I’m studying for my Computer Science class and don’t understand how to answer this. Can you help me study?

You are to answer 5 out of the 20Q Create a MS Word document, name the file Ch1_YourLastName and Remember yes or no answers will not work, the minimum requirement for each question is 1 paragraph (at least 4 sentences). More is welcome if needed. Be sure to number the questions you are answering for example:






1. What is the difference between a threat agent and a threat?

2. What is the difference between vulnerability and exposure?

3. How is infrastructure protection (assuring the security of utility services) related to information security?

4. What type of security was dominant in the early years of computing?

5. What are the three components of the C.I.A. triangle? What are they used for?

6. If the C.I.A. triangle is incomplete, why is it so commonly used in security?

7. Describe the critical characteristics of information. How are they used in the study of computer security?

8. Identify the six components of an information system. Which are most directly affected by the study of computer security? Which are most commonly associated with its study?

9. What system is the father of almost all modern multiuser systems?

10. Which paper is the foundation of all subsequent studies of computer security?

11. Why is the top-down approach to information security superior to the bottom-up approach?

12. Why is a methodology important in the implementation of information security? How does a methodology improve the process?

13. Which members of an organization are involved in the security system development life cycle? Who leads the process? 14. How can the practice of information security be described as both an art and a science? How does security as a social science influence its practice?

15. Who is ultimately responsible for the security of information in the organization?

16. What is the relationship between the MULTICS project and the early development of computer security?

17. How has computer security evolved into modern information security? 18. What was important about Rand Report R-609?

19. Who decides how and when data in an organization will be used or controlled? Who is responsible for seeing that these wishes are carried out?

20. Who should lead a security team? Should the approach to security be more managerial or technical?

Here is pdf copy for this chapter….