Is3445

In: Computers and Technology

Submitted By Solty
Words 751
Pages 4
Scope Document and Project Charter

ITT Capstone Zeno Solutions, Inc

1. Purpose

The Technology Director for the Northeast Independent School District wishes to implement three fully functional labs for various groups of high school students within the district. This infrastructure will be critical in supporting the education of the students. This infrastructure will require email capability on both client and mobile devices, as well as secure authentication. Because this lab will be used by various students and various instructors, a user guide Web page will be necessary.

2. Goals and Objectives

Our goal in this project is to recognize the school district’s needs in regards to the three fully functional labs, to identify the number of work stations, and to provide the best solution to the customer in terms of hardware selection, reliability, affordability and ease of use. We will provide this to the school district with a competitive rate, and with the quality and expertise that our company is known for.

3. Success Criteria

In undertaking this project, success can be defined in a number of ways. A successful project is one in which our goals are clearly defined, the customer is involved in every step so that they know what it is we are accomplishing and it is up to their standards, the work is performed fairly and effectively, we complete the project on time and within budget, and where all parties are satisfied with the work we have completed. Work is to be completed no later than May 6th, 2013. Budget is not to exceed $600,000.

4.Project Context

We will be performing our duties on the project in accordance with our Zeno Solution’s goal. Our goal as a company is to provide the best level of service to our customers, in a fair and honest way, at competitive rates. Any work completed must live up to this goal in order to be considered successful.

5. Project…...

Similar Documents

Is3445 Week 10 Assignment

...IS3445 – Week 10 Assignment Project Part 10. Web Security Life Cycle Software development life cycles are created to help guide businesses towards meeting specific desires and needs within their applications. They drive the steps used to meet best practices and standards that businesses are required to follow to function. SDLCs are made up of various different stages such as; assessments, application development, QA testing, deployments, etc. Best practices and standards dictate that implementing security within the various steps of an SDLC if not all of the steps will provide the best results that any business is trying to achieve. An SDLC can come in a few different models like a waterfall model, spiral model and a V-Model. This document will be used to describe and give a brief summary on many different processes. Application Development: During the development of web applications, things such as poor error handling, and unsecure data transferring can plague the development. Poor error handling could result in malicious users finding much more information about a application than should be revealed and can use that information to gain access to unauthorized areas, while unsecure data transferring could result in data being stolen as it is broadcasted across a network. QA/Testing: Security professionals that continually test software and web applications for malicious attacks or security flaws ensure that products will continue to work as desired. Examples of......

Words: 1029 - Pages: 5

Test

...Hacking and Introduction to  Security Auditing for Compliance Countermeasures Information Security Email and Web Services      NT1230 NT1330 Client-Server Client-Server  Networking I Networking II  IS3230 IS3350 NT1230 NT1330  Issues Client-Server Client-Server  SecurityContext in Legal Access Security Networking I Networking II   NT1110  NT1210 Structure and Introduction to  ComputerLogic Networking    IS3120 IS3110 NT1210 Network  Risk Management in Introduction to General Education / General Studies NT2580 NT2799 Communications Information Technology Introduction to Information Security NSANetworking Capstone Project IS4550 NT2640 Security Policies and Implementation IP NT2640 Networking IP Networking PT2520 IS3445 PT2520 Database Concepts Security for Web Applications and Social Database Concepts Networking IS3340 NT1430 Windows Security Linux Networking NT1430 Linux Networking PT1420 Introduction to Programming IS3440 PT1420 Introduction to Linux Security Programming IS3220 NT1310 IT Infrastructure Security Physical Networking PM3110 Introduction to Project Management NT1310 NT1430 Physical Networking Linux Networking NT2640 IP Networking Infrastructure CO2520 Communications EC2555 Survey of Economics MA3110 Statistics SS3150 Research Methods EN3220 Written Analysis CO2520 Communications SP3450 Social Psychology EC2555 Survey of Economics GS1140 Problem Solving Theory HU4640 Ethics SC4730 Environmental......

Words: 2305 - Pages: 10

Lab 7

...IS3445 Security Strategies for Web Applications and Social Networking Lab 7 Assessment 05/10/14 1. How does Skipfish categorize findings in the scan report? As high risk flaws, medium risk flaws, and low issue scans 2. Which tool used in the lab is considered a static analysis tool? Explain what is referred to by static code analysis. RATS, because the running of static code analysis tools that attempt to highlight possible vulnerabilities within ‘static’ (non-running) source code. 3. What possible high risk vulnerabilities did the Rats tool find in the DVWA application source code? Allow system commands to execute. 4. Did the static analysis tool find all the potential security flaws in the application? Yes, although such tools like these would automatically find security flaws with high degree of confidence that what it found was a flaw. 5. What is black box testing on a web site or web application? They’re designed to threat the application as an “unknown entity”; therefore, no knowledge of the tiers is provided. 6. Explain the Skipfish command in detail: ./skipfish-o/var/scans/is308lab.org –A admin:password –d3 –b I –X logout.jsp –r200000 http://www.is308lab.org This is a standard, authenticated scan of a well-designed and self-contained site. 7. During the manual code review, what is noticed about high.php to make it less likely to vicitimize users with XSS reflection and why is it considered more secure? Because when a php is at......

Words: 379 - Pages: 2

Project 5

...Project Part 5: Analyze the Software Development Life Cycle (SDLC) IS3445 Mr. Hollis The right choice for a SDLC (Software Development Lifecycle) approach for your IT needs are as pertinent to the proper management of the project as the integration of any technical path of best practices. Choosing the improper software technique and you could add unnecessary time to the deployment and development vitality of the implemented software. By additional time to the software life course will exponentially add to your costs and most likely halt you from achieving the development within a timely manner. I recognize not all project management is allowed to choose the software lifecycle that will be implemented on all developments. Businesses possibly invested primarily in the software and advancements utilized to deploy their software. In this paper, a contradictory view of SDLC process is describe, it is based on development, distinguishing classifications and then characteristics are revealed. In the very early stages of computing, software development was produced by many individuals, each having their own protocols to follow. Majority of the time, the deployment process was a form of “programing language then repair”, Such the technical writer conducts a form of commands and then probes it to get results. Software expanded exponentially more difficult and meticulously rested on computers for most of their computing, including expenses and labor, this attributed to a more......

Words: 326 - Pages: 2

Is3445 Project Part 4

...UNFO, a brick-and-mortar retailer now has move into the e-commerce, e-business model has developed new risk that will affect the business. As UNFO information security analyst it is my job to prepare an executive summary report designed to assist the team in understanding IT security risks associated with e-commerce and e-business models. Malicious program known as sniffer programs often disrupt the privacy transactions especially when one uses unauthorized networks. They are found at network connection end points. When transactions are carried out, confidentiality is necessary thus it requires removing of any data showing transaction paths. This has become a common problem in the e-commerce sites. Another particularly common problem facing e-commerce and social network applications is the Trojan horse. Back Orifice, Netbus and BO2K are the most common types. They are hacker tools that enable a remote hacker to control, examine and monitor the user’s information. These Trojans are dangerous since they can provide the hacker a platform for sending information and make it appear as if the real owner of the computer has done so. The payoff of a successful attack is one of the motivations for hackers. If you were to take a penny from every account at any one of the major banks, it easily amounts to several million dollars. The local bank robber optimistically expects a windfall in the tens of thousands of dollars. Bank branches do not keep a lot of cash on hand. The majority......

Words: 499 - Pages: 2

Is3445-Project Part 4

...Project part 4 IS3445 Common weaknesses and attacks associated with e-commerce and social networking applications Security of transactions is critical in building the confidence of customers in a specified e-commerce site. This security depends heavily on an organization's ability to ensure authenticity, availability, privacy, integrity and disruption of unwanted intrusions. Malicious program known as sniffer programs often disrupt the privacy transactions especially when one uses unauthorized networks. They are found at network connection end points. When transactions are carried out, confidentiality is necessary thus it requires removing of any data showing transaction paths. This has become a common problem in the e-commerce sites. Another common problem for e-commerce site is a Trojan horse. A Trojan horse, or Trojan, in computing is a generally non-self-replicating type of malware program containing malicious code that, when executed, carries out actions determined by the nature of the Trojan, typically causing loss or theft of data, and possible system harm. Hackers and cyber-criminals are motivated by financial gain, notoriety, or simply by the thrill of the challenge. Cyber-crime can be extremely lucrative. The sale of cyber-resources including credit card information, stolen intellectual property, or networks of compromised, Internet-connected servers has created a burgeoning black market economy. The tools created for these purposes are openly shared on the......

Words: 367 - Pages: 2

Detektiv Conan | Eerst afgelopen | Thor Ragnarok 3D BluRay 3D 1080p