What security loopholes come to the fore in the situation described.how can these be plugged?

a) What security loopholes come to the fore in the situation described? How can these be pluggewas found that out of the 364 desktops at the corporate office; more than half did not have their antivirus software updated with recent virus signature files. Three

• fourths had not changed the default e-mail passWord (it was the

user name) and no one had installed OS patches. And one of its local mail servers seemed to be an open relay! For a fleeting moment, system manager of SystemX wondered about the situation at the seven branch offices across the country.

SystemX used the Net extensively in dealing with its branches, customers and suppliers. Information like contract documents, marketing plans, Cheque and Draft numbers, bank account details and collection details were regularly transmitted by e-mail. These loopholes come into our mind.

These loopholes can be plugged, if they update their antivirus which is virus signature files free. Because they use e-mail, and Net extensively so they need strong security measure in order to secure their system.

In short we can say;-

Security loopholes in the random number generator of Windows which is fond

In research. This is a program which is among the thing a critical building block for file

and email encryption and the SSL encryption protocol with used by all internet browsers.

For the following security loophole the plugged Mr Utpal need some action like.

1. Licence Windows operating system use in the all required system

2. Using fire wale in main server.

3. The action in question can be reduced to operation of access modification and

deletion.

b. What is the importance of a "security budget" in the context of the given situation?

Security budget is one of the important parts of every business. In this context "Security Budget" is very important. They need to provide security to their system. If manager recommends for appointing a new security consultant then it may not be granted because of budget. Any how they need to provide security.

Also we can say that The initiative will include virus related product support, and online security tool

kit and a new version of IIs wich can be tailored to meet customer's individual needs.

The move has been greeted as a small but positive step in restoring faith in internet

security , budget is required all of the level of system improvement. Such as user

education, understanding best security practices, improvements in software development.