CISA Type Question 08-2608 on Firewall and OSI Model
An IS Auditor while auditing an IS setup suggested implementation of Application Gateway instead of existing Packet Filter Firewall.
Which could be the best reason for the same ?
1. Application gateway works on almost all seven layers of OSI Model where as packet filtering router/firewall works on layer-3 of OSI model only.
2. Application gateway works on application layer of OSI Model where as packet filtering router/firewall works on layer-3 of OSI model only.
3. Application gateway works on almost all 7 layers of OSI Model where as packet filtering router/firewall works on layer-1, Layer-2 and layer-3 of OSI model.
4. Application gateway works on application layer of OSI Model where as packet filtering router/firewall works on layer-1, Layer-2 and layer-3 of OSI model.
Answer to CISA Type question 08-2008 on Good Password Policy
Let us see each of the findings separately
1. Password complexity and length is always desirable which will make the work of guessing acccount/hacking very difficult.
2. Default username and password for DBMS, application, Operating system should not be used. Even username should be changed.
3. Password rotation should be mandatory
4. Password life span should be defined as per need
5. This is true for many operating system. All unix based operating systems store password in a file. That file should be encrypted/protected.
6. This is true about most of the new generation Database Management System where password is encrypted by some algorithm.
So, the correct answer is 2. All except 2.
0 comments:
Post a Comment