The Certified Authorization Professional (CAP) is a certification that indicates a professional level of knowledge/skill on the subject of federal information system authorization (formerly certification & accreditation). In the US federal government, “Authorization” to operate a federally owned information system is a formal acceptance of risk from an Authorization Officer (AO). An AO is a high ranking official granted the authority to make major risk related decisions for an entire branch/or unit within a federal organization. The AO accepts or rejects the risks that information systems poses to his or her organization based on the recommendations of a security control assessors audit and accompanied Security Authorization Package.
The CAP is based almost entirely on federal information security/protection laws, National Institute of Standards & Technology (NIST), and Office of Management & Budget regulations.
There are seven domains the CAP exam focuses on:
1. Understanding the Security Authorization of Information Systems
2. Categorize Information Systems
3. Establish the Security Control Baseline
4. Apply Security Controls
5. Assess Security Controls
6. Authorize Information System
7. Monitor Security Controls
Defense Acquisition Regulation Supplement (DFARS 2011-D039)
Defense contractors will have to meet the NIST Special Publication 800-53 security controls. Most large defense contractor have already started meeting defense controls for DIACAP (which are very similar to NIST 800 controls). more info @ firegovernment IT
CJCSI 6510.01, Information Assurance and Support to Computer Network Defense
The new 6510.01F replaces the old 6510.01E. The document refers to changes in the name of the Information Assurance Manager (IAM) to Information System Security Manager (ISSM) and the Information Assurance Officer (IAO) to Information System Security Officer (ISSO). The name Designated Accreditation Authority (DAA) is changed to Authorizing Official (AO). The former DIACAP term “certification” is changed to 800-37 term “assessment”.
Updates titles for Designated Accrediting Authority (DAA) to Authorizing Official; Information Assurance Manager (lAM) to Information Systems Security Manager (ISSM); and Information Assurance Officer (IAO) to Information Systems Security Officer (ISSO) to align with CNSSI No. 4009 (reference e) terms. Replaces term certification with assessment and accreditation with authorization (to operate) in alignment with CNSSI No. 4009 (reference e) terminology. The new terms are followed by legacy terms in parentheses throughout instruction.
The document also refers to the coming changes to DoD 8500 policies. The changes will focus on NIST 800:
Select security controls lAW DODI 8500.2 (reference g). Note: The next update to DODI 8500.2 (reference g) and DODI 8510.01 (reference i) will direct DOD IS categorization and security control selection lAW CNSSI No. 1253, “Security Categorization and Control Selection for National Security Systems” (reference ill) with additional specific guidance on the DIACAP Knowledge Service. DODI 8500.2 (reference g) and DODI 8510.01 (reference i) will also direct the use of security controls in NIST SP 800-53, “Recommended Security Controls for Federal Information Systems and Organizations” (reference kkk) with supporting validation procedures in NIST SP 800-53A, “Guide for Assessing the Security Controls in Federal Information Systems and Organizations” (reference 111), and additional DOD guidance published in the DIACAP Knowledge Service.
The ultimate goal will be to move away from “Certification & Accreditation” and to a Risk Management Framework” as in NIST SP 800-37:
NIST 800-37 SP, “Guide for Applying the Risk Management Framework to Federal Information Systems” (reference mmmmm), provides guidelines for applying the Risk Management Framework to include conducting the activities of security categorization, security control selection and implementation, security control assessment, information system authorization, and security control monitoring.
Google is no Joke!!
Google+ seems to bring everything together. All Google’s products and services are being reigned in the the power of +You.
For example, if you use Google’s Picasa, Google+ enhances the service by fully integrating the content of Picasa into the their social network. If you use Android, you’ll be able to take a picture, load it into Picasa, then make it available to your “Circle” in Google+. The name Picasa supposedly changing to “Google Photos” but for now its just a rumor.
Other fully integrated services and products include (but are not limited to): Gmail & Youtube.
Dating site are one of the best ways to find a mate or friends. What can beat a searchable database with pictures and descriptions of like minded people? Unfortunately, dating sites are also a great place to find people to scam.
Here are some tools you can use to separate date scammers from the legitimate people:
1) Search Engines
2) Google Images
3) Personal Information Aggregators
1) Google potential online dates:
If they have given you a name, then google it, Bing it, Yahoo it. Find out who is talking about them with “who is talking about me“. You can also use Who is talkin. If they have been around the block, you will find something on them.
2) Google Image their profile picture:
Scammers use other people’s picture for their false profile. They do it because its easy and its a picture that worked in the past so they are certain it will work on all future chumps. To check on their profile, download their picture from the dating site (or from email if they sent it to you) and drag & drop it into Google Images Search. If they grabbed the picture from someone else it will show up in a search.
3) Use a Personal Information Aggregator: If you have their name and location, verify them in Spokeo.com. If you have not used Spokeo before… get ready for a shock. It is scary how much information is online about most of us. Keep in mind not everyone has information online but if they bought a home, own a business, changed homes a few times or went to a university, chances are there is a record of it online. If you don’t find them on Spokeo, try Zabasearch.com or white pages. With the information you gather, you can determine if its a real person or just made up. You can get their phone number, REAL email address, address.. use this information to verify if they are telling the truth.
You may have heard the saying “Trust but verify”.. well on the Internet you should not trust anyone and verify everything with two or three separate reputable sources. The ability to be anonymous on the Internet coupled with the selfish, apathetic nature of cold strangers makes tragic victims of trusting hearts. Trust NO ONE, particularly if you have not met them in person (and I would even say keep a watchful eye on those you have met in person LOL). Only time and experience with another person’s behaviors and actions will tell us what they are really all about. Knowing someone over time is really the only way to begin to allow trust to creep in.
I recently bought the Barnes & Noble Nook. Since I am constantly studying, reading and doing so much travel, I knew a tablet or some sort of e-reader would be very useful. I have a lot of pdf’s (NIST, DoD regulations, federal policies) so I needed something that would allow me to read those documents. I considered the ipad, ipad2, the Xoom and others but didn’t want to spend more than about $200. When I saw the Nook online with the latest version of Android 3.0 (honeycomb), it was love at first site. The Nook color is $250, it looks great, and most importantly it can be hacked easily. The Nook actually run on top of Android, however Barnes & Nobles puts their own bastardized reader interface over the OS. Barnes & Nobles has an application market and does allow you to read PDFs organize books, shop for discounted books and some other things. The Nook interface does not even come close to the usefulness of Android. Once you install Android, you can use the Android market (which includes the Nook App, btw).
There are two ways to install the Android over the Nook abomination:
1) Install directly to the internal hard drive (voids the warranty)
2) Install onto an sd micro card and boot from the card
For me the best option was to install the Android OS to the sd micro. I first installed Honeycomb but had some issues with the usability of the OS on the Nook. I decided to go for a more stable OS, Android 2.x and it works great!
The install is very easy and literally only takes a few minutes if you do everything right the first time:
Resources you need – nook color, sd card micro (sanDisk – at least 4GB), a computer (in this case a Windows system)
1) Get the following software – WinImage, Installer Image (generic-sdcard), Nook Color CM7 build, Google Apps Pack
4) Burn the Installer Image (generic-sdcard) on to the sd card using the WinImage software
5) Copy Nook Color CM7 (cm_encore_full-XXX.zip) & Google Apps (gapps-gb-XXXX-signed) to the sd Card (do not unzip)
6) Put the sd card in the Nook and turn it on. You will need to turn the system back on after the Installer is complete.
You are done!! Configure your Google apps. enjoy
There are some prerequisites for
nook android 3.0
You can do all of the steps above using Android 3.0 (honeycomb). Android 3.0 was actually the first think I tried. The organization of the OS is beautifully done, however I found some issues with the functionality of the build. The touch screen was sluggish, sometimes the browser would not respond to touch and I had trouble getting the Google Apps on the Nook. Maybe you will have better luck. I may do it when its a little more stable.
On my search for the most cost effective tablet/e-reader, I found the Nook. You can buy the Nook at Best Buy, Barnes & Noble, Office Max, Office Depot, Walmart and of course, online. The best thing about the Nook (aside from the ability to hack the tablet) is that Barnes & Nobles has more than 2 million books. It can also access the Amazon Kindle market.
Beware of this man by the name David Mark a man of 54 he lives in San Jose, has a son by the name sean, he told me he loved me on the first email and that his wife died and was looking for a good woman. He said he was christian, self employed. A week later he tells me that he is going to nigeria with his son to design and build solar energy. three days in nigeria he tells me he has a crisis his son sean is in hospital and he needs money to pay for surgery. i already suspected something was wrong with this guy he insisted i was his soul mate and he loved me. I didn’t send him any money and he started calling me names and saying i was selfish because i didn’t help him. ladies be careful of davidmark9022@yahoo.com i met him on WAYN. this guys are ruthless and their english is bad half the time they can’t make out what you are saying.
The Nook is an e-reader (also known as an electronic book or tablet) from Barnes & Noble. It is a computer that uses the Android operating system. It has on board internal flash memory, accepts microSD flash memory cards, rechargeable, and replaceable lithium-ion polymer batteries. The screen and connectivity depend on the type of device:
-Nook Wifi
-Nook Color
-Nook Simple Touch
Nook Review
There are many types of ebook readers. If you are wondering where the Nook ranks among its peers, you’ll find it is top 10 in many of the most respected tech sites:
6th on ZD Net Top 10 tablets
4 out of 5 stars from CNET’s review of only 5 Android based tablets deemed the best
2nd among 5 Top e-Readers on PCWorld
The Nook is definitely not the most powerful e-reader on the market, but is arguably the best for the price you pay.
a nook
for everyone!! So far, I love the Nook. I take it everywhere.
If you didn’t know, you can also hack
the Nook Color
without voiding the warranty!! Basically, you put and Android image on an sd Card and boot the nook from the card. This allows you to go beyond the limited Nook app market that has just started and get full access to the Android App market on your Nook Color. The Android app market is set to become the largest in the world (2011). You can still use the Nook Color App once you are on Android. Its a Nook Reader app that has the same features as the default Nook application that the Nook Color comes with.
Nook allows you to read pdfs gives access to discounted Barnes & Nobles ebooks as well as Kindle and google ebooks. This puts literally millions of ebooks within your reach. These days I only go into book stores and libraries to see what ebooks I should get for my Nook. Publishing has changed forever.
