MIS 4477 Exam 3 Notes - Fall 2014 (updated 2014/12/04 @ 4:50 PM)

MIS 4477
Network and Security Infrastructure
JAKE MESSINGER (jake@uh.edu)
Exam 3 Notes

Updated 12/4/14 @ 4:50 PM

IMPORTANT NOTE: The Final Exam is Scheduled based on the Official UofH Final Exam Schedule

Thursday, Dec 11th, from 2 to 5 PM.

LAYOUT:

50 Multiple choice questions, 2 points each
NO ESSAY QUESTIONS
Paper Test Packet - BRING A RED SCANTRON form 88483 (available at the bookstore) and a Pencil
Content Covered: Notes since last test and Fitzgerald Chapters 10-12

RULES:

NO BOOKS or electronic devices can be used. You may bring hand written or printed notes as long as it is not the entire body of the book, the chapters, or my published notes or Powerpoint Presentations. Rewrite/retype the notes into new documents and then you can use those. I will inspect your notes before I hand you the test.
Eyes on your own Test. This is not a group project. Please, no "excessive" head moving especially side to side.
Do not remove the test from classroom. Students caught with a copy of one of my tests outside the classroom will be dropped from the class with an "F" and may be subject to academic review and punishment.
No hats or baseball caps, books, electronic translators, or any other extraneous/superfluous/covert items. A non-alchoholic beverage is okay. No food.
If you have a question, get up, bring the test and come up front to the proctor.
Check at the front of the class periodically to see the time left and also any corrections/notes regarding questions on the test.
The test is over 5 minutes before the next class period. If you are not finished, you must turn the test in incomplete.
You MAY NOT LEAVE during the test so go to the bathroom, feed the meter, put on deodorant or pray to the deity of your choice first.
When you are finished, bring the test to me, and make sure I check you off my test roster.

GRADING:

You must put your full name and PeopleSoft ID on the test to receive a proper grade.
If you feel that there are 2 possible answers, choose the best one, but write your justification on the test. Occasionally there are 1 or 2 questions are dropped from a test if they are determined to be not legitimate or appropriate after the fact. If I determine there are 2 correct answers for a question, I will give credit for either answer.
Partial credit will be awarded for Essay Questions, so do NOT leave them blank.
If there is an essay, write your essay answers on the blank pages or forms providedin the test packet. YOU MUST TURN IT BACK IN whether or not you complete the test.
I will email you your grade within 72 hours. Please notify me if you do NOT want your grade emailed, although no identifying information is given out, just your grades.

AFTERMATH:

This is the final test so we will not review it in class. If you wish to see your test, email me to schedule a time/place.
If you missed the test, you may make it up ONLY with a valid medical excuse OR if I have given you permission previous to the test day and it must be made up before May 2nd.

TEST CONTENT:
Questions will come from the book, and the Power Point Presentations, as well as my notes on each chapter and any links I e-Mailed you. Pay attention to the SUMMARY and QUESTIONS in the back of each chapter. There will be no SPECIFIC questions from any of the case studies. It may be beneficial for you to earch for some of the items on the Internet on sites such as whatis.com and google.com.

The following datapoints relate to at least one specific questions on the test:

Chapter 10 - The Internet

Know the relationship of Tier 1, Tier 2 and TIer 3 Internet Service Providers
How does ISP's make money at the different levels? WHo are their customers?
What is the term Peering. Is the Internet Free? What is Net Neutrality?
Know what a network "POP" is.
What is the ICANN? WHat is the IEFT?
What equipment is involved in DSL?
What is a local loop?
What protocol do most cable providers use?
know what Multiplexing is and in Internet Service delivery media it is commonly used in
Define WiMAX and know where it is used.
What is "Next Generation Internet"?
What is "Internet2"?

Chapter 11 - Network Security

What are the major categories of network security threats?
Give some examples of threats in these major categories
What are the different groupings of unauthorized users?
Define: Threat, Asset and Control and Rule
Who is CERT and what do they do?
Define the 3 classifications of CONTROLS
Give examples of different kinds of Network controls.
What does the Term "HA" refer to with respect to Network Security? Check whatis.com.
Define "mission critical" with respect to Network Assets.
What is "SSL"
What is a Colocation Facility (use whatis.com or google.com, not well defined in the book). What threats does it mitigate?
Define "Redundancy" and its role in network security and practicality.
Rate the different media types in terms of vulnerability to eavesdropping.
What is a "DoS" attack?
What is a Packet Sniffer?
Define Network Address Translation (asked on previous tests)
What is a firewall? What Network layers can it operate at?
What is Social Engineering? How to hackers use it to gain access to Network Assets?
Define Impact Score, Likelihood rating and "Risk Score" when identifying assets.

Chapter 12 - Network Management

What is Firefighting with respect to Network Management?
What are the basic functions of a Network Manager?
Define Performance management and how is it different from Fault management.
What are the roles of the NOC? the Helpdesk? How do they relate to each other? How are they different?
What is a "managed" or "intelligent" network device versus a "dumb" network device?
What is a trouble ticket? Why are they important?
What is the SNMP protocol used for?
Define MTBF - where do you find this information?
Define "SLA"... what are the 5 9's?
Define the "Total Cost of Ownership"
Which entity in a network environment is typically the most costly to manage?
End-User training should focus on what areas and in what percentages? Hint: use the 80/20 rule.
What is a Charge-Back policy?
What is Colocation? How can it make network mangement easier? Harder? (not much in the book, so google it).

End of Exam 3 Notes

Thank you for attending my class. I hope you gained some knowledge and can use some of what you learned in future endeavors.