Lab 2: Goal of Information Technology

Goal of Information Technology Security

Information security provides a protection for the information, system, and hardware that use to store that information. Confidentiality, integrity and availability are goals of information security. Confidentiality provides privacy and protection to data in computer, which means only an authorized person can access the data. Integrity used to make only authorized person that can modify the data. To provide data integrity can use encryption. Availability make the data can be access any time without failure by an authorized person. These three elements must be balance, if not it will affect the functionality of the system. Combination of these three elements will provide a security for the data.

Image Hosted by UploadHouse.com

1. Convert FAT32 to NTFS

There are two type of partition in windows, FAT32 and NTFS. Difference between these two types is FAT32 not offer local file security. You need to convert FAT32 to NTFS to get local file security. To convert FAT32 drive into NTFS, just follow this step:

a. Open your winserv03 virtual machine and log on as Administrator (don’t forget to take a snapshot of your virtual machine before start the task)

b. Click Start

c. Click Run and type cmd to run command prompt.

d. Use command chkntfs d: to check whether the drive use NTFS or not. You will see message “D: is not dirty”, it means no corruption in that drive.

e. If drive is FAT32, use command convert d: /fs:ntfs to convert your drive into NTFS.

f. If the drive has volume label, enter it when prompted.

g. Use command chkntfs d: to make sure the drive is NTFS

h. Restart your computer.

2. Make Authorized folder

Data confidentiality is making sure those people whom access the certain data actually have that access. NTFS can used to protect from intruders whom may have physical access to the data. In this task, we will need 2 user accounts.

Creating User Account

a. Go to Start > Administrative Tools > Computer Management

b. Choose Local User and Groups, double click on user folder.

c. Right click on the pane and choose New user, fill up the information.

Creating data Confidentiality between 2 Accounts

a. Log on to windows as Administrator.

b. Open drive D and create new folder name Confidentiality.

c. Open Confidentiality folder and create folder name User1folder.

d. To secure the folder, right click on the folder and click Properties.

e. Click Security tab ( only available in NTFS)

f. Click on Advance button and uncheck the box “Allow inheritable permission from parent to propagate to this object”.

g. You will receive a message box, click Copy to retains the permissions.

h. Click Add, and new window will pop up.

i. Type User1 as object name and click Check Names, then click Ok.

j. Click Allow full control in permission entry windows, and then click Ok.

k. Remove the others username except Administrator, System, and User1, and click Ok.

l. Close all windows and log off.

m. Log on as User2, can you open folder User1Folder?