Type of assignment: This assignment is individual.

Points: The maximum number of points for this assignment is 29, which will be prorated accordingly after all assignments are posted. Weight of each problem is in parenthesis.

Format: Assignment submissions are accepted in the following formats only: (plain) ASCII text (extension .txt), HTML (.html), PDF (.pdf). Assignments submitted in any other format will be discarded without marking and 0 points will be given. All text in the assignment submissions must be typed and figures (if any) plotted to be easy to read and understood. Spelling, grammar, and other language errors will result in fewer points credited to the corresponding problem solutions.
Format your answer and references in IEEE Transactions format using this template (or download LaTeX template here).

Problems

1. (6 points) Analysis of a real incident:
   1. Using no more than half a page, summarize a real security incident that has been reported in English-speaking online public media (e.g., The register, Ars Technica, Bruce Schneier's blog, F-secure web blog, ZDnet) after January 2012. Provide reference(s) to the original report of the incident and the corresponding URL. The TA should be able to verify the information in your summary by accessing the original report using your reference or URL. Choose an incident that amenable to the task at hand.
   2. Using another half a page, analyze 1) the value of the assets at risk, 2) threats to these assets, and 3) threat agents, for the stakeholder(s) that experienced most damage, as a result of that incident. If necessary make reasonable assumptions and state them clearly. Classify which of the CIA properties of the valuable assets were reduced as a result of the incident.
2. (6 points) Analyze 1) the value of the assets at risk, 2) threats to these assets, and 3) threat agents, for any two of the following futuristic scenarios. See the videos for each of the scenarios.
   1. Health
   2. Finances
   3. Voting

Classify the above threats according to the threat types

3. (5 points) For each threat in problem #2, classify which of the CIA properties of the assets would be reduced if the threat were realized.
4. (6 points) Suggest and describe ways to manage risk for the assets from problems #1 & #2.
5. (6 points) Problem #21 in chapter 1 of Stamp's textbook (p.15). Note: Question (a) is 3 points, and questions (b)-(d) are 1 point each.