastname_Final.doc.”

——- THIS IS ALSO PART OF THE FINAL PROJECT ————-

• As a final deliverable to the management team, create a Power Point presentation that summarizes the solutions outlined in the Key Assignment template. In addition, describe why the proposed solution is the correct method or mechanism to be implemented. Remember that the presentation is for the management team and should contain the appropriate level of detail.

Text book: Cloud Computing ISBN: 9781284199017 Dr. Kris Jamsa, Jones & Bartlett Learning, Publication Date: 2012-03-22

Chapter 9 identified the advantages and disadvantages of using a cloud-based provider.  Additionally, you read about common security threats to cloud-based environments.  

Question: Your task this week is to write a research paper that defends the following statements and provide one real-world example for each statement: 

• A difficult security threat to mitigate is a malicious employee.  
• A cloud-provider’s data center is still at risk from natural disasters such as floods, fire, and earthquakes.  

Research Paper Requirements:

• The paper should be four pages long, not including the title and reference pages. 
• Use Times New Roman, size 12 font throughout the paper. 
• Apply APA 7th edition style and include three major sections: the Title Page, Main Body, and References.
• A minimum of two scholarly journal articles (besides your textbook) are required.
• Writing should demonstrate a thorough understanding of the materials and address all required elements. 
• Writing should use exceptional language that skillfully communicates meaning to the readers with clarity and fluency and is virtually error-free. 

Note: plagiarism check required, APA7 format, include References, within 8hrs 

Q1# Discssuion

Diffusion models are one of the most influential generative modeling techniques for image generation and, across many benchmarks, they outperform state-of-the-art GANs. 

1. Explain your opinion on the reasons for the popularity of diffusion models.
2. What is the real difference between diffusion models and GANs? 

Q2# Test 1: ChatGPT Training

ChatGPT is a tool that allows users to interact with their suite of large language models through a conversational interface. Describe the training process for ChatGPT and suggest which tool/network would you use for each part of the training process and justify your suggestion: 

1. Supervised fine-tuning / training tool / explanation
2. Reward modeling / training tool / explanation
3. Reinforcement learning / training tool / explanation 

The “Tallinn Manual 2.0 on the International Law Applicable to Cyber Operations” (1) is one of the most comprehensive studies on the applicability of international law to cyberspace conflict, and thus cyber operations. In this study, multiple legal experts derived 154 rules from existing law. Several opinions on these rules were divided, so the interpretation of the rules remains open for discussion.

In this paper make sure you evaluate Rules 4 and 9.
For each RULE (4 & 9):
Describe the laws and rules that govern sovereignty
Explain why a state would want to collect intelligence, why it might be required ethically, and whether cyber operations that collect detailed intelligence on another state violate its sovereignty
Describe the laws and rules that govern territorial jurisdiction
Explain whether cyber operations that collect detailed intelligence on another state may exercise jurisdiction over data that traverses its territory, citing specific,

Write a paper in which you:
Discuss at least three rationales for performing an information systems security risk assessment.
Explain the differences in quantitative, qualitative, and hybrid information systems risk assessment and illustrate the conditions under which each type is most applicable.
Describe the type of information that is collected to perform an effective information systems security risk assessment. Include at least three different types. Fully describe each and justify why you made your selections.
Describe at least five common tasks that should be performed in an information systems security risk assessment.