Best Summary and Analysis The Great Gatsby, Chapter 3

Best Summary and Analysis The Great Gatsby, Chapter 3 SAT/ACT Prep Online Guides and Tips In Chapter 3 of The Great Gatsby, we at last - at last! - we get the chance to see one of Gatsby’s absolutely free as a bird parties! Also, it more than satisfies the expectations most definitely. Much more excitingly, we at long last get the chance to meet the man, the fantasy, the legend himself - Gatsby, in the substance! So why at that point does this uncover, which the novel has been working toward for 2.5 parts, appear to be so unsatisfying? Peruse on for our Great GatsbyChapter 3 outline, coveringthe highs and lows of the Gatsby Saturday night experience. Snappy Note on Our Citations Our reference design in this guide is (chapter.paragraph). We're utilizing this framework since there are numerous releases of Gatsby, so utilizing page numbers would just work for understudies with our duplicate of the book. To discover a citation we refer to by means of section and passage in your book, you can either eyeball it (Paragraph 1-50: start of part; 50-100: center of section; 100-on: end of part), or utilize the hunt work in case you're utilizing an on the web or eReader adaptation of the content. The Great Gatsby: Chapter 3Summary Scratch depicts watching unlimited gatherings going on in Gatsby’s house each end of the week. Visitors party day and night and afterward on Mondays workers tidy up the chaos. Everything is about abundance and a feeling of pointless excess. Each weekend, visitors are carried to and fro to Manhattan by Rolls-Royce, containers of oranges and lemons are squeezed, a multitude of cooks sets up tents and lighting, food is heaped high, the bar is overwhelmingly supplied, and there is a gigantic band playing. It's a significantly greater arrangement than it sounds since this is happeningduring the Prohibition, when liquor was as far as anyone knows inaccessible. The principal night Nick goes to Gatsby’s for a gathering, he’s one of a not very many really welcomed visitors. Every other person just crashes.At the gathering, Nick is tense. He knows nobody. There’s an amazing number of English individuals at the gathering, who appear to be urgent to get their hands on American cash. Nobody knows where Gatsby himself is. Scratch hangs out close to the bar until he sees Jordan Baker.Nick and Jordan visit with other gathering individuals. A young lady discloses to them that at another of these gatherings, when she tore her dress coincidentally, Gatsby sent her an over the top expensive replacement.They tattle about what this odd conduct implies. One talk has it that Gatsby murdered somebody, another that he was a German covert agent. Food is served, which Nick and Jordan eat at a table brimming with individuals from East Egg, who take a gander at this crazy gathering with haughtiness. Theydecide to discover Gatsby since Nick has never really met him. In his manor, they end up in the library, which has resplendently cut shelves and reams of books.A man with owl-peered toward displays enthuses about the way that every one of these books are in reality genuine †and about the way that Gatsby hasn’t cut their pages (which means he’s never read any of them). Pull out in the nursery, visitors are currently moving, and a few acclaimed drama vocalists perform. A few partygoers additionally perform generally risquã © acts. Scratch and Jordan take a seat at a table with a man who perceives Nick from the military. In the wake of discussing the spots in France where they were positioned during the war, the man uncovers that he is Gatsby.Gatsby streaks the world’s most prominent and generally alluring (not explicitly, just very urgently) grin at Nick and leaves to accept a call from Chicago. Scratch requests more data about Gatsby from Jordan, who said that Gatsby considers himself an Oxford man (which means, he went to the University of Oxford). Jordan says that she doesn’t accept this, and Nick generalizes the data with the likes of the various gossipy tidbits he’s heard (that Gatsby had slaughtered a man, that he was Kaiser Wilhelm’s nephew, that he was a German government operative, and so on.). The ensemble strikes up the most recent number one hit.Nick sees Gatsby investigating his visitors with endorsement. Gatsby neither beverages, nor moves, nor plays with anybody at the gathering. At the point when Jordan is out of nowhere and strangely requested to address Gatsby alone, Nick watches an alcoholic visitor sob and afterward drop. He sees battles breaking out between different couples. Indeed, even the gathering of individuals from East Egg are no longer behaving as well as possible. Regardless of the way that the gathering is obviously finished, nobody needs to leave.As Nick is getting his cap to leave, Gatsby and Jordan come out of the library. Jordan discloses to Nick that Gatsby has quite recently revealed to her something astonishing †yet she can’t uncover what. She gives Nick her number and leaves. Scratch discovers Gatsby, apologizes for not searching him out prior. Gatsby welcomes him to go out on his hydroplane the following day, and Nick leaves as Gatsby is brought to a call from Philadelphia. He waves farewell from the means of his manor, looking desolate. Outside, the man with the owl-peered toward displays from the library has smashed his vehicle. A considerably drunker man rises up out of the driver’s seat of the disaster area and is amusingly yet additionally horrifyingly befuddled about what has occurred. Unexpectedly, the account is hindered by present-day Nick. He feels that what he’s been composing is presumably giving us an inappropriate thought. He wasn’t focused on Gatsby throughout that late spring †this obsession has just occurred since then.That summer, he invested the greater part of his energy working at his second or third-level bond exchanging organization, Probity Trust, and had a relationship with an associate. He began to truly like the swarmed and mysterious feel of Manhattan, yet additionally felt desolate. In the late spring, Nick reconnects with Jordan Baker and they begin dating. He nearly becomes hopelessly enamored with her and finds that under her facade of weariness, Jordan is a hopeless liar. She pulls off it on the grounds that in the unbending high society code of conduct, getting a lady out as a liar would be inappropriate. Scratch out of nowhere recollects the story he had found out about her playing golf vocation: Jordan was blamed for cheating by moving her ball to a superior falsehood, yet the observers later abjured and nothing was demonstrated. At the point when Nick gripes that Jordan is a horrible driver, she answers that she depends on the others making progress toward be cautious rather than her.Nick needs to take their relationship further, yet reigns himself in on the grounds that he hasn’t completely severed the non-commitment back home that Tom and Daisy had gotten some information about before. He asserts that he is one of only a handful not many legit individuals that he’s ever met. Things being what they are, heaps of fender benders, and discussion about auto crashes, all in the region of liquor? Would you be able to state foretelling? Key Chapter 3 Quotes I accept that on the primary night I went to Gatsby's home I was one of only a handful scarcely any visitors who had really been welcomed. Individuals were not welcomed they went there. They got into cars which bore them out to Long Island and by one way or another they wound up at Gatsby's entryway. Once there they were presented by someone who knew Gatsby and after that they acted by the principles of conduct related with entertainment meccas. Now and then they went back and forth without having met Gatsby by any means, sought the gathering with a straightforwardness of heart that was its own ticket of confirmation. (3.7) Gatsby’s parties are the embodiment of unknown, good for nothing overabundance †to such an extent that individuals treat his home as a sort of open, or possibly business, space instead of a private home. This is associated with the obscenity of new money†you can’t envision Tom and Daisy arranging a gathering this way. Or on the other hand Nick so far as that is concerned. The irregular and useless guilty pleasure of his gatherings further features Gatsby's disconnection from genuine companions. As Jordan says later, enormous gatherings are extraordinary in light of the fact that they give protection/closeness, so Gatsby remains solitary in an ocean of outsiders having their own cozy minutes. A bold, moderately aged man with tremendous owl-peered toward displays was sitting to some degree alcoholic on the edge of an extraordinary table, gazing with flimsy fixation at the racks of books. †¦He waved his hand toward the shelves. About that. Truly you needn't try to find out. I discovered. They're real†¦.Absolutely genuine have pages and everything. I thought they'd be a pleasant strong cardboard. Matter of truth, they're completely genuine. Pages and-Here! Lemme show you. Underestimating our doubt, he hurried to the cabinets and came back with Volume One of the Stoddard Lectures. See! he cried triumphantly. It's a true blue bit of printed matter. It tricked me. This current fella's a customary Belasco. It's a triumph. What exhaustiveness! What authenticity! Realized when to stop also didn't cut the pages. In any case, what do you need? What do you anticipate? (3.41-50) Belasco was an eminent dramatic maker, so contrasting Gatsby with him here is a method of depicting the library as a stageset for a play †at the end of the day, as a wonderful and persuading counterfeit. This ocean of new books is either yet increasingly huge misuse of assets, or a sort of smaller than normal case of the way that a person’s center character continues as before regardless of what number of layers of mask are set on top. Gatsby has the cash to purchase these books, yet he comes up short on the premium, profundity, time, or desire to peruse and get them, which is like how he respects his journey to get Daisy. He grinned understandingly-substantially more than understandingly. It was one of those uncommon grins with a nature of endless consolation in it, that you may run over four or multiple times throughout everyday life. It confronted or appeared to confront the entire outer world for a moment, and afterward focused on you with a powerful bias in support of yourself. It comprehended you only so far as you needed to be comprehended, trusted in you as you might want to put stock in yourself and guaranteed you that it had unequivocally the impression of you that, at your best, you would have liked to pass on. Decisively at that po

Credit Derivatives financial impact on the UK and America Essay Example

Credit Derivatives : money related effect on the UK and America Essay Patterns of monetary blast and bust are standard highlights of market economies. The worldwide downturn that set in during 2008 is the latest scene of this wonder and is probably going to be rehashed later on too. Despite the fact that the scale and size of these emergencies have to some degree diminished in the period after the Second World War, they have been large enough to be named basic arrangement disappointments of governments over the world. Also, in the neo-liberal monetary request of the present reality, national economies are perpetually entwined, making it incomprehensible for any one country to protect itself and its kin from the impacts of the emergency. This is most evident when we investigate the information relating to the ongoing worldwide monetary downturn, encouraged by the breakdown of credit subordinates. (Weale, 2008) Since a large number of the main economies on the planet are in North America and Europe, these areas are the most noticeably awful hit. East Asian financial goliath Japan appears not to have been affected. Rising financial superpowers as China and India have indicated stable credit showcases as well. (Barrell Hurst, 2008) As the U.S. budgetary markets are most firmly connected to that of Europe all in all and the UK specifically, the impact of the credit emergency is generally intense on the last mentioned. In the event that the complete misfortunes prompted by the current financial downturn crosses $1000, at that point this will establish a 7.4 percent withdrawal in US GDP. However, different nations, for example, the UK will likewise be influenced by this compression since their financial organizations have put resources into US contracts. This implies different nations, for example, the UK are antagonistically influenced also. In the UK, in spite of the fact that the misfortunes have not estimated precisely up until this point, it is a reasonable gauge that misfortunes of 2-3 percent of GDP have been brought about. We will compose a custom paper test on Credit Derivatives : monetary effect on the UK and America explicitly for you for just $16.38 $13.9/page Request now We will compose a custom paper test on Credit Derivatives : money related effect on the UK and America explicitly for you FOR ONLY $16.38 $13.9/page Recruit Writer We will compose a custom article test on Credit Derivatives : monetary effect on the UK and America explicitly for you FOR ONLY $16.38 $13.9/page Recruit Writer Be that as it may, even before the credit subordinates emergency grabbed hold, the IMF gave out alerts through its World Economic Outlook reports. The report additionally made clear that any emergency in the U.S. money related markets would have a course impact on the UK and past. For instance, in the report discharged in 2008, months before the flare-up of the credit emergency, it expressed that â€Å"It is conceivable that falling house costs could instigate US shoppers to default on prime advances gave to great leasers with critical lodging value. It is likewise conceivable that default rates on charge cards and vehicle advances could rise, however maybe this is more outlandish as the transient expenses are maybe higher. What's more it is conceivable that borrowers with negative value in the UK and somewhere else may decide to default on their advances when house costs are falling and, in the event that they did, banking segment misfortunes could mount.† (Barrell Liadze, 2009) Similarly as the downturn was grabbing hold in the US, experts anticipated that there would be overflow impacts on the remainder of the world, including the UK. Thus far, those forecasts have demonstrated to be valid. The emergency activated by the disappointment of credit subordinates in the US would influence different nations relying upon which regions the misfortunes influenced and their effect on the financial framework. When the impacts of worldwide downturn was on an ascendency, researchers Ray Barrell and Ian Hurst, noticed that â€Å"if we spread the misfortunes equally then development in the UK would likewise slow, this year and next, and we may consider development to be low as 1.4 percent this year and imperceptibly lower than 1 percent one year from now. On a similar premise Euro Area development may ease back to around 1.2 percent in every year. These falls could be intensified if there were residential issues in these nations just as in the US†. (Barrell Hurst, 2008) And financial information for 2009 and 2010 has vindicated their forecasts, further basic the way that the UK economy is exceptionally reliant on the fortunes and changes of the American economy. During the principal period of the downturn, it is normal to see an expansion in bank acquiring, as business partnerships look to use extra credit to deal with the emergency. Be that as it may, during this period loaning to UK organizations has been declining, which shows loaning by UK and remote banks to non-bank organizations. Money related investigators reason that the decrease has been incited by a â€Å"reduction of loaning by outside banks. Be that as it may, authentic loaning by UK banks kept on rising. Hence the main period of the emergency related with the disappointments of Northern Rock and Bradford and Bingley had no genuine impact on loaning to businesses†. (Weale, 2009) The genuine interdependencies between the US and the UK budgetary markets became known just when enormous monetary organizations, for example, Lehman Brothers failed. Since Lehman Brothers declared financial insolvency in September of 2008, banks in the UK have developed mindful as well. This is reflected in the month to month information accessible on loaning by money related part (M4) establishments in the UK till December of 2008. The information shows that during last quarter of 2008 remarkable advances to UK business organizations by UK banks declined. It further shows â€Å"falling made sure about home loan loaning and unbound buyer credit loaning to people falling all the more strongly, while loaning to independent companies has deteriorated. Subsequently, in the second period of the emergency, the issues started to influence UK banks’ eagerness to loan to British businesses† (Barrell Liadze, 2009). This outcome more than all else, focuses to the reliance of the UK budgetary market on that in the US. What's more, by augmentation, the achievement or disappointment of complex money related items, for example, credit subordinates can have overall ramifications. Since the solid connection between monetary markets over the Atlantic is set up, clearly the recuperation ought to likewise occur as one. For instance, so as to improve the adequacy of monetary strategy upgrades formulated by the US and UK governments, it is fundamental that their execution is very much planned. Further, â€Å"the monetary approach effect will be reinforced by overflow impacts as rising GDPs will, by means of universal exchange linkages, invigorate fares of each country’s exchange accomplices. The impacts of facilitated monetary arrangement activities embraced by all economies simultaneously would ordinarily be more noteworthy than those appearing if there should be an occurrence of strategies directed in isolation.† (Hawser, 2009) References Barrell, R., Fic, T., Liadze, I. (2009). Financial Policy Effectiveness in the Banking Crisis. National Institute Economic Review, (207), 43+. Barrell, R., Hurst, I. (2008). Money related Crises and the Prospects for Recession. National Institute Economic Review, (204), 33+. Breaking down the Global Recession. (2008). National Institute Economic Review, (206), 74+. Hawser, A. (2009, May). Nations Count Cost of Credit Crisis. Worldwide Finance, 23, 8. Downturn in the Euro Area. (2009). National Institute Economic Review, (209), 22+. Weale, M. (2008). Critique: The Banking Crisis and the Economy. National Institute Economic Review, (204), 4+. Weale, M. (2009). Information on the Credit Crunch. National Institute Economic Review, (207), 71+. ? Patterns of financial blast and bust are customary highlights of market economies. The worldwide downturn that set in during 2008 is the latest scene of this wonder and is probably going to be rehashed later on too. Despite the fact that the scale and extent of these emergencies have to some degree decreased in the period after the Second World War, they have been large enough to be named basic approach disappointments of governments over the world. Furthermore, in the neo-liberal financial request of the present reality, national economies are perpetually interwoven, making it unimaginable for any one country to protect itself and its kin from the impacts of the emergency. This is most clear when we investigate the information relating to the ongoing worldwide monetary downturn, encouraged by the breakdown of credit subsidiaries. (Weale.

Nurse-to-Patient Ratio legislation Essay Example | Topics and Well Written Essays - 1750 words

Attendant to-Patient Ratio enactment - Essay Example The issue of medical caretaker staffing has been a reliable issue since the year 1996. In any case, it should be tended to since patients these days know their privileges as they are better educated that before about their wellbeing. Different issues have additionally contributed into finding an answer for this issue. This incorporates elevated levels of keenness, the sums apportioned by the national spending plan to this segment lastly the retirement time of workers in this calling (Buerhaus, 2009). Understaffing in government organizations has achieved such a large number of issues that influence the prosperity of the two patients and medical caretakers who are intended to deal with them. These issues for the most part emerge when these attendants work for extended periods. This can prompt patients’ mortality as medical caretakers have a critical number of patients to take care of. In such a case, it is hard for a medical caretaker to distinguish any adjustment in the soundness of the patient and counsel a specialist. Besides, it has prompted expanding in the quantity of diseases that are obtained in the emergency clinics by medical caretakers over the span of their obligation (Clark, 2005). This is for the most part connected with poor working conditions and absence of the necessary types of gear to play out their obligations. This has been a steady issue in many emergency clinics thus it ought to be tended to with prompt impact. Understaffing causes stun among attendants and just as circulation system contaminations. This is on the grounds that they get and concede patients with various sicknesses. Because of their predetermined number, a medical attendant may be overpowered by the convoluted and testing undertakings. Henceforth, this approach whenever sanctioned will be of extraordinary assistance to the two medical caretakers and patients of this nation. At last, it has likewise caused mental issues among medical caretakers. This is on the grounds that these medical caretakers work for extende d periods of time, and they have constrained chance to deal with themselves. Countless them in the nation invest the greater part of their energy dealing with patients in emergency clinics. Subsequently, once in a while they might be discouraged when they see the

Strictly Ballroom Belonging

Having a place or not having a place is the inclination of being incorporated or avoided by a specific gathering, individual, spot or network. This is passed on very well in the film â€Å"strictly ballroom† created by Baz Luhrmen and the image book â€Å"The Sneetches† by Dr suess. In stictly assembly hall, this idea is essentially passed on by Scott Hastings battle with the move network to discover where he genuinely has a place. In ‘The Sneetches is alludes to the gathering having a place of the two seperate sorts of sneetches and their excursion to have a place as a network and exclusively. In â€Å"Strictly Ballroom† the starting scenes of the film Baz built up the regular, rich climate of the formal dancing world. Utilizing a mix of strategies, for example, effortless music, the conventional â€Å"blue Danube†, the outline and exceptionally enlightened shots of the artists dancing, dressing in misrepresented and gaudy ensembles, hair and make-up alongside enormous gooey grin and outward appearances as they move nimbly around the floor. Be that as it may, the feeling of network and having a place is before long cracked as it changes to a fix of Shirley shouting â€Å"Come on group 100!†. Scott and Liz become hindered in by another move couple and Scott decides to move his own means to circumvent, going astray from the typical advances that the adjudicators are customized to. The response of the appointed authorities and crowd shows that Scott's activities were not excepted by the alliance. Barry fife hangs over to Lez and murmurs â€Å"what the hellfire is going on here?† speaking to the stun of the appointed authorities. The prohibitive and serious nature of the â€Å"strictly ballroom† world is additionally appeared by Barry Fife, the leader of the move league who is passed on as a monstrous, abhorrent man controlling the move network. His nonsensical and controlling nature is underlined in the area of the main rivalry here we see there is no obvious steadfastness or having a place since when Ken and Pam cheat and shut out Scott and Liz in the corner they are remunerated are as yet given in front of the rest of the competition. Unmistakably passing on that the individual or gathering who wishes to have a place with this particular world must be set up to follow requests and adjust to their guidelines. To locate a genuine feeling of having a place inside a set world, one must have the fortitude to remain consistent with themselves. The heroes in this film Scott and Fran bit by bit challenge and reclassify the request for this network. Scott â€Å"the best in class star† of the dance hall world gets baffled with just moving the old conventional advances and needs authorization to present his own sort of steps. In the showed story ‘The Sneetches' represented and composed by Dr. Suess he shows people inside a gathering frantically looking for endorsement of another gathering they are made to accept are progressively first class. Not having a place may not be a changeless state. Doug, Scott's dad is depicted as an extremely tranquil contract who once in a while talks. He is regularly found in the move studio extemporizing his developments, which is like what Scott did before on in the film. Anyway he is frequently caught through a high point shot and constrained lighting causing it to seem like the crowd is subtly disregarding his moving which nobody is intended to see. This picture proposes that he also needs to communicate his enthusiasm through move, yet he can possibly do it in obscurity alone as though he is excessively terrified of going up against the individuals who restrict it. The haziness around Doug lets him communicate as an individual and shed his past adjusted life. This is plainly passing on the primary thought, that it is imperative to have a place however just if an individual would first be able to have a place with oneself.

Gold Coast Convention Centre

Question: Examine about the Gold Coast Convention Center. Answer: Presentation Accommodation industry has become an exceptionally serious industry in present situation. It is necessitated that the associations by and by working in such an industry ought to have appropriate data related with the rivalries and the conduct of the individuals accessible in the market. It is necessitated that legitimate arrangement of market examination ought to be done and the organizations should deal with the requirements and needs of the necessities and needs of the individuals accessible in the individuals accessible in the market. Doing so will assist Gold With drifting to guarantee that it could accomplish upper hand. It is necessitated that the prime focal point of the organization ought to stay with the prerequisites of the clients since they are the key angles connected with any organization which helps in its encouraging and guarantees to give compelling arrangement of emotionally supportive network for the organization. The report is created in connection with the Gold C oast Convention and the Exhibition community in order to give legitimate arrangement of heading which it could take in offering fitting types of assistance to the clients. This report will help in the dynamic parts of the organization with the impact of which it will have the option to proceed onward the way of accomplishment and maintainability. Key Issue Attached With Gold Coast Covention Center Gold Coast Convention and The Exhibition Center is situated on the Gold Coast Highway in the Broadbeach in Queensland (Safari, 2014). The setting which gives world class administrations was opened on 29 June 2004 in which organization contributed $167 million. The scene is overseen by Star Entertainment Group. Proceeding to offer types of assistance from the past time organization has confronted a few issues which has influenced the association in the market (Sui, et. al., 2010). It is necessitated that these issues ought to be assessed with the goal that proper methodologies could be created and fitting arrangement of administrations could be profited to it. Consequently, the issues looked by the association are: Association was missing to assemble suitable documentation and the check framework. Breaking down the case it very well may be assessed that no legitimate arrangement of documentations were accessible with the organization (Wilburn, 2007). Individuals accessible at the upper level administration were not having successful checking aptitudes as they feel that representatives were preparing the work with quality and in the wake of evaluating it appeared that no compelling or quality administrations were being given by the representatives to the clients because of which clients going to the association stayed unsatisfied. Organization was not having consistency in the creation perspectives (Amorim, et. al., 2014). Gold Coast Center is working in the food and drinks showcase in which it is necessitated that the association ought to figure out how to keep up the nature of the food and refreshments with the goal that clients could stay sound and fit. With the assistance of the contextual analysis it could be assessed that measures for keeping up the nature of the food and drinks were not being kept up by the association n and there were a large number of the whines made by the clients in connection with the nature of the food (Berman, et. al., 2011). There were a few clients who experienced food contamination in the wake of eating the food at Gold Coast Convention Center which shows that the food which is being served by the organization was not beneficial enough to be eaten. With the assistance of the contextual analysis it was assessed that the food cleanliness was not being kept up by the organization. There were different individuals who whined about the cleanliness factors as the zone where the food was being served was not spotless. Such kind of angle directly affects the mentality of the clients and furthermore influences the strength of the individuals accessible in the market (Burnett, 2009). It could be assessed from the data profited for the situation study that the cleanliness viewpoints were not in the least being overseen by the association. It was likewise being said that the expense of the food was exceptionally high. Individuals going to the Gold Coast Convention Center additionally whined that the expense of the food which is being profited over yonder were high. It influenced the pocket of the individuals as individuals coming to have supper or drinks wants to visit the spots where the expense of the nourishments and administrations stay low which ought not influence the pocket of the individuals, this is another motivation behind why individuals don't want to visit Gold Coast Convention Center (C. Harris, Daunt, 2013). Perfect Percentage Of The Food Sales Benchmarking is one of the most significant perspectives connected with the associations in present situation. For the organization like Gold Cost Convention Center which is working in such a high serious market it is necessitated that it should center upon the perfect level of the food deals so it could set the principles with the assistance of which it could set certain benchmarks and could keep on progressing in the direction of to achieve the set targets and figure out how to perform as indicated by the benchmarks which are set by the organization (Chahal, 2010). As indicated by the bookkeeping hypotheses and the guidelines if an organization working in the food business has 30% of the food cost, 35% of the cost work and 20% of the overhead cost then the structure is being viewed as in great money related conditions. Going to the drinks if the organizations refreshments cost is in the middle of the 22% to the 28% then the firm is being viewed as in the great money related conditions and is named to win benefit from the market. It is being assessed that in the event that there will be decrease in the cost rate, at that point it will bring about giving the higher gross benefit to the organization and the other way around (Gummerus, 2010). Figuring of the perfect level of the food deals based on the information profited for the situation study: % of the food cost = Cost of the offer of the food/offer of the food = 315,000/510,000 = 61.76% % Cost of the Beverages = Cost of the Beverage deals/refreshment deals = 112,000/290,000 = 38.62% Contrasting the outcomes and the modern principles it could be investigated that the % of the expense of the food and the % of the drink cost of Gold Coast Convention Center are excessively high because of which the offer of the association is being influenced as individuals don't like to buy the items and administrations from the associations which gives the nourishments and refreshments over the value which are set by the business measures (Khosrow-Pour, et. al., 2007). To set benchmarks for the organization it is necessitated that the Australian Taxation gauges ought to be followed and legitimate arrangement of investigation ought to be done as such as to give appropriate arrangement of help to the organization in settling on proper arrangement of choices: For the situation study all out expense of the products deals are: 315000 + 112000 = 427,000 All out deal turnover given for the situation study is 800,000 In this way 427,000/800,000 *100 = 53.37 % Contrasting the assessed figure and the business proportion it could be assessed that it is too high which could cause an immediate effect on the working of the organization (Safari, 2014). It is required that for such angles immediate and powerful arrangement of moves ought to be made in order to guarantee that the organization could keep on working in the serious condition and could pull in successful number of clients towards it. Stock Management Controls Which Should Be Taken Into Consideration By The Organization Stock administration is one of the most significant angles for the associations working in the food and refreshments industry. In the food business associations works with the transitory items and administrations because of which it becomes significant that these organizations ought to build up their concentration upon the stock administration and ought to guarantee to keep the reputation of the items and administrations accessible and the measure of the equivalent required in not so distant future (Sui, et. al., 2010). To guarantee that the stock of the items and administrations could be overseen in a legitimate way association should center upon five angles which are buying, getting and giving, planning and selling. These five angles will offer an appropriate help to the associations in present situation. Buying There are five variable connected with the association which will help in creating successful buying capacities for the association (Wilburn, 2007). It is necessitated that the association ought to want to buy the correct item in the correct amount from the perfect spot at the privilege from the correct sources. There are sure advances which will help the association in settling on fitting choices with respect to the buying parts of the association: It is necessitated that the association should assign the buy individual or the purchaser. It is necessitated that the association ought to have an assigned worker who ought to have what it takes of investigating the buy prerequisites and overseeing stock of the stocks so track record of the item required or the items organization has with it could be kept in a proper way (Amorim, et. al., 2014). It is necessitated that the item particular ought to be built up by the association according to the menu which is being set of the association. This procedure will help the association in recognizing which item ought to be bought by the organization or which ought not be bought. It is necessitated that the association ought to build up the stock level which it has in right now (Berman, et. al., 2011). With the assistance of such action organization will get the possibility of the amount of the stock required by the association to buy it and the amount of the item organization has with it. There are different arrangement of issues which are connected with the buy viewpoints which directly affect the buy choices of the association a portion of the issues which directly affect the acquisition of the association are payoffs in which individuals accessible at the sellers side robbery the buys because of which lesser sum is being reached to the or

Student Learning Objectives Using SLOs to Improve Instruction and Advance Student Growth

Student Learning Objectives Using SLOs to Improve Instruction and Advance Student Growth Student Learning Objectives are carefully planned goals for your students' performance. In this course, educators will learn how to plan and implement SLOs in order to strengthen your practice and improve student learning. Updated on: February 12, 2019 SLOs? What are they? How do I use them in my classroom? Student Learning Objectives are carefully planned goals for your students’ performance and progress over a given time. Learn a process for planning and implementing SLOs to strengthen your practice and improve student learning. This course complements CTAC's face-to-face training and serves as training for K-12 teachers in districts implementing SLOs. “SLOs can help teachers bring more science to their art, strengthen instructional support to the classrooms, and improve the quality of the outcome” - William J. Slotnik. This course includes videos of authentic classroom practice, a coach to provide personalized feedback, and flexibility to engage with the content on your schedule. Practical guidance from an expert on instructional coaching Convenient, flexible online format 45 PD hours or 3 graduate credits Skills You'll Learn In this course, you'll learn how to create SLOs and their benefits to teachers, students, and schools You will learn how and SLO is put together and how its parts form a cohesive goal for student learning, and the importance of identifying strategies that are appropriate to the specific learning content you want your students to master. SIGN UP NOW Course Overview Explore the complete syllabus   About the Instructor William Slotnik is the Founder and Executive Director of the Community Training and Assistance Center (CTAC). He has overseen the growth of CTAC into one of the nation’s foremost providers of technical assistance, evaluation services, and public policy support in the fields of education and community development. CTAC annually assists more than 90 organizations, school districts and state departments of education. Under his leadership, CTAC introduced Student Learning Objectives (SLOs) nationally through a landmark partnership with the Denver Public Schools and Denver Classroom Teachers Association. CTAC has more than 16 years of experience serving as the nation’s leading technical assistance provider, practitioner, and evaluator of SLOs. Mr. Slotnik has provided extensive assistance to state education agency leaders, superintendents, state and local boards of education, unions and leadership teams throughout the United States. He has guided and supported the development of replicable systems of assessment, evaluation, and accountability to determine the performance and effectiveness of school districts, school by school, classroom by classroom, teacher by teacher, and student by student. He has led technical assistance and evaluation initiatives nationally which address such issues as student learning objectives, teacher and administrator evaluation, systemic reform, compensation reform, professional development, state-to-school and state-to-district interventions, and transforming underperforming schools, as well as leadership development and organizational capacity in community-based organizations. He has been the lead or co-lead author of numerous evaluations (including It’s More Than Money, Catalyst for Change, and Pathway to Results, the first comprehensive, longitudinal evaluative studies of the impact of SLOs and performance-based systems on student achievement, teacher effectiveness and systems change) and articles, and regularly provides briefings to members of the U.S. Congress, the U.S. Department of Education, state legislatures and departments of education, and the media. */ PCG Education PCG’s Education practice offers consulting services and technology solutions that help teachers, schools, school districts, and state education agencies/ministries of education to promote student success, improve programs and processes, and optimize resources. PCG offers more than 50 online professional development courses to help teachers improve their skills, grow their careers and more effectively help and support their students.   View the Complete Professional Development Catalog

TLS TRANSPORT LAYER SECURITY - Free Essay Example

v TRANSPORT LAYER SECURITY TLS is a successor to Secure Sockets Layer protocol. TLS provides secure communications on the Internet for such things as e-mail, Internet faxing, and other data transfers. There are slight differences between SSL 3.0 and TLS 1.0, but the protocol remains significantly the same. It is good idea to keep in mind that TLS resides on the Application Layer of the OSI model. This will save you a lot of frustrations while debugging and troubleshooting encryption troubles connected to TLS. v TLS Features TLS is a generic application layer security protocol that runs over reliable transport. It provides a secure channel to application protocol clients. This channel has three primary security features: 1. Authentication of the server. 2. Confidentiality of the communication channel. 3. Message integrity of the communication channel. Optionally TLS can also provide authentication of the client. In general, TLS authentication uses public key based digital signatures backed by certificates. Thus, the server authenticates either by decrypting a secret encrypted under his public key or by signing an ephemeral public key. The client authenticates by signing a random challenge. Server certificates typically contain the servers domain name. Client certificates can contain arbitrary identities. The Handshake Protocols The TLS Handshake Protocol allows the server and client to authenticate each other and to negotiate an encryption algorithm and cryptographic keys before data is exchanged. In a typical scenario, only the server is authenticated and its identity is ensured while the client remains unauthenticated. The mutual authentication of the servers requires public key deployment to clients. Provide security parameters to the record layer. A Client sends a ClientHello message specifying the highest TLS protocol version it supports, a random number, a list of suggested cipher suites and compression methods. The Server responds with a ServerHello, containing the chosen protocol version, a random number, cipher, and compression method from the choices offered by the client. The Server sends its Certificate (depending on the selected cipher, this may be omitted by the Server). The server may request a certificate from the client, so that the connection can be mutually authenticated, using a Certificate Request. The Server sends a ServerHelloDone message, indicating it is done with handshake negotiation. The Client responds with a ClientKeyExchange which may contain a PreMasterSecret, public key, or nothing. (Again, this depends on the selected cipher). The Handshake protocol provides a number of security functions. Such as Authentication, Encryption, Hash Algorithms Authentication A certificate is a digital form of identification that is usually issued by a certification authority (CA) and contains identification information, a validity period, a public key, a serial number, and the digital signature of the issuer. For authentication purposes, the Handshake Protocol uses an X.509 certificate to provide strong evidence to a second party that helps prove the identity of the party that holds the certificate and the corresponding private key. Encryption There are two main types of encryption: symmetric key (also known as Private Key) and asymmetric key (also known as public key. TLS/SSL uses symmetric key for bulk encryption and public key for authentication and key exchange. Hash Algorithms A hash is a one-way mapping of values to a smaller set of representative values, so that the size of the resulting hash is smaller than the original message and the hash is unique to the original data. A hash is similar to a fingerprint: a fingerprint is unique to the individual and is much smaller than the original person. Hashing is used to establish data integrity during transport. Two common hash algorithms are Message Digest5 (MD5) produce 128-bit hash value and Standard Hash Algorithm1 (SHA-1) produce 160-bit value. The Change Cipher Spec The Change Cipher Spec Protocol signals a transition of the cipher suite to be used on the connection between the client and server. This protocol is composed of a single message which is encrypted and compressed with the current cipher suite. This message consists of a single byte with the value1. Message after this will be encrypted and compressed using the new cipher suite. The Alert The Alert Protocol includes event-driven alert messages that can be sent from either party. the session is either ended or the recipient is given the choice of whether or not to end the session. Schannel SSP will only generate these alert messages at the request of the application. The Record Layer/Protocol The TLS record protocol is a simple framing layer with record format as shown below: struct { ContentType type; ProtocolVersion version; uint16 length; opaque payload[length]; } TLSRecord; As with TLS, data is carried in records. In both protocols, records can only be processed when the entire record is available. The Record Layer might have four functions: It fragments the data coming from the application into manageable blocks (and reassemble incoming data to pass up to the application). Schannel SSP does not support fragmentation at the Record Layer. It compresses the data and decompresses incoming data. Schannel SSP does not support compression at the Record Layer. It applies a Message Authentication Code (MAC), or hash/digest, to the data and uses the MAC to verify incoming data. It encrypts the hashed data and decrypts incoming data. Application Protocol TLS runs on application protocol such as HTTP, FTP, SMTP, NNTP, and XMPP and above a reliable transport protocol, TCP for example. While it can add security to any protocol that uses reliable connections (such as TCP), it is most commonly used with HTTP to form HTTPS. HTTPS is used to secure World Wide Web pages for applications such as electronic commerce and asset management. These applications use public key certificates to verify the identity of endpoints. TSL/ SSL Security The client may use the CAs public key to validate the CAs digital signature on the server certificate. If the digital signature can be verified, the client accepts the server certificate as a valid certificate issued by a trusted CA. The client verifies that the issuing Certificate Authority (CA) is on its list of trusted Cas. The client checks the servers certificate validity period. The authentication process stops if the current date and time fall outside of the validity period. v IPSec IPSec acts at the network layer, protecting and authenticating IP packets between participating IPSec devices (peers), such as PIX Firewalls, Cisco routers, Cisco VPN 3000 Concentrators, Cisco VPN Clients, and other IPSec-compliant products. IPSec is not bound to any specific encryption or authentication algorithms, keying technology, or security algorithms. IPSec is a framework of open standards. Because it isnt bound to specific algorithms, IPSec allows newer and better algorithms to be implemented without patching the existing IPSec standards. IPSec provides data confidentiality, data integrity, and data origin authentication between participating peers at the IP layer. IPSec is used to secure a path between a pair of gateways, a pair of hosts, or a gateway and a host. Some of the standard algorithms are as follows: Data Encryption Standard (DES) algorithmUsed to encrypt and decrypt packet data. 3DES algorithmeffectively doubles encryption strength over 56-bit DES. Advanced Encryption Standard (AES)a newer cipher algorithm designed to replace DES. Has a variable key length between 128 and 256 bits. Cisco is the first industry vendor to implement AES on all its VPN-capable platforms. Message Digest 5 (MD5) algorithmUsed to authenticate packet data. Secure Hash Algorithm 1 (SHA-1)Used to authenticate packet data. Diffie-Hellman (DH)a public-key cryptography protocol that allows two parties to establish a shared secret key used by encryption and hash algorithms (for example, DES and MD5) over an insecure communications channel. IPSec security services provide four critical functions: Confidentiality (encryption)the sender can encrypt the packets before transmitting them across a network. By doing so, no one can eavesdrop on the communication. If intercepted, the communications cannot be read. Data integritythe receiver can verify that the data was transmitted through the Internet without being changed or altered in any way. Origin authenticationthe receiver can authenticate the packets source, guaranteeing and certifying the source of the information. Anti-replay protectionAnti-replay protection verifies that each packet is unique, not duplicated. IPSec packets are protected by comparing the sequence number of the received packets and a sliding window on the destination host, or security gateway. Late and duplicate packets are dropped. v How IPSec works The goal of IPSec is to protect the desired data with the needed security services. IPSecs operation can be broken into five primary steps: Define interesting trafficTraffic is deemed interesting when the VPN device recognizes that the traffic you want to send needs to be protected. IKE Phase 1This basic set of security services protects all subsequent communications between the peers. IKE Phase 1 sets up a secure communications channel between peers. IKE Phase 2IKE negotiates IPSec security association (SA) parameters and sets up matching IPSec SAs in the peers. These security parameters are used to protect data and messages exchanged between endpoints. Data transferData is transferred between IPSec peers based on the IPSec parameters and keys stored in the SA database. IPSec tunnel terminationIPSec SAs terminate through deletion or by timing out. TASK 1(b) IPSecs advantage over TLS: It has more plasticity on choosing the Authentication mechanisms (like the Pre Shared Key), and therefore makes it hard for the attacker to do man in the middle.TLS is based only on Public key and with tools, its possible to do man in the Middle breaking TLS. Going one step down the OSI stack, IP Security (IPSec) guarantees the data privacy and integrity of IP packets, regardless of how the application used the sockets. This means any application, as long as it uses IP to send data, will benefit from the underlying secure IP network. Nothing has to be rewritten or modified; it even is possible that users wont be aware their data is being processed through encrypting devices. This solution is the most transparent one for end users and the one most likely to be adopted in the future in the widest range of situations. The main drawback of IPSsec lies in its intrinsic infrastructural complexity, which demands several components to work properly. IPSec deployment must be planned and carri ed out by network administrators, and it is less likely to be adopted directly by end users. TLSs advantage over IPSec: The advantage of TLS over generic application-level security mechanisms is the application no longer has the burden of encrypting user data. Using a special socket and API, the communication is secured. The problem with TLS is an application wishing to exploit its functionality must be written explicitly in order to do so (see Resources). Existing applications, which constitute the majority of data producers on the Internet, cannot take advantage of the encryption facilities provided by TLS without being rewritten. Think of the common applications we use everyday: mail clients, web browsers on sites without HTTPS, IRC channels, peer-to-peer file sharing systems and so on. Also, most network services (such as mail relays, DNS servers, routing protocols) currently run over plain sockets, exchanging vital information as clear text and only seldomly adopting application-level counter-measures (mostly integrity checks, such as MD5 sums). v IGMP IGMP is a protocol used by IP hosts, and adjacent multicast network devices to identify their memberships. If they are part of the same multicast group they communicate with each other. ICMP communicates 1 to 1.IGMP communicates 1 to many. v Establish Multicast group We describe a distributed architecture for managing multicast addresses in the global Internet. A multicast address space partitioning scheme is proposed, based on the Unicast host address and a per-host address management entity. By noting that port numbers are an integral part of end-to-end multicast addressing we present a single, unified solution to the two problems of dynamic multicast address management and port resolution. We then present a framework for the evaluation of multicast address management schemes, and use it to compare our design with three approaches, as well as a random allocation strategy. The criteria used for the evaluation are blocking probability and consistency, address acquisition delay, the load on address management entities, robustness against failures, and processing and communications overhead. With the distributed scheme the probability of blocking for address acquisition is reduced by several orders of magnitude, to insignificant levels, while consi stency is maintained. At the same time, the address acquisition delay is reduced to a minimum by serving the request within the host itself. It is also shown that the scheme generates much less control traffic, is more robust against failures, and puts much less load on address management entities as compared with the other three schemes. The random allocation strategy is shown to be attractive primarily due to its simplicity, although it does have several drawbacks stemming from its lack of consistency (addresses may be allocated more than once) The Routing and Remote Access administrative tool is used to enable routing on a Windows 2000 server that is multihomed (has more than one network card). Windows 2000 professional cannot be a router. The Routing and Remote Access administrative tool or the route command line utility can be used to con a static router and add a routing table. A routing table is required for static routing. Dynamic routing does not require a routing table since the table is built by software. Dynamic routing does require additional protocols to be installed on the computer. When using the Routing and Remote Access tool, the following information is entered: * Interface Specify the network card that the route applies to which is where the packets will come from. * Destination Specify the network address that the packets are going to such as 192.168.1.0. * Network Mask The subnet mask of the destination network. * Gateway The IP address of the network card on the network that is cond to forward the packets such as 192.168.1.1. * Metric The number of routers that packets must pass through to reach the intended network. If there are more than 1, the Gateway address will not match the network address of the destination network. Dynamic Routing Windows 2000 Server supports Network Address Translation (NAT) and DHCP relay agent. Three Windows 2000 supported Dynamic routing protocols are: * Routing Information Protocol (RIP) version 2 for IP * Open Shortest Path First (OSPF) * Internet Group Management Protocol (IGMP) version 2 with router or proxy support. The Routing and Remote Access tool is used to install, con, and monitor these protocols and routing functions. After any of these dynamic routing protocols are installed, they must be cond to use one or more routing interfaces. v Protocol Independent Multicast (PIM): This document describes an architecture for efficiently routing to multicast groups that may span wide-area (and inter-domain) internets. We refer to the approach as Protocol Independent Multicast (PIM) because it is not dependent on any particular unicast routing protocol. The most significant innovation in this architecture is the efficient support of sparse, wide area groups. This sparse mode (SM) of operation complements the traditional { dense-mode} approach to multicast routing for campus networks, as developed by Deering [2][3] and implemented previously in MOSPF and DVMRP [4][5]. These traditional dense mode multicast schemes were intended for use within regions where a group is widely represented or bandwidth is universally plentiful. However, when group members, and senders to those group members, are distributed sparsely across a wide area, these schemes are not efficient; data packets (in the case of DVMRP) or membership report information (in the case of MOSPF) are occasionally sent over many links that do not lead to receivers or senders, respectively. The purpose of this work is to develop a multicast routing architecture that efficiently establishes distribution trees even when some or all members are sparsely distributed. Efficiency is evaluated in terms of the state, control message, and data packet overhead required across the entire network in order to deliver data packets to the members of the group. The Protocol Independent Multicast (PIM) architecture: maintains the traditional IP multicast service model of receiver-initiated membership; can be cond to adapt to different multicast group and network characteristics; is not dependent on a specific unicast routing protocol; uses soft-state mechanisms to adapt to underlying network conditions and group dynamics. The robustness, flexibility, and scaling properties of this architecture make it well suited to large heterogeneous inter-networks. This document describes an architecture for efficiently routing to multicast groups that may span wide-area (and inter-domain) internets. We refer to the approach as Protocol Independent Multicast (PIM) because it is not dependent on any particular unicast routing protocol. The most significant innovation in this architecture is the efficient support of sparse, wide area groups. This sparse mode (SM) of operation complements the traditional { dense-mode} approach to multicast routing for campus networks, as developed by Deering [2][3] and implemented previously in MOSPF and DVMRP [4][5]. These traditional dense mode multicast schemes were intended for use within regions where a group is widely represented or bandwidth is universally plentiful. However, when group members, and senders to those group members, are distributed sparsely across a wide area, these schemes are not efficient; data packets (in the case of DVMRP) or membership report information (in the case of MOSPF) are occas ionally sent over many links that do not lead to receivers or senders, respectively. The purpose of this work is to develop a multicast routing architecture that efficiently establishes distribution trees even when some or all members are sparsely distributed. Efficiency is evaluated in terms of the state, control message, and data packet overhead required across the entire network in order to deliver data packets to the members of the group. A user of an internet- connected pc, Adam; send an email message to another internet connected pc user beryl. 1. Outlinethe function of four internet host that would normally be involved be involved in this task. . : 1. Adams Computer : :2. Server of Adams Internet Service Provider : : 3. Server of Beryls Internet Service Provider: :4. Beryls Computer : . This program allows you to build and deal with a large mailing list, and to create modified messages from predefined templates while sending. It lets you define multiple independent SMTP server connections and will utilize the latest in multithreading technology, to send emails to you as fast as it is possible. You can use all the standard message formats like plain text, HTML or even create a rich content message in the Microsoft Outlook Express and export it into the program. The interface of the program is very simple and easy to learn nearly all functions can be performed using hotkeys on the keyboard. E-mail is a growing source of an enterprises records and needs to be treated as any written memo, letter or report has been treated. The information in e-mail has the potential to add to the enterprises knowledge assets, from interactions with the users or customers in the enterprise to interactions with colleagues overseas. 2. List the internet protocol which would be used in this task. Internet Protocol (IP) is packet-based protocol that allows dissimilar hosts to connect to each other for the purpose of delivering data across the resulting networks. Applications combine IP with a higher- level protocol called Transport Control Protocol (TCP), which establishes a virtual connection between a destination and a source. IP by itself is something like the postal system. It allows you to address a package and drop it in the system, but theres no direct link between you and the recipient. . : 1. HTTP : :2. IMAP(Version 4): : 3.SMTP : :4.POP (Version 3) : . HTTP (Hyper-Text Transfer Protocol) is the underlying protocol used by the World Wide Web. HTTP defines how messages are formatted and transmitted, and what actions Web servers and browsers should take in response to various commands. HTTP/1.0, as defined by RFC 1945 [6], improved the protocol by allowing messages to be in the format of MIME-like messages, containing meta information about the data transferred and modifiers on the request/response semantics. IMAP4 (Internet Message Access Protocol) A mail protocol that provides management of received messages on a remote server. The user can review headers, create or delete folders/mailboxes and messages, and search contents remotely without downloading. It includes more functions than the similar POP protocol. POP3 (Post Office Protocol 3) is the most recent version of a standard protocol for receiving e-mail. POP3 is a client/server protocol in which e-mail is received and held for you by your Internet server. Periodically, you (or your client e-mail receiver) check your mail-box on the server and download any mail, probably using POP3. This standard protocol is built into most popular e-mail products, such as Eudora and Outlook Express. Its also built into the Netscape and Microsoft Internet Explorer browsers. POP3 is designed to delete mail on the server as soon as the user has downloaded it. However, some implementations allow users or an administrator to specify that mail be saved for some period of time. POP can be thought of as a store-and-forward service. SMTP (Simple Mail Transfer Protocol) is a TCP/IP protocol used in sending and receiving e-mail. However, since it is limited in its ability to queue messages at the receiving end, it is usually used with one of two other protocols, POP3 or IMAP, that let the user save messages in a server mailbox and download them periodically from the server. In other words, users typically use a program that uses SMTP for sending e-mail and either POP3 or IMAP for receiving e-mail. On Unix-based systems, send mail is the most widely-used SMTP server for e-mail. A commercial package, Send mail, includes a POP3 server. Microsoft Exchange includes an SMTP server and can also be set up to include POP3 support. SMTP usually is implemented to operate over Internet port 25. An alternative to SMTP that is widely used in Europe is X.400. Many mail servers now support Extended Simple Mail Transfer Protocol (ESMTP), which allows multimedia files to be delivered as e-mail. 3. Taking the case that the message include the text please find attached abstract and 1. as well as in MS-Word format and an attachment in jpeg, list format of the send mail messages. .. : 1. MIME : .. MIME (Multi-Purpose Internet Mail Extensions) is an extension of the original Internet e-mail protocol that lets people use the protocol to exchange different kinds of data files on the Internet: audio, video, images, application programs, and other kinds, as well as the ASCII text handled in the original protocol, the Simple Mail Transport Protocol (SMTP). In 1991, Nathan Borenstein of Bellcore proposed to the IETF that SMTP be extended so that Internet (but mainly Web) clients and servers could recognize and handle other kinds of data than ASCII text. As a result, new file types were added to mail as a supported Internet Protocol file type. Servers insert the MIME header at the beginning of any Web transmission. Clients use this header to select an appropriate player application for the type of data the header indicates. Some of these players are built into the Web client or browser (for example, all browsers come with GIF and JPEG image players as well as the ability to handle HTML files). 4. How would received message differ the sent messages? The email address that receives messages sent from users who click reply in their email clients. Can differ from the fromaddress which can be an automated or unmonitored email address used only to send messages to a distribution list. Reply-to should always be a monitored address. v IPv4: Internet Protocol (Version 4) The Internet Protocol (IP) is a network-layer (Layer 3) protocol in the OSI model that contains addressing information and some control information to enable packets being routed in network. IP is the primary network-layer protocol in the TCP/IP protocol suite. Along with the Transmission Control Protocol (TCP), IP represents the heart of the Internet protocols. IP is equally well suited for both LAN and WAN communications. IP (Internet Protocol) has two primary responsibilities: providing connectionless, best-effort delivery of datagrams through a network; and providing fragmentation and reassembly of datagrams to support data links with different maximum-transmission unit (MTU) sizes. The IP addressing scheme is integral to the process of routing IP datagrams through an internetwork. Each IP address has specific components and follows a basic format. These IP addresses can be subdivided and used to create addresses for sub networks. Each computer (known as host) on a TCP/IP network is assigned a unique logical address (32-bit in IPv4) that is divided into two main parts: the network number and the host number. The network number identifies a network and must be assigned by the Internet Network Information Center (InterNIC) if the network is to be part of the Internet. An Internet Service Provider (ISP) can obtain blocks of network addresses from the InterNIC and can itself assign address space as nece ssary. The host number identifies a host on a network and is assigned by the local network administrator. v IPv6 (IPng): Internet Protocol version 6 IPv6 is the new version of Internet Protocol (IP) based on IPv4, a network-layer (Layer 3) protocol that contains addressing information and some control information enabling packets to be routed in the network. There are two basic IP versions: IPv4 and IPv6. IPv6 is also called next generation IP or IPng. IPv4 and IPv6 are de-multiplexed at the media layer. For example, IPv6 packets are carried over Ethernet with the content type 86DD (hexadecimal) instead of IPv4s 0800. The IPv4 is described in separate documents. IPv6 increases the IP address size from 32 bits to 128 bits, to support more levels of addressing hierarchy, a much greater number of addressable nodes, and simpler auto-configuration of addresses. IPv6 addresses are expressed in hexadecimal format (base 16) which allows not only numerals (0-9) but a few characters as well (a-f). A sample ipv6 address looks like: 3ffe: ffff: 100:f101:210:a4ff:fee3:9566. Scalability of multicast addresses is introduced. A new type of address called an any cast address is also defined, to send a packet to any one of a group of nodes. Two major improvements in IPv6 vs. v4: * Improved support for extensions and options IPv6 options are placed in separate headers that are located between the IPv6 header and the transport layer header. Changes in the way IP header options are encoded to allow more efficient forwarding, less stringent limits on the length of options, and greater flexibility for introducing new options in the future. Flow labeling capability A new capability has been added to enable the labeling of packets belonging to particular traffic flows for which the sender requests special handling, such as non-default Quality of Service or real-time service. v Comparison between IPv6 with IPv4 Data structure of IPv6 has modified as follows: Header length field found in IPv4 is removed in IPv6. Type of Service field found in IPv4 has been replaced with Priority field in IPv6. Time to live field found in IPv4 has been replaced with Hop Limit in IPv6. Total Length field has been replaced with Payload Length field Protocol field has been replaced with Next Header field Source Address and Destination Address has been increased from 32-bits to 128-bits. v Major Similarities IPv6 with IPv4 Both protocols provide loopback addresses. IPv6 multicast achieves the same purpose that IPv4 broadcast does. Both allow the user to determine datagram size, and the maximum number of hops before termination. Both provide connectionless delivery service (datagrams routed independently). Both are best effort datagram delivery services. v Major Differences between IPv6 with IPv4 IPv6 host to IPv6 host routing via IPv4 network: Here, IPv6 over IPv4 tunneling is required to send a datagram. IPv6 packets are encapsulated within IPv4 packets, allowing travel over IPv4 routing infrastructures to reach an IPv6 host on the other side of the .IPv6 over IPv4 tunnel. The two different types of tunneling are automatic and cond. For a cond tunnel, the IPv6 to IPv4 mappings, at tunnel endpoints, have to be manually specified. Automatic tunneling eases tunneling, but nullifies the advantages of using the 128-bit address space. IPv6 host to IPv4 host and vice versa: The device that converts IPv6 packets to IPv4 packets (a dual IP stack/ dual stack router) allows a host to access both IPv4 and IPv6 resources for communication. A dual IP stack routes as well as converts between IPv4 and IPv6 datagrams ICMP: IPv6 enhances ICMP with ICMPv6. The messages are grouped as informational and error. An ICMPv6 message can contain much more information. The rules for message handling are stricter. ICMPv6 uses the Neighbor Discovery Protocol. New messages have been added also. Absence of ARP RARP: Since IPv6 addresses are longer, they Encapsulate the hardware address along with the IP address in the IPv6 address. The 64 most significant bits identify a specific network interface. The suffix easily encodes the physical address. DNS: A major problem arises when obtaining the domain name of an IPv6 address over existing IPv4 DNS infrastructure. Current 32-bit name servers cannot handle name-resolution requests for 128-bit addresses. However, IETF designers have defined an IPv6 DNS standard, utilizing a DNS called quad A to map domain names for an IPv6 address. The Major difference between IPv4 and IPng is the number of IP addresses. There are just over 4 billion IPv4 addresses. In contrast, there are over 16 billion-billion IPv6 addresses. Subjects IPv4 IPv6 IPv6 Advantages Address Space 4 Billion Addresses 2^128 79 Octillion times the IPv4 address space Configuration Manual or use DHCP Universal Plug and Play (UPnP) with or without DHCP Lower Operation Expenses and reduce error Broadcast / Multicast Uses both No broadcast and has different forms of multicast Better bandwidth efficiency Anycast support Not part of the original protocol Explicit support of anycast Allows new applications in mobility, data center Network Configuration Mostly manual and labor intensive Facilitate the re-numbering of hosts and routers Lower operation expenses and facilitate migration QoS support ToS using DIFFServ Flow classes and flow labels More Granular control of QoS Security Uses IPsec for Data packet protection IPSec becomes the key technology to protect data and control packets Unified framework for security and more secure computing environment Mobility Uses Mobile IPv4 Mobile IPv6 provides fast handover, better router optimization and hierarchical mobility Better efficiency and scalability; Work with latest 3G mobile technologies and beyond. Internet Protocol Version 6 (IPv6), sometimes called the next generation IP protocol (IPng), is designed by the IETF to replace the current version Internet Protocol, IP Version 4 (IPv4), which is now more than twenty years old. Most of todays network uses IPv4 and it is beginning to have problems, for example, the growing shortage of IPv4 addresses. IETF protocol designers have expended a substantial amount of effort to ensure that hosts and routers can be upgraded to IPv6 in a graceful, incremental manner. Transition mechanisms have been engineered to allow network administrators a large amount of flexibility in how and when they upgrade hosts and intermediate nodes. Consequently, IPv6 can be deployed in hosts first, in routers first, or, alternatively, in a limited number of adjacent or remote hosts and routers. Another assumption made by IPv6 transition designers is the likelihood that many upgraded hosts and routers will need to retain downward compatibility with IPv4 devices for an extended time period. It was also assumed that upgraded devices should have the option of retaining their IPv4 addressing. v Key Features: The IPv4 32-bit IP address space cannot accommodate users beyond 2020. 128-bit IPv6 makes the address space too large to be exhausted in the foreseeable future. IPv6 versatility allows for the accommodation of any reasonable address scheme, thus allowing network designers greater flexibility for devices of the future. IPv6 utilizes three (not two) hierarchical addressing levels. The highest is for the globally known public topology, the next involving individual sites, and the third for individual N.I.C. addresses. The inflexibility in IPv4.s header options led to inefficiency. When sending datagrams, an empty header occupied substantial space. IPv6 allows the sender the freedom to select the required extension headers. IPv4 used DHCP to facilitate manual assignment of host addresses. IPv6 alleviates manual assignment problems, allowing new hosts to assign their own addresses. An ICMPv6 message determines if the address is unique. Auto-configuration allows renumbering of hosts. IPv6 allows hosts to be given new prefixes without manual reconfiguration, allowing numerous devices to dynamically attach to a network without incurring the associated administration costs. v INTRUSION DETECTION SYSTEM Intrusion detection systems do exactly as the name suggests: they detect possible intrusions. More specifically, IDS tools aim to detect computer attacks and/or computer misuse, and to alert the proper individuals upon detection. An IDS installed on a network provides much the same purpose as a burglar alarm system installed in a house. Through various methods, both detect when an intruder/attacker/burglar is present, and both subsequently issue some type of warning or alert. Although IDSs may be used in conjunction with firewalls, which aim to regulate and control the flow of information into and out of a network, the two security tools should not be considered the same thing. Using the previous example, firewalls can be thought of as a fence or a security guard placed in front of a house. They protect a network and attempt to prevent intrusions, while IDS tools detect whether or not the network is under attack or has, in fact, been breached. IDS tools thus form an integral part of a thorough and complete security system. They dont fully guarantee security, but when used with security policy, vulnerability assessments, data encryption, user authentication, access control, and firewalls, they can greatly enhance network safety. Intrusion detection systems serve three essential security functions: they monitor, detect, and respond to unauthorized activity by company insiders and outsider intrusion. Intrusion detection systems use policies to define certain events that, if detected will issue an alert. In other words, if a particular event is considered to constitute a security incident, an alert will be issued if that event is detected. Certain intrusion detection systems have the capability of sending out alerts, so that the administrator of the IDS will receive a notification of a possible security incident in the form of a page, email, or SNMP trap. Many intrusion detection systems not only recognize a particular incident and issue an appropriate alert, they also respond automatically to the event. Such a response might include logging off a user, disabling a user account, and launching of scripts. Classification and Types, Techniques of intrusion detection systems There are Four types of IDS 1. Host- Based IDS 2. Network- Based IDS 3. Hybrid Intrusion Detection System 4. Network Node Intrusion Detection System 1) Host-Based IDS (HIDS) Host-based systems were the first type of IDS to be developed and implemented. These systems collect and analyze data that originate on a computer that hosts a service, such as a Web server. Once this data is aggregated for a given computer, it can either be analyzed locally or sent to a separate/central analysis machine. One example of a host-based system is programs that operate on a system and receive application or operating system audit logs. These programs are highly effective for detecting insider abuses. Residing on the trusted network systems themselves, they are close to the networks authenticated users. If one of these users attempts unauthorized activity, host-based systems usually detect and collect the most pertinent information in the quickest possible manner. In addition to detecting unauthorized insider activity, host-based systems are also effective at detecting unauthorized file modification. On the down side, host-based systems can get unwieldy. With several thousand possible endpoints on a large network, collecting and aggregating separate specific computer information for each individual machine may prove inefficient and ineffective. In addition, if an intruder disables the data collection on any given computer, the IDS on that machine will be rendered useless because there is no backup. Possible host-based IDS implementations include Windows NT/2000 Security Event Logs, RDMS audit sources, Enterprise Management systems audit data (such as Tivoli), and UNIX Syslog in their raw forms or in their secure forms such as Solaris BSM; host-based commercial products include Real Secure, ITA, Squire, and Intercepts, to name a few. 1.1. Application-Based IDSs Application-based IDSs are a special subset of host-based IDSs that analyze the events transpiring within a software application. The most common information sources used by application-based IDSs are the applications transaction log files. The ability to interface with the application directly, with significant domain or application-specific knowledge included in the analysis engine, allows application-based IDSs to detect suspicious behavior due to authorized users exceeding their authorization. This is because such problems are more likely to appear in the interaction between the user, the data, and the application. 2) Network-Based IDS (NIDS) As opposed to monitoring the activities that take place on a particular network, Network-based intrusion detection analyzes data packets that travel over the actual network. These packets are examined and sometimes compared with empirical data to verify their nature: malicious or benign. Because they are responsible for monitoring a network, rather than a single host, Network-based intrusion detection systems (NIDS) tend to be more distributed than host-based IDS. Software, or appliance hardware in some cases, resides in one or more systems connected to a network, and is used to analyze data such as network packets. Instead of analyzing information that originates and resides on a computer, network-based IDS uses techniques like packet-sniffing to pull data from TCP/IP or other protocol packets traveling along the network. This surveillance of the connections between computers makes network-based IDS great at detecting access attempts from outside the trusted network. In general, net work-based systems are best at detecting the following activities: * Unauthorized outsider access: When an unauthorized user logs in successfully, or attempts to log in, they are best tracked with host-based IDS. However, detecting the unauthorized user before their log on attempt is best accomplished with network-based IDS. * Bandwidth theft/denial of service: These attacks from outside the network single out network resources for abuse or overload. The packets that initiate/carry these attacks can best be noticed with use of network-based IDS. Some possible downsides to network-based IDS include encrypted packet payloads and high-speed networks, both of which inhibit the effectiveness of packet interception and deter packet interpretation. Examples of network-based IDS include Shadow, Snort!, Dragon, NFR, Real Secure, and Net Prowler. 3) Hybrid Intrusion Detection Systems We have examined the different mechanisms that different IDSs use to signal or trigger alarms on your network. We have also examined two locations that IDSs use to search for intrusive activity. Each of these approaches has benefits and drawbacks. By combining multiple techniques into a single hybrid system, however, it is possible to create an IDS that possesses the benefits of multiple approaches, while overcoming many of the drawbacks. 4) Network Node Intrusion Detection (NNIDS) Basically, this new type (NNIDS) works like typical NIDS, i.e., you take packets from network traffic and analyze them. But it only concerns packets which are addressed to the network node (this is where the name comes from). Another difference between NNIDS and NIDS is that NIDS run in promiscuous mode while NNIDS does not run in promiscuous mode. As not every packet is analyzed the performance of the system will not suffer to much, such systems run very fast as a rule. IDS Techniques There are four basic techniques used to detect intruders: anomaly detection, misuse detection (signature detection), target monitoring, and stealth probes. 1) Anomaly Detection Designed to uncover abnormal patterns of behavior, the IDS establishes a baseline of normal usage patterns, and anything that widely deviates from it gets flagged as a possible intrusion. What is considered to be an anomaly can vary, but normally, any incident that occurs on frequency greater than or less than two standard deviations from the statistical norm raise an eyebrow? An example of this would be if a user logs on and off of a machine 20 times a day instead of the normal 1 or 2. Also, if a computer is used at 2:00 AM when normally no one outside of business hours should have access, this should raise some suspicions. At another level, anomaly detection can investigate user patterns, such as profiling the programs executed daily. If a user in the graphics department suddenly starts accessing accounting programs or compiling code, the system can properly alert its administrators. 2) Misuse Detection or Signature Detection Commonly called signature detection, this method uses specifically known patterns of unauthorized behavior to predict and detect subsequent similar attempts. These specific patterns are called signatures. For host-based intrusion detection, one example of a signature is three failed logins. For network intrusion detection, a signature can be as simple as a specific pattern that matches a portion of a network packet. For instance, packet content signatures and/or header content signatures can indicate unauthorized actions, such as improper FTP initiation. The occurrence of a signature might not signify an actual attempted unauthorized access (for example, it can be an honest mistake), but it is a good idea to take each alert seriously. Depending on the robustness and seriousness of a signature that is triggered, some alarm, response, or notification should be sent to the proper authorities. 3) Target Monitoring These systems do not actively search for anomalies or misuse, but instead look for the modification of specified files. This is more of a corrective control, designed to uncover an unauthorized action after it occurs in order to reverse it. One way to check for the covert editing of files is by computing a cryptographic hash beforehand and comparing this to new hashes of the file at regular intervals. This type of system is the easiest to implement, because it does not require constant monitoring by the administrator. Integrity checksum hashes can be computed at whatever intervals you wish, and on either all files or just the mission/system critical files. 4) Stealth Probes This technique attempts to detect any attackers that choose to carry out their mission over prolonged periods of time. Attackers, for example, will check for system vulnerabilities and open ports over a two-month period, and wait another two months to actually launch the attacks. Stealth probes collect a wide-variety of data throughout the system, checking for any methodical attacks over a long period of time. They take a wide-area sampling and attempt to discover any correlating attacks. In effect, this method combines anomaly detection and misuse detection in an attempt to uncover suspicious activity. v IDS strength and Limitation (weaknesses) Strength of IDSs Current intrusion detection product have some strength that one must be aware of before undertaking an IDS deployment. A strong IDS Security Policy is the HEART of commercial IDS. Provides worthwhile information about malicious network traffic. Can be programmed to minimize damage. A useful tool for ones Network Security Armory. Help identify the source of the incoming probes or attacks. Can collect forensic evidence, which could be used to identify intruders. Similar to a security camera or a burglar alarm. Alert security personnel that someone is picking the lock. Alerts security personal that a Network Invasion maybe in progress. When well cond, provides a certain peace of mind. Part of a Total Defense Strategy infrastructure. Limitations of IDSs Current intrusion detection products have limitations that one must be aware of before undertaking an IDS deployment. Despite vendor claims, most IDSs do not scale well as enterprise-wide solutions. The problems include the lack of sufficient integration with other security tools and sophisticated network management systems, the inability of IDSs to assess and visualize enterprise-level threats, and the inability of organizations to investigate the large number of alarms generated by hundreds or thousands of IDS sensors. Many IDSs create a large number of false positives that waste administrators time and may even initiate damaging automated responses. While almost all IDSs are marketed as real time systems, during heavy network or host activity, IDS may take several minutes before reporting and automatically responding to an attack. IDSs usually cannot detect newly published attacks or variants of existing attacks. This can be a serious problem as 30-40 new computer attacks are posted on the Web every month. An attacker may simply wait for a new attack to be posted and then quickly penetrate a target network. IDSs automated responses are often ineffective against sophisticated attackers. They usually stop novice hackers but, improperly cond, can hurt a network by interrupting legitimate network traffic. IDSs must be monitored by skilled computer security personnel in order to achieve maximum benefits and to understand the significance of what the IDS detects. IDS maintenance and monitoring can use a substantial amount of personnel resources. Many IDSs are not failsafe; that is, they are not well protected from attack or subversion. Many IDSs do not have user interfaces that allow users to spot cooperative or coordinated attacks. v Deploying an IDSs The network intrusion detection systems are in the process of becoming a standard information security safeguard. Together with firewalls and vulnerability scanners, intrusion detection is one of the pillars of modern computer security. While the IDS field is still in motion, several classes of products have formed. Most IDS products loosely fall into network IDS (NIDS) and host IDS (HIDS). Network IDS usually monitors the entire subnet for network attacks against machines connected to it, using a database of attack signatures or a set of algorithms to detect anomalies in network traffic (or both). Alerting and attacks analysis might be handled by a different machine that collects the information from several sensors, possibly correlating IDS alerts with other data. It appears that stateful and protocol-aware signature-based network IDS is still the most widely deployed type of intrusion detection. Simplified management and the availability of inexpensive NIDS appliances together with dominance of network-based attacks are believed to be the primary reasons for that. In this brief article we will review several important mistakes companies make while planning and deploying the IDS systems. In addition to the obvious mistake (0th, I guess :-)) of not evaluating and deploying the IDS technology at all, the issues we cover often decrease or even eliminate the added value the companies might otherwise derive from running an intrusion detection systems. Since we already covered the trivial case of not using an IDS, we discuss is using it without giving it an ability to see all the network traffic. In other words, deploying the network IDS without sufficient infrastructure planning. Network IDS might be deployed on the network choke point (such as right inside or outside the firewall), on the appropriate internal network segment or in the DMZ to see important traffic. For the shared Ethernet-based networks IDS will see all the network traffic within the Ethernet collision domain or subnet and also destined to and from the subnet, but no more. For the switched networks, there are several IDS deployment scenarios which utilize special switch capabilities such as port mirroring or spanning. Additionally, one might procure an IDS integrated with a switch, such as Cisco IDS blade. When the IDS are deployed appropriately, but nobody is looking at the alerts it generates. This one is actually much more common than it seems. It is well-known that IDS is a detection technology, and it never promised to be a shoot-and-forget means of thwarting attacks. While in some cases, the organization might get away with dropping the firewall in place and configuring the policy, such deployment scenario never works for the intrusion detection. If IDS alerts are reviewed only after a successful compromise, the system turns into an overpriced incident response helper tool clearly not what the technology designers had in mind. It still helps, but isnt it better to learn about the attack from the IDS rather then from angry customers? Being the form of monitoring and network audit technology, IDS still (and likely always will, unless its intelligence improves by orders of magnitude) requires a skilled personnel to run. Network IDS is deployed, sees all the traffic and there is a moderately intelligent somebody reviewing the alert stream. No more mistakes? Far from it! What is a response policy for each event type? Does the person viewing the alerts know what is the best course of action needed for each event (if any)? How to tell normal events from anomalous and malicious? What events are typically false positives (alerts being triggered on benign activity) and false alarms (alerts being triggered on attacks that cannot harm the target systems) in the protected environment? How to gather the required context information to answer the above? Unless the above questions are answered in advance by means of a response process, it is likely that no intelligent action is being taken based on IDS alerts a big mistake by itself. All the previous pitfalls are avoided and the NIDS is humming along nicely. However, the staff monitoring the IDS starts to get flooded with alerts. They know what to do for each alert, but how quickly they can take action after receiving the 10,000th alert on a given day? Unfortunately, current network IDS systems have to be tuned for the environment. While the detailed guide for IDS tuning is beyond the scope of this article, two general approaches are commonly used. One approach is to enable all possible IDS rules and spend several days flooded with alerts, analyzing them and reducing the rule set accordingly. This route is more appropriate for internal network IDS deployment. Another solution is to reduce the rule set to only watch the risky services. This works better in a highly secure DMZ setup where all machines are carefully audited and hardened. This is simply not accepting the inherent limitations of network IDS technology. While anomaly-based IDS systems might potentially detect an unknown attack, most signature based IDS will miss a new exploit if there is no rule written for it. IDS systems have to be frequently updated with vendor signature updates. Even if updates are applied on a timely schedule, the exploits which are unknown to the IDS vendor will likely not be caught by the signature-based system. Attackers may also try to blind or evade the NIDS using many tools available for download as well as, no doubt, a large collection of non-public tools. There is a constant battle between the IDS developers and those wishing to escape detection. IDS are becoming more sophisticated and able to see through the old evasion methods, but new approaches are created by attackers. Those deploying the network IDS technology should be aware of its limitations and practice defense-in -depth by deploying multiple and diverse security solutions. References 1. The Wikipedia organization, Transport layer security, Viewed 23 June 2007, https://en.wikipedia.org/wiki/Secure_Sockets_Layer. 2. The Microsoft TechNet, United States, Viewed 27 June 2007, https://technet2.microsoft.com/WindowsServer/en/library/c22a4d3d-6335-4b9b-b344-bbae041203b41033.mspx?mfr=true. 3. The IETF organization, Dr.Taylor Independent T. wu Stanford University 13 June 2007, Viewed 25 June 2007, https://www.ietf.org/internet-drafts/draft-ietf-tls-srp-14.txt. 4. T J Hudson, and E A Young, SSL programmer Reference, Viewed 23 June 2007, https://psych.psy.uq.oz.au/~ftp/Crypto/ssl.html#HDR0. 5. The Network World, Security, Paul Szymanski network Administrator 22 Jan 2007, Viewed 23 June 2007, https://www.networkworld.com/news/2007/011807-tls3.html. 6. The Cisco Press, Ipsec, Andrew Mason 01 Oct 2004, viewed 25 June 2007, https://www.ciscopress.com/articles/article.asp?p=341484seqNum=6. 7. The AT-TLS and CS IPSec, LIN OVERBY, Viewed 28 June 2007, https://www-03.ibm.com/systems/z/security/pdf/Got_the_world_on_your_shoulders_Overby.pdf. 8. The Isoc Organization, Design and Implementation of TLS and IPSec, Nagendra Modadugu and Eric Rescorla, Stanford University, Viewed 28 June 2007, https://www.isoc.org/isoc/conferences/ndss/04/proceedings/Papers/Modadugu.pdf. 9. The Linux Journal, The Security Protocol, Gianluca Insolvibile 08 Sep 2002, viewed by 01 July 2007, https://www.linuxjournal.com/article/6117. 10. The improving Network Availability, IPv4 IPv6 (IPng), viewed by 10 July 2007, https://freespace.virgin.net/fonaset.net/ipv.html. 11. The Answers.com, IPv4, Viewed 10 July 2007, https://www.answers.com/topic/ipv4?cat=technology. 12. The TCP/IP Guide, The History of IP/ Standard/ Versions, Viewed 10 July 2007, https://www.tcpipguide.com/free/t_IPHistoryStandardsVersionsandCloselyRelatedProtoco.htm. 13. The Moldova.org/IT, IPv4, Viewed 10 July 2007, https://it.moldova.org/pagini/eng/528/ 14. The American Registry of Internet Numbers, IPv4 and IPv6, viewed 10 July 2007, https://www.arin.net/media/fact_sheets/IPv4_IPv6.pdf. 15. The Network Dictionary, Protocols, Viewed 12 July 2007, https://www.networkdictionary.com/protocols/ip.php. 16. The Multi-party Authentication protocol, Ajit Ravidran, MSC distributed Multimedia System (2003/2004), Viewed 15 July 2007, https://www.comp.leeds.ac.uk/mscproj/reports/0304/ravindran.pdf. 17. The network Security and encryption, Internet security, Viewed 25 July 2007, https://www.electronics.dit.ie/staff/mdavis/Section11_InternetSecurity.pdf. 18. The McMaster University, S. Bilal Mehmood 04 April 2003, Viewed 30 July 2007, https://www.cas.mcmaster.ca/~wmfarmer/SE-4C03-03/projects/papers/Proj_Final.pdf. 19. The re-engineering protocol, Ramesh Naharathnam 04 April 2003, viewed 30 July 2007, https://www.cas.mcmaster.ca/~wmfarmer/SE-4C03-03/projects/papers/IPv6.pdf. 20. The Window security, Intrusion detection, Przemyslaw Kazienko Piotr Dorosz 23 July 2004, Viewed 31 July 2004, https://www.windowsecurity.com/articles/IDS-Part2-Classification-methods-techniques.html. 21. The Cisco Press, Intrusion Detection System, Earl Carter 15 Feb 2002, Viewed 31 July 2007, https://www.ciscopress.com/articles/article.asp?p=25334seqNum=3. 22. The Security Focus, Intrusion System Paul Innella 12 June 2001, Viewed 31 July 2007, https://www.securityfocus.com/infocus/1520. 23. The NIST Special Publication, Intrusion Detection system, Viewed 31 July 2007, https://www.21cfrpart11.com/files/library/reg_guid_docs/nist_intrusiondetectionsys.pdf. 24. The Birds-eye .net, HTTP Preethi Ramkumar, Viewed 31 July 2007, https://www.birds-eye.net/definition/h/http-hyper_text_transfer_protocol.shtml. 25. The Birds-eye.net, Internet Protocol Bruce Bahlmann, Viewed 31 July 2007, https://www.birds-eye.net/definition/acronym.cgi?what+is+IP=Internet+Protocolid=1160272098. 26. The Cheap 56k, IMAP, Viewed 31 July 2007, https://www.cheap56k.com/glossary/IMAP.html. 27. The Tech web, IMAP4, Viewed 31 July 2007, https://www.techweb.com/encyclopedia/defineterm.jhtml?term=IMAP%34. 28. The Search Exchange, POP3, Viewed 31 July 2007, https://searchexchange.techtarget.com/sDefinition/0,,sid43_gci212805,00.html. 29. The search Web Services, MIME, Viewed 31 July 2007, https://searchwebservices.techtarget.com/sDefinition/0,290660,sid26_gci212576,00.html. 30. The IBM research Journal, MIME Message Format, Viewed 31 July 2007, www.research.ibm.com/journal/sj/371/vonka3.gif. 31. The Soap wicourt gov, Step tech over view send message Gif Format, viewed 31 July 2007, https://soap.wicourts.gov/overview/StepTechOverview11.gif. 32. The its 4 sms, Receive messages Images, Viewed 31 July 2007, https://www.its4sms.com/images/email2sms-screen2.gif. 33. The SANS institute, Intrusion detection strength, Viewed 2nd August 2007, https://www.sans.org/resources/idfaq/ipe.php. 34. The Nist Gov publication, Viewed 5 Aug 2007, https://csrc.nist.gov/publications/nistbul/itl99-11.txt. 35. The VPNC.org, Viewed 31 July 2007, https://www.vpnc.org/ietf-ipsec/00.ipsec/msg02104.html. 36. The Info sec writer Text Library, Viewed 5 Aug 2007, https://www.infosecwriters.com/texts.php?op=displayid=117. 37. The email experience organization, Viewed 14 August 2007, https://www.emailexperience.org/resources/email-glossary/.