Abstract
This paper looks at how, since today's society is replete with acts of terrorism, both domestic and international, a security manager's thoughts should be directed towards how to protect mail rooms, their personnel, and the facilities that house them. It examines how it would behoove management to develop and implement strategic countermeasures to combat terrorism through the mail system and how, by conducting a vulnerability assessment of the facility and its operation, managers are better equipped to develop proper threat assessment and implement countermeasures to ensure their effectiveness.

From the Paper
"Although a trained screener has the potential to combat this by initiating developed procedures, which limits work stoppages. Described in this paper are some of the countermeasures that are available to reduce the likelihood of bombs, biological agents (anthrax) and chemicals from passing through the mailroom to unsuspected mail recipients. Due to the potential hazards associated with mailroom security and the various variable encountered, to date there are still no standards in place for implementing countermeasures."

Tags:bombs, anthrax, biological, warfare

Abstract
This study takes a look at the Islamic group Al Qaeda and provides an overview of its organizational and developmental history. Additionally, the group's base and location of operations and its financing and support sources are reviewed, as well as an analysis of Al Qaeda's motivations, ideology and purpose. A list of Al Qaeda's adversaries and enemies and a description of locations and tactics used in its attacks is also provided. In addition, a review of countermeasures that have been shown to be effective against Al Qaeda is also presented, followed by an analysis of the projected future for the group. Furthermore, the paper discusses potential security management solutions and countermeasures that could be deployed against these projected future threats. This discussion is then followed by a summary of the research and important findings in the conclusion. This paper includes pictures and tables.

Outline:
Abstract
Al Qaeda: Current and Future Trends
Review and Discussion
Name of the Organization and "Type" of Terrorist Group.
Organizational and Developmental History.
Base or Sanctuary; and Location of Operations.
Financing/Support Sources.
Motivations, Ideology and Purpose.
Adversaries/Enemies.
Location of Attacks and Tactics Employed.
Countermeasures or Anti-terrorist Options/Strategies That Have Been Successful
Projected Future.
Security Management Solutions and Countermeasures.
Conclusion
References

From the Paper
"There has been some progress in the war on terrorism since the terrorist attacks of September 11, 2001 and countering the threat represented by al Qaeda. For example, the removal of the Taliban government in Afghanistan served to eliminate al Qaeda's sanctuary and training camps and destroyed an important connection in the process that once provided al Qaeda's leadership with a continuing stream of new recruits. Unfortunately, continues to face a serious threat as the organization's leadership rebounds from setback after setback to reemerge in yet another region of the world to threaten U.S. interests at home and abroad. In this environment, identifying current and future trends for this organization represents a timely and important enterprise, and these issues are the focus of this study."

Tags:terrorism religion funding, war against terrorism

Abstract
The paper discusses three principles of safeguarding our environment: maintaining the current balance in matter cycles, not interfering with the earth's energy flows and preserving the web of life. The paper then describes the different issues of sustainable development that include the greenhouse effect, global warming, acid rain, the disappearance of tropical forests, the destruction of wildlife habitats, the pollution of the earth's oceans and seas, hazardous waste, desertification and air pollution. The paper warns that unless effective countermeasures are taken, these environmental problems will get worse, affecting future generations and even threatening the very existence of humanity.

From the Paper
"Over one hundred and fifty years ago, Henry David Thoreau identified the threat to nature that man posed. In 1858, in an essay entitled Chesuncook, published in The Atlantic Monthly, Thoreau considered the true value of a pine not to be the boards or turpentine it produced but as a living tree in a healthy forest. Although his judgment was more that of a poet than a scientist, he foresaw the coming crisis. One hundred years later, Rachel Carson, in Silent Spring seconded his warning on a more scientific basis attracting popular attention and generating public concern."

Tags:greenhouse, effect, global, warming, acid, rain, tropical, forests, wildlife, habitats, pollution, waste, desertification

Abstract
This paper examines how the Liberation Tigers of Tamil Eelam (LTTE), otherwise known as the Tamil Tigers, represents one of the most imbedded terrorist organizations in the world and how it is recognized as a terrorist organization by India, Malaysia, USA, Canada, UK and Australia. Protecting against the terrorist activities of the LTTE presents many challenges to the FBI and other organizations that are committed to protecting the interests of the United States. The paper examines the profile of the LTTE and supports the thesis that the Tamil Tigers are unlike a typical terrorist group, but rather an organized foreign government and how treating the LTTE as a government entity represents the most effective strategy for countering terrorist measures by this group.

Outline:
Background
Objectives
Formal Organizational Structure
Funding
Strategy
Methods
Short Threat Assessment
Feasible Countermeasures

From the Paper
"The organization of the Tamil Tigers supports the thesis that this group is a foreign government, regardless of whether Sri Lanka recognizes it as such or not. The LTTE considers itself to be a separate government entity and its level of organization supports its claims. One of the key factors to strength and influence of this group is the organizational structure. The organizational structure of the LTTE differs from that of other terrorist organizations. Most terrorist organizations can be classified as either military or political. Political groups tend to have a strong sense of purpose, yet may lack the military structure to carry out their objectives. Military organizations may have an established hierarchical structure and central leadership. However, they may not be as clearly focused on the key objective. "

Tags:government, sri, lanka, LTTE

Abstract
The paper discusses the number of risks associated with the banking industry. In an attempt to identify and minimize the various risks associated with the operation of this institution, the Bank of New York uses a Risk Management team. Their main goal is to identify and track the various risks associated with the Bank of New York and offer recommendations as to how to minimize or eliminate them. The paper shows how threats and risks in the banking industry can be divided into the following categories: Market Risk, Credit Risk, Foreign Asset Risk, Competition Risk, Governmental Risk, as well as risks to the physical structure and data systems. This paper discusses these risk areas and the Bank of New York's plan for minimizing them.

Table of Contents
Introduction
Risk Analysis
Threats/Risks - Market Risk
Credit Risk
Foreign Asset Risk
Governmental Risk
Competition Risk
Analysis
Data Systems
Mitigation/Countermeasures
Information Assurance Policies
Disaster Recovery Policies
Summary

From the Paper
"The World Trade tower attack in September of 2001 prompted the Bank of New York to re-evaluate and amend its disaster recovery policies. At the time of the disaster, the Bank had over 8,300 employees located in four lower Manhattan facilities who were evacuated in a matter of hours. The recovery plan was immediately implemented, and they temporarily relocated headquarters to midtown Manhattan. By that evening, they had relocated operating departments to five existing contingency sites in New Jersey, New York State, and Connecticut. Staff was reassigned to alternate sites as specified in disaster recovery plans while systems were restored at backup sites over the course of the following days. Well-executed contingency plans led to quick recovery of many businesses, including ADR, BNY Clearing, Core Custody, Brokerage, European Transfer Agency, Foreign Currency Transfer, Fund Accounting and Administration, Investment Management, Performance Measurement, Retail Fund Administration and Securities Lending (BNY annual report, 2001)."

Tags:inflation, consumer, Federal, Reserve, Board, 911

Abstract
This paper explains that database security is the protection of the database against unauthorized access, either intentional or accidental; security countermeasures should combat threats and the outcomes of such threats. The author points out that physical security means that a SQL Server system is running in a controlled-access environment in which only approved personnel have physical access to the system; whereas, appropriate physical security means that SQL Server should be isolated from web infrastructures and direct Internet access. The paper concludes that network and operating system security are not sufficient to defend against dynamic threats to a web application; therefore, database and web application server techniques are a necessity, but even with these extra layers of security in place, there's no such thing as a full-proof security system.

Table of Contents
Introduction
The Goals of Security
Sources of Security Threats
Types of Threats
Common Web Application Security Threats
Physical Security
Security Mechanisms to Protect a Database
Views
Rules and Constraints
Concurrency Control
Audit Tracking
Encryption
Backup and Recovery
SQL Injection Prevention Techniques
Web Securities
Firewall
SSL
Digital Certificate
Conclusion

From the Paper
"Access control prevents unauthorized persons from accessing a system to either obtain information or make changes. Like most databases, Microsoft SQL Server handles access control by allowing the creation of user accounts and passwords to control log-in. Additionally, Microsoft SQL Server supports the use of Windows NT Integrated Security where users are identified to the database by their Windows NT user accounts rather than user ID and password to access the database. Chapple states that this approach offers both the benefit of shifting the burden of account management to the network administration staff and it provides the ease of a single sign-on to the end user."

Tags:protection, unauthorized, controlled-access, windows, firewall

Abstract
Resistance "with the proper tools, strategy, and determination" can countermeasure any unwanted entity. This paper shows how the anti-Soviet forces in Afghanistan not only pushed the invaders out of their country, but helped precipitate the eventual fall of the USSR as a world power. The paper studies the question: How did the Soviets lose that war, or how did the Mujahidin "the soldiers of God" win?

From the Paper
"The Afghan resistance fighters, under the guidance of their Islamic mullahs and provincial warlords, devised effective tactics and strategies to engage the large Soviet and pro-Soviet forces: avoid direct combat with a superior force; use the element of surprise; attack more at night; yield a battlefield to the enemy if it means a large result of death for the resistance forces; conduct terror and disinformation campaigns in enemy-held villages. These soldiers of God would conduct successful ambushes through the course of the war. They would attack small convoys through mountainous routes if they were lightly armed; they would attack larger forces within small valley or ravines by destroying lead and aft position vehicles to cause a jam and create confusion and panic as soldiers; they would disguise themselves as pro-Soviet soldiers and conduct disinformation campaigns in local villages to create disorder and add to the confusion amongst the rumor-mill of the local populace; or they would infiltrate fire bases and conduct small raiding parties upon equipment or supplies, destroying what they could quickly, and withdrawing back into the mountains."

Tags:People?s, Democratic, Party, of, Afghanistan, (PDPA), Turkestan, and, Central, Asian, Military, Districts, Kabul

Abstract
The paper provides a detailed introduction into computer crimes and methods of deterrence today. The paper explains that the overall aims of the project are to gain a full understanding of traps and deceptive measures, using a honeypot as an example in a real-world environment. The paper outlines the resource requirements and the tasks that will be carried out and includes an overview of the proposed study.

Outline:
Introduction
Abstract
Overall Aims
Target Objectives
Tasks
Milestones
Resource Requirements
Study Overview

From the Paper
"The purpose of the proposed study is to use a honeypot as described further below to determine if Dictionary, Brute force and Hybrid attacks are still in use nowadays or if they do not exist anymore. The proposed study is important for a number of reasons. According to Wible (2003), "While the Internet has revolutionized communication and commerce, it has also created the conditions for a type of crime that can be committed anonymously, from anywhere in the world, and with consequences that are unprecedented in scope" (p. 1577). While many of the attacks on legitimate computer systems are not malicious in nature, the literature will show that computer crimes are on the increase and the techniques being used by computer criminals are likewise becoming increasingly sophisticated."

Tags:traps, hackers, countermeasures, cybercrime, security, websites

Abstract
This paper addresses the methodology required for successfully conducting an effective enterprise-wide vulnerability assessment and remediation management program. The paper then addresses ways to review and maintaining such a program successfully.

Table of Contents:
Executive Summary
Vulnerability Management Overview
Vulnerability Management Defined
Patching Is Not Enough
Why Effective Vulnerability Management Is Critical
Current Vulnerability Management Technology and Approaches
Network Vulnerability Scanners
Host-Based Assessment Tools
Patch Management Solutions
Security Awareness Training
Requirements for an Effective Vulnerability Management Solution
The Future of Vulnerability Management
Summary
Leading Vendors

From the Paper
"Everyday companies are subject to network attacks. It is not uncommon for a company to be the target of hundreds, even thousands of attacks a day. The combination of computer hackers, cyber terrorism threats, and security vulnerabilities in existing technology often disrupt business resulting in loss and theft of private or intellectual data. The number of new vulnerabilities is constantly increasing, and current data indicates that approximately 70 discoveries are being reported every week."

Tags:assessment, attacks, audits, code, compliance, configuration, countermeasures, cyber, errors, network, patches, red, regulatory, remediation, risk, scanners, security, terrorism, threats, vulnerability, worm