Answer:
Answer explained below
Explanation:
1. confidentiality prevents disclosure,availability prevents disruption,integrity prevents accepting wrong data. availability and integrity will prevent disruption. the possessed data if wrongly held then its availability is affected. if actual data is impersonated then integrity is affected.
2. computers are invented by humans. they are programmed by humans. humans may tend to make mistakes and may fail to take care of all real-time possibilities. hence may not be perfectly secure
3.a. o-->owner r-->read w-->write x-->execute
alicerc babrc cyndyrc
alice ox
bob rr
cyndy
3b alicerc babrc cyndyrc
alice ox r r
bob ox
cyndy r rw orwx
4. Integrity means that information is correct, and that data has not been corrupted in any way. integrity ensures that information has not been compromised, that the information is valid and is a result of authenticated and controlled activities. If we don’t have any way to confirm and ensure that this is true, we can’t guarantee confidentiality.
5.a.discretionary access control
Since users can assign and modify permissions that they possess, access control is discretionary.
5.b.originator access control
This would be originator access control. This is because if I am the author of the memorandum I am
the one who can say my information can be distributed, no one else can.
5.c.mandatory access control
The system controls access and an individual cannot change that. There is a somewhat tricky scenario
though that could possibly make this discretionary; if there is an owner of the 'military facility' and this person also had the ability to promote military personnel to 'general'. In this way the facility owner could grant access to their facility.
