Q: Describe section 66D of information technology act, 2000 ?

Ans: Section 66D deals with Cheating using  computer resource. Section 66D of information technology act, 2000 mentions punishment for cheating by personation by using computer resource. Spoofing is a technique of cheating by personation. 

Any person by means for any communication device or computer resource cheats by personating, shall be punished with imprisonment of either description for a term which may extend to three years and shall also be liable to fine which may extend to one lakh rupees.

To prevent cheating penetration testing is performed.  

Penetration testing or Pen Testing is a type of Security testing which is used to uncover vulnerabilities, threats and risks that an attacker could exploit in software applications, network or web applications.

Mainly, there are three types of pentesting:

1.Black box pen testing

2. Gray Box Pen testing

3.White box Pen testing

In black box pen testing,  there is zero knowledge about pen testing.

In Gray Box Pen testing, the partial information is given of pen testing.

Partial information means initial information will be provided and further information will have to be found.

White Box Pen testing:

Each test strategy takes a different approach for assessing the security of an organization's infrastructure.

In white box pen testing,  almost all the information of pen testing are provided.

Comments

Post a Comment

Popular posts from this blog

Q: Explain Section 65 of Information Technology Act, 2000 ?

Ans:  Section 65 of Information Technology act deals with tampering with computer source documents. The Espionage is the internal attack from illicit spy and can be the purpose of tampering documents. Trojan horse attack is also an internal attack and is performed to steal the information of users to tamper the documents. Spoofing means to hoax or to decieve. Spoofing is an identity theft where an illegal person or illegitimate user tries to use the identity of a legitimate user.  Here an attacker pretends himself to be a legitimate person. Phishing, on the other hand, is a phenomenon where an attacker employs social engineering methods to steal sensitive as well as confidential information from a user or to tamper the documents. Social engineering means to read the brain of people. For example: Fake Facebook url. Any person who intentionally  conceals, destroys or alters anything from the computer source will be punished with imprisonment upto 3 years and fine...
Read more

Q: In which section is the term of office, conditions of service mentioned under information technology act, 2000 ?

Ans:   Section 51 of Information Technology Act, 2000 mentions t erm of office, conditions of service, etc., of Chairperson and members. 51(1). The Chairperson or Member of the Cyber Appellate Tribunal shall hold office for a term of five years from the date on which he enters upon his office or until he attains the age of sixty-five years, whichever is earlier. 51(2).  The person should not have any financial or other interests. There must not be any personal benefit in becoming the chairperson and member of Cyber Appellate Tribunal. 51(3). To become the chairperson or member of Cyber Appellate Tribunal,  a person must have to take the retirement from the central government or state government job.  
Read more

Q: In which section is the qualification of members of cyber appellate tribunal is mentioned?

Ans: The qualification of members of cyber appellate tribunal are mentioned under Section 50 of information technology act,  2000 .  Under Section 50 of information technology act,  1. To be a Chairperson of cyber appellate tribunal,  a person must have the eligibility to be a judge of high court.  Either he has practised as a judge for 10 years or he has practised as an advocate for 10 years in high court.  2.  To be a member of cyber appellate tribunal,  a person a person must hold the post of Additional Secretary or equivalent for 1 year or joint secretary or equivalent for 7 years and he must have the experience in telecommunication, information technology and consumer affairs.  3. To be a judicial member of cyber appellate tribunal,  a person in Indian Legal Service must hold the post of Additional Secretary for 1 year or any grade 1 post for 5 years. 
Read more