Mobile Devices and Wireless - Resource Management - Lecture Notes, Study notes of Human Resource Management

Mobile Devices and Wireless, Mobile Devices, Flash Drives, Cell Phones, Wireless Work, Popularity of Mobile Devices, Loss of Device, Data Loss, Cable Locks, Wireless Networks are some important points from lecture handout of Resource Management.

Typology: Study notes

2011/2012

Uploaded on 12/20/2012

devashish
devashish 🇮🇳

4.3

(24)

111 documents

1 / 2

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Mobile Devices and Wireless
What is a Mobile Device/Wireless?
o Mobile Device: a device that is easy to use, enables remote access to business networks and the
internet, and enables quick transfer of data.
o Wireless Communication: the transfer of information over a distance without the use of electrical
conductors or wires
What are some examples of Mobile Devices?
o Laptops
o Cell Phones
o PDAs
o Flash Drives
o Bluetooth
o Others:
___________________________________________________________________________________
___________________________________________________________________
How does Wireless Work?
o Wireless networks use electromagnetic radiation as their means of transmitting data through space.
o An access point (AP) device is physically connected to the LAN (typically a router)
o The AP has an antenna and sends and receives data packets through space
o A wireless device then connects to the WLAN using its transmitter to connect to the AP, and then to
the LAN.
Growing Popularity of Mobile Devices:
o Used for day to day activities
o Affordable
o Necessary to keep up with competitors using the same technology
o Convenient Size
What are the Advantages?
o Enhanced productivity
o Portability: Stay connected even away from home or office, resulting in a more flexible work life
Risk: Physical theft/loss of device & Risk: Data loss/leakage
o Mitigation
o Cable Locks
o Never leave hardware unattended
o Make hardware as inconspicuous as possible
o Invest in tracking/recovery software
Wireless networks
o Infrastructure Mode
o Ad-hoc mode
Specific Threats to Wireless Networks
o Unauthorized use of service
o Jamming
o Constant Jamming
o Deceptive Jamming
o Mitigation
o Encryption
o Authentication
Common Sense Solutions
o Understand what is really at risk
o Take controls seriously
o Don’t be too trusting of people
Docsity.com
pf2

Partial preview of the text

Download Mobile Devices and Wireless - Resource Management - Lecture Notes and more Study notes Human Resource Management in PDF only on Docsity!

Mobile Devices and Wireless

What is a Mobile Device/Wireless? o Mobile Device: a device that is easy to use, enables remote access to business networks and the internet, and enables quick transfer of data. o Wireless Communication: the transfer of information over a distance without the use of electrical conductors or wires What are some examples of Mobile Devices? o Laptops o Cell Phones o PDAs o Flash Drives o Bluetooth o Others:



How does Wireless Work? o Wireless networks use electromagnetic radiation as their means of transmitting data through space. o An access point (AP) device is physically connected to the LAN (typically a router) o The AP has an antenna and sends and receives data packets through space o A wireless device then connects to the WLAN using its transmitter to connect to the AP, and then to the LAN. Growing Popularity of Mobile Devices: o Used for day to day activities o Affordable o Necessary to keep up with competitors using the same technology o Convenient Size What are the Advantages? o Enhanced productivity o Portability: Stay connected even away from home or office, resulting in a more flexible work life Risk: Physical theft/loss of device & Risk: Data loss/leakage o Mitigation o Cable Locks o Never leave hardware unattended o Make hardware as inconspicuous as possible o Invest in tracking/recovery software Wireless networks o Infrastructure Mode o Ad-hoc mode Specific Threats to Wireless Networks o Unauthorized use of service o Jamming o Constant Jamming o Deceptive Jamming o Mitigation o Encryption o Authentication Common Sense Solutions o Understand what is really at risk o Take controls seriously o Don’t be too trusting of people

Docsity.com

o Use technology for help o TEST! IS Auditing Guideline – Mobile Computing o Planning o Obtain information regarding: intended use (business transactions or personal productivity), technology used, risk analysis, and policies used to manage computing o Conduct interviews and document analysis o If a 3rd party is used to outsource IS or business function, review the agreement o Relate risks to the criticality of the information stored on the mobile devices Risk Analysis o Auditor should consider the following when performing the risk analysis: o Privacy – examine protocols and procedures that protect sensitive information on mobile devices (such as physical access controls) o Authentication – certificate indicated verification by a certification authority o 2 Factor Authentication – verifies that the device and the end user are authorized o Data Integrity – detect changes in content or message during storage or transmission o Non Repudiation – user cannot deny processing a transaction o Confidentiality and Encryption – using algorithms to transform data o Unauthorized Use Work Plan & Performance o Work Plan o Auditor documents how risks threaten business, security, and IS objectives, and the controls put in place to address the risks o Identify weaknesses o Performance of Audit o If control weaknesses exist, additional procedures may be necessary o Consider discussing the audit with stakeholders prior to issuing report Auditing Wireless Networks o Access control, transmission control, viruses, and monitoring access points are important risks to consider o Firewall generally secures information but WLAN creates new challenges because it easier to access. Therefore control is more important. o (Ex) If an employee were to bring in an unauthorized router in to work, unauthorized users could potentially access the network from outside the building o Access Point (AP) – security of APs is crucial for wireless network auditing, consider unauthorized access, unauthorized APs, improperly configured APs, and Ad Hoc networks o An Auditor might walk around the building looking for markings left on the ground by hackers indicating a spot in range of a wireless network o Wireless auditor – an automated system that detects anomalies

Docsity.com