“IT Security” Please respond to the following:
• From the e-Activity, discuss how the National Security Telecommunications and Information Systems Security Policy (NSTISSP) national policies facilitate the confidentiality, integrity, authentication, and non-repudiation of computing security.
• Analyze the elements of vulnerability and threat (physical, procedural, policy, etc.) that exist in an IS or telecommunications system. Suggest corresponding protection measures.
“IT Influence” Please respond to the following:
• The Payment Card Industry Data Security Standard (PCI DSS) is used by credit card companies to ensure the safety of the customer data. Assume that you are amerchant. Determine the advantages and disadvantages of adopting the PCI DSS standard.
• Suggest methods that organizations could implement to prevent the A1-Injection(Structured Query Language (SQL) Injection) and A2-Cross Site Scripting (XSS)in software applications.