Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

1. Read the Bellingham, Washington, Control System Case and then answer the foll

ID: 3567005 • Letter: 1

Question

1. Read the Bellingham, Washington, Control System Case and then answer the following question:

What do you think could/should have been done to prevent this incident (relate your answer to cyber security)?

2. Read Well Fargo Payment Card Industry (PCI) Data Security Standard (DSS), Answer the following questions:

a) How does the bank card policy comply with the standard?

b) How does the bank card policy not comply with the standard?

c) What recommendations would you make to close the gaps between the standard and the policy?

d) Should the government force banks/credit unions to comply with all aspects of the standard? Why?

Explanation / Answer

1)Identify NIST SP 800-53 management, operational, and technical safeguards or countermeasures that, if implemented, could have prevented or ameliorated the event

2)a)

The Visa's program, Cardholder Information Security (CISP), MasterCard's program, Site Data Protection (SDP) and Discover Network's program, Discover Information Security and Compliance program (DISC) are based on the PCI Data Security Standards, each card association and company maintains its own compliance program and reserves the right to take independent action for non-compliance with these standards.

b)The Annual Self-Assessment is designed to ensure that merchants have considered and addressed the most critical aspects of protecting cardholder data and also quarterly system perimeter scan, Network scanning tools. So, for these types of issues the bank card policy not comply with the standard.

c)Best practices like

1.

2. Protect stored data

3. Provide secure password features

4. Log application activity

5. Develop secure applications

6. Protect wireless transmissions

8. Facilitate secure network implementation

9. Cardholder data must never be stored on a server connected to the Internet

10. Facilitate secure remote software updates

11. Facilitate secure remote access to application

12. Encrypt sensitive traffic over public networks

d)Regulations establish minimum prudential, operational,
administrative, governance, accounting and audit
requirements. As in the case of legislation, one set of
requirements does not fit all financial institutions. Credit
union regulations are likely to differ from those of other
financial institutions in the areas of:

Do not retain full magnetic stripe or CVV2, CVC2 and CID data. PIN blocks must never be retained

Related Questions

1. Radon gas has a half-life of 3.83 days. If 2.94 g of radon gas is present at
Question #1497779
1. Rain spoils the strawberry crop. As a result, the price rises from $4 to $6 a
Question #1250340
1. Ralph Larsen, former chairman and CEO of Johnson & Johnson, was quoted in thi
Question #2604926
1. Ramirez Company received their first electric bill in the amount of $60 which
Question #2435241
1. Ramona is a successful college student who is trying to stay in shape. She ha
Question #3513916
1. Rand water research committee consisting of 12 chemical engineers design a re
Question #702980
1. Rand water research committee consisting of 12 chemical engineers design a re
Question #707297
1. Random variables measure an unpredictable quantity in a certain experiment. A
Question #3149644

Navigate

Previous
1. Read one of the following books (for the longer ones, a few chapters will do)
Next
1. Read the DNA sequence after agarose gel electrophoresis and label the ends ??

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.