Case Study - Information Security

Assume that a security model is needed for the protection of information in

your class. Using the CNSS model, examine each of the cells and write a
brief statement on how you would address the three components occupying
that cell 

CNSS Model
 The full form of CNNS is Committee on National Security Systems.
 It is a standard model being used for security of information systems.
 It is a three-dimension model with each axis becomes a 3 x 3 x 3 cube with 27 cells
representing areas that must be addressed to secure today’s information systems.
 To ensure system security, each of the 27 cells must be properly addressed during the
security process.
 One such control would be a system for detecting host intrusion that protects the integrity
of information by alerting the security administrators to the potential modification of a
critical file.
 Information Security:

Management of Information Security:

         Proper Staff
         Educating students on policies
         HIPPAA (CIA) laws
         Email Policies

Network Security:

         Ensure proper internal and external firewalls are set

         Web content blockers
         VPN Access
         Wireless Access Point
         Smart Phones

Policy- The policy can be addressed for a classroom environment by ensuring all door are
locked and access to room is granted by authorized personal. The next policy is to have
all computers under usage time. As well, include parental control to block sites that are
not to be accessed and to avoid potential threats. It is critical to maintain proper
authorization to only students, teachers, and staff of the school.

Computer and data security- All users will have to use their assigned username and
password. It is important to develop an internet usage to maintain data security. That way
we are also able to track who was at fault if a data breach occurs.

By,
N. Harismita
16MSS017