Loading...
Link 5 Unit 7 SÅĆ³wka
QuizĀ by Maja SurażyÅska
Customize this quiz to suit your class
Instantly translate to 100+ languages
Tag the questions with any skills you have. Your dashboard will track each student's mastery of each skill.
Give this quiz to my class
Link 7 - Unit 55.1 Personal data Personal data is any data that relates to you and your identity. This includes data such as: ā¢Name ā¢Address ā¢Telephone number ā¢Email address ā¢Bank details ā¢Medical records ā¢Salary ā¢Political opinions You should be very careful about revealing any of your personal data! By revealing personal data to another, especially online, you are exposing yourself to dangers such as identity theft, fraud, bullying and blackmail. These types of dangers can be issues that arise as a result of revealing more personal thoughts and feelings to those that can use them against you. It is a more sinister viewpoint to take, but the moment you reveal any personal data to another, you are providing them with the potential to harm you or your identity. This isn't to say you should never speak to another, especially those unknown online, just understand how to recognise a danger and how to keep your identity secure. To keep yourself safe in your daily life, you are likely to have been taught to take measures such as locking doors, not talking to strangers and not venturing into unsafe areas. However, when many people go online, they relax their safety measures, perhaps because they are in the comfort of their own home, so do not think anything negative will happen. Many people that use the internet are genuine, but knowing how to detect the few that aren't is important. There are several guidelines for you to be aware of to keep your personal data confidential: ā¢Have strong passwords set on any account that holds personal data. Stronger passwords include characters, numbers and symbols and are not a recognisable word. ā¢Encrypt (scramble text so that it cannot be read without a decryption key) any personal data that you store on your computer. ā¢Have a firewall present, scanning incoming and outgoing data from your computer system. ā¢Regularly scan your computer with preventative software, such as an anti-virus package, that is used to identify a virus on a computer and remove it. ā¢Make use of any biometric devices (devices that measures a person's biological data, such as thumbprints), that are built into technology. ā¢Only visit and provide data to websites that are a trusted source. ā¢Do not open any email attachments from a sender you do not recognise. ā¢Check the URL attached to any link requesting data to see if it is genuine. ā¢Be cautious about any pictures or opinions that you post or send to people. ā¢Remove data about your location that is normally attached to your photos and videos that you may post, such as geotags. ā¢Do not become friends on social networking sites with people you do not know. ā¢Set all the privacy controls to the most secure setting that are available on social media accounts. ā¢Report and block any suspicious user. ā¢Use a nickname or pseudonym when using the internet for entertainment, for example, playing games. ā¢If it is possible, use a virtual private network (VPN), an encrypted connection that can be used to send data more securely across a network. The ways in which some of these guidelines can be used in more detail will be explored throughout this chapter.Reading Passage: The Anatomy of a Kill Chain In the lexicon of modern warfare, the term "kill chain" describes the end-to-end process of a military attack, from the initial identification of a target to its eventual destruction and the subsequent evaluation of the strike's effectiveness. Conceptually, the kill chain is a structural model used to understand and optimize the speed and precision of military operations. The fundamental principle of this model is that an attack functions as a sequence of interdependent stages; if any single link in the chain is broken, the entire operation fails. For strategic planners, this creates a dual objective: to accelerate one's own kill chain while simultaneously finding ways to disrupt the adversary's. Strategic Concept: The Kinetic Model (F2T2EA) The traditional military kill chain is often summarized by the acronym F2T2EA, representing a continuous cycle of find, fix, track, target, engage, and assess. The kinetic kill chain begins with Find, the reconnaissance phase where intelligence assets identify a potential target within a theater of operations. Once found, the process moves to Fix, which involves pinning down the target's specific location and ensuring it can be distinguished from friendly forces or non-combatants. Track follows, maintaining a persistent watch on the target's movements to prevent its escape. In the Target phase, commanders select the appropriate weapon system and verify the legality and strategic value of the strike. Engage is the kinetic momentāthe actual deployment of ordnance against the objective. Finally, Assess involves battle damage assessment (BDA) to determine if the desired effects were achieved or if further engagement is required. This model emphasizes "compressing the sensor-to-shooter timeline," meaning the faster a military can move through these steps, the more lethal it becomes. The Evolution: The Cyber Kill ChainĀ® As warfare expanded into the digital domain, Lockheed Martin adapted the kinetic model into the Cyber Kill Chain. This framework assists defenders in identifying and stopping Advanced Persistent Threats (APTs). Unlike a physical missile, a cyberattack often unfolds over weeks or months, but the sequential logic remains the same. The model consists of seven distinct stages: Stage Description of Attacker Activity 1. Reconnaissance The harvesting of information. Attackers research targets via social media, public records, and technical scanning to find vulnerabilities. 2. Weaponization Coupling a remote access trojan with an exploit into a deliverable payload (e.g., a malicious PDF or Microsoft Office document). 3. Delivery Transmission of the weapon to the target environment. Common vectors include email attachments, malicious websites, or USB drives. 4. Exploitation The weapon triggers. The code executes on the victim's system, typically by taking advantage of a software or operating system vulnerability. 5. Installation The attacker installs a persistent backdoor or malware on the victim's system, allowing them to maintain access even after a reboot. 6. Command & Control (C2) The compromised system opens a communication channel back to the attacker's server, allowing the intruder to give manual instructions. 7. Actions on Objective The final stage where the attacker achieves their goal, such as data exfiltration, encryption for ransom, or destruction of critical infrastructure. Strategic Implications for Defense The strategic value of the Cyber Kill Chain lies in its ability to provide a roadmap for "proactive defense." By understanding the sequence, security professionals can implement controls at every stage. For instance, robust email filtering can break the chain at the Delivery stage, while endpoint detection can stop the Installation phase. Crucially, the earlier a defender breaks the chain, the lower the cost of mitigation and the lower the risk of damage. If an attacker is stopped during Reconnaissance, they have gained nothing. If they are stopped during Actions on Objective, the damage may already be catastrophic. In both kinetic and cyber environments, the goal is the same: to create a "defensive depth" that makes the cost of a successful attack prohibitively high for the adversary.How is personal data collected? There are several ways that an unauthorised person can try and collect your data. These include: ā¢phishing ā¢smishing ā¢vishing ā¢pharming. Phishing Phishing is when a person sends a legitimate looking email to a user. The email contains a link to a website that also looks legitimate. The user is encouraged to click the link and to input personal data into a form on the website. The email could also simply ask the user to reply to the email with their personal data. The user is tricked into giving their personal data to a source that they believe is legitimate. However, both the email and the linked website are from a fake unauthorised source. The personal data that is input is then collected by an unauthorised person. This person can then use this data for criminal acts, for example, to commit fraud or steal the person's identity. Intimidation has become a common feature of phishing emails, threatening the user that they must click the link and rectify a situation immediately, or there will be a further issue. The aim of a phishing attack is to steal the user's personal data. Figure 5.1: Phishing. A real-life example of phishing PayPal have been the subject of several different phishing emails. Users receive an email that looks as though it has been sent from PayPal, as it has the PayPal branding. The email normally warns of an issue such as unexpected activity on their account, or that some kind of verification of their account is required. The user is then asked to click a link to log into their account and resolve the issue. The link takes them to a webpage that looks like the PayPal login page. If the user inputs their login details into this page, they will not be taken to their account. It is often at this stage that the user may realise that the email and webpage are fake. However, they have already given the unauthorised person their PayPal login details. Figure 5.2: An example of a phishing email claiming to be from PayPal. How to recognise phishing There are several guidelines to be aware of regarding emails to avoid being subjected to phishing. These include: ā¢Don't even open an email that is not from a sender that you recognise or a trusted source. ā¢Legitimate companies will never ask you for your personal data using email. Be immediately suspicious of any email that requests your personal data. ā¢Legitimate companies will normally address you by your name. Be suspicious of any email that addresses you as āDear Member' or āDear Customer'. ā¢Legitimate companies will send an email that uses their domain name. If you hover your mouse over the sender's name, it will show the email address that the email is sent from. If this does not look legitimate, for example, does not contain the correct domain name, then it is probably fake. For example, if the sender's email is user@paypal1.com rather than user@paypal.com, this is from an incorrect domain name. ā¢Legitimate companies are protective of their professional reputation and thoroughly check any communications. They will make sure that all information given is grammatically and correctly spelt. Be suspicious of any email that contains bad grammar or spelling mistakes. ā¢A link in an email from a legitimate company will also normally contain the domain name of the company. You can sometimes hover over the link, or right click and inspect the link, to see the address of the URL that is attached. If the URL does not contain the domain name, or also contains typical errors such as spelling mistakes, then be suspicious of this. PRACTICAL ACTIVITY 5.02 Ask a friend or a member of your family if they have ever received an email that they believed was a phishing email. Ask them how they identified it was phishing. Ask them if they know all of the given guidelines for identifying phishing emails. Smishing Smishing (or SMS phishing) is a variant of phishing that uses SMS text messages to lure the user into providing their personal details. The user is sent an SMS text message that either contains a link to a website, in the same way that phishing does, or it will ask the user to call a telephone number to resolve an urgent issue. The same advice can be followed for smishing as given for phishing. The user must question at all times any links that are sent from an unknown or suspicious user. It is advisable that if a user believes the message may be legitimate, to type in the domain name for the legitimate company website into their web browser, rather than following the link in the message. Users should block any numbers that they believe are suspicious to prevent any further risk of smishing from that number. Figure 5.3: Smishing. Vishing Vishing (or voice phishing) has the same aim as phishing, to obtain a user's personal details. The user receives a telephone call that could either be an automated system or could be a real person. An automated voice could speak to the user and advise them that an issue has occurred, such as there has been suspicious activity regarding their bank account. The user may then be asked to call another number, or just to simply press a digit and be directed to another automated system. This system will ask them to provide their bank account details to resolve the issue. The bank account details have then been obtained by the unauthorised user and can be used to commit a crime against the user. The automated system could be replaced by a real person who will try to do the same thing. They will try to convince the user that there has been an issue with an account they have and to provide the log-in details or PIN for the account to verify who they are so the issue can be resolved. The precaution to take for vishing is that no company will ever call you and ask you to provide any log-in details or PIN details over the telephone. They may ask you to provide other personal information, and if you are in doubt that the person on the other end of the phone is legitimate, it is always advisable to put the phone down and call the company back on a legitimate number that you may already know or can obtain. Figure 5.4: Vishing. Pharming Pharming is when an unauthorised user installs malicious code on a person's hard drive or server. The malicious code is designed to redirect a user to a fake website when they type in the address of a legitimate one. The fake website is designed to look like the legitimate one, to trick the user and make sure they are not aware that their request has been redirected. The user will then enter their personal details into the fake website, believing it is the legitimate one, and the unauthorised person will now have their personal data. A common technique used in pharming is called domain name server (DNS) cache poisoning. This technique exploits vulnerabilities in the DNS and diverts the internet traffic intended for a legitimate server toward a fake one instead. The unauthorised user needs to find a way to install the malicious code on the computer. They often hide the malicious code in an email attachment or link. When the user opens the email attachment or clicks the link, the malicious code is downloaded also. Figure 5.5: Pharming. The aim of a pharming attack is also to steal a user's personal data. A real-life example of pharming In 2007 50 different companies all over the world were subject to a pharming attack, these included PayPal, eBay, Barclays bank and American Express. Over a three-day period, hackers managed to infect over 1000 PCs a day with a malicious pharming code. When users who had been infected visited the websites of the different companies, they were redirected to a legitimate-looking version of the site that was designed to steal their personal data. The original email, containing the malicious code, was set up to look like a shocking news story. Users were encouraged to click a link in the email to find out more information. The code was downloaded when the user clicked the link. This was quite a sophisticated attack that required legitimate looking websites to be set up for a large number of companies. It is not known how much money the hackers were able to retrieve as a result. How to prevent pharming All of the guidelines to avoid being subjected to phishing are also relevant for recognising pharming. There are also several other precautions that can be taken to check for pharming attacks. These include: ā¢Have a firewall installed and operational. A firewall monitors incoming and outgoing traffic from your computer. It checks this traffic against set criteria and will flag and stop any traffic that does not meet the criteria. A firewall could detect and block suspicious traffic, such as a malicious code trying to enter your system. ā¢Have an anti-virus program installed that is designed to detect malicious pharming code. You need to scan your computer on a regular basis to check for any malicious code. It is advisable to set up an automatic scan on a daily basis at a time when your computer will normally be switched on. ā¢Be aware when using public Wi-Fi connections. A hacker could look to directly access your computer and install the malicious code if you are connected to a public Wi-Fi connection. It is often advisable to use a VPN when using public Wi-Fi. This will help shield your internet activity and personal details from a hacker, making it more difficult for them to access your computer. Smishing can also be used as a form of pharming. A user is sent a link, that when they click is designed to download malware onto their mobile device. Therefore, it is advisable to have security software installed on your mobile and also scan it regularly to detect any presence of malware.LARGE CARBON MOLECULES Many carbon compounds are built up from smaller, simpler molecules known as monomers (MAH-ne-mers), such as the ones shown in Figure 3-3. As you can also see in Figure 3-3, monomers can bond to one another to form polymers (PAWL-eh-mer). A polymer is a molecule that consists of repeated, linked units. The units may be identical or structurally related to each other. Large polymers are called macromolecules. There are many types of macromolecules, such as carbohydrates, lipids, proteins and nucleic acids. Monomers link to form polymers through a chemical reaction called a condensation reaction. Each time a monomer is added to a polymer, a water molecule is released. In the condensation reac- tion shown in Figure 3-4, two sugar molecules, glucose and fruc- tose, combine to form the sugar sucrose, which is common table sugar. The two sugar monomers become linked by a CāOāC bridge. In the formation of that bridge, the glucose molecule releases a hydrogen ion, H, and the fructose molecule releases a hydroxide ion, OH. The OH and H ions that are released then combine to produce a water molecule, H2O. In addition to building polymers through condensation reac- tions, living organisms also have to break them down. The break- down of some complex molecules, such as polymers, occurs through a process known as hydrolysis (hie-DRAHL-i-sis). In a hydrolysis reaction, water is used to break down a polymer. The water molecule breaks the bond linking each monomer. Hydrolysis is the reverse of a condensation reaction. The addition of water to some complex molecules, including polymers, under certain con- ditions can break the bonds that hold them together. For example, in Figure 3-4 reversing the reaction will result in sucrose breaking down into fructose and glucose. 2H2O Monomers Polymer C C O H OH C OH H CH2OH C H CH2OH C HO H C O H C OH H C CH2OH H C H OH O Sucrose C C O H OH C OH H CH2OH C H CH2OH C HO H C OH OH H C OH H C CH2OH H C H OH O Glucose Fructose H2O The condensation reaction below shows how glucose links with fructose to form sucrose. One water molecule is produced each time two monomers form a covalent bond. FIGURE 3-4 monomer from the Greek mono, meaning āsingle or alone,ā and meros, meaning āa partā Word Roots and Origins A polymer is the result of bonding between monomers. In this example, each monomer is a six-sided carbon ring. The starch in potatoes is an example of a molecule that is a polymer. FIGURE 3-3 Copyright Ā© by Holt, Rinehart and Winston. All rights reserved. 54 CHAPTER 3 ENERGY CURRENCY Life processes require a constant supply of energy. This energy is available to cells in the form of certain compounds that store a large amount of energy in their overall structure. One of these com- pounds is adenosine (uh-DEN-uh-SEEN) triphosphate, more commonly referred to by its abbreviation, ATP. The left side of Figure 3-5 shows a simplified ATP molecule struc- ture. The 5-carbon sugar, ribose, is represented by the blue carbon ring. The nitrogen-containing compound, adenine, is represented by the 2 orange rings. The three linked phosphate groups, āPO4 , are represented by the blue circles with a āP.ā The phospate groups are attached to each other by covalent bonds. The covalent bonds between the phosphate groups are more unstable than the other bonds in the ATP molecule because the phosphate groups are close together and have negative charges. Thus, the negative charges make the bonds easier to break. When a bond between the phosphate groups is broken, energy is released. This hydrolysis of ATP is used by the cell to provide the energy needed to drive the chemical reactions that enable an organism to function.GUIDELINES ON THE ESTABLISHMENT AND IMPLEMENTATION OF THE RESULTS-BASED PERFORMANCE MANAGEMENT SYSTEM IN THE DEPARTMENT OF EDUCATION I. Rationale 1. The Civil Service Commission (CSC), through the issuance of Memorandum Circular (MC) No. 06, series of 2012, sets the guidelines on the establishment and implementation of the Strategic Performance Management System (SPMS) in all government agencies. The SPMS gives emphasis to the strategic alignment of the agencyās thrusts with the day-to-day operation of the units and individual personnel within the organization. It focuses on measures of performance vis-a-vis the targeted milestones, and provides a credible and verifiable basis for assessing the organizational outcomes and the collective performance of the government employees. 2. As a learner-centered institution, the Department of Education (DepEd) is committed to continuously improve itself to better serve the Filipino learners and the community. The adoption of the SPMS in DepEd strengthens the culture of performance and accountability in the agency, with the DepEdās mandate, vision and mission at its core. 3. There is a need to concretize the linkage between the organizational thrusts and the performance management system. It is important to ensure organizational effectiveness and track individual improvement and efficiency by cascading the institutional accountabilities to the various levels, units and individual personnel, as anchored on the establishment of a rational and factual basis for performance targets and measures. Finally, it is necessary to link the SPMS with other systems relating to human resources and to ensure adherence to the principle of performance-based tenure and incentives. 4. In view of the above, this Order aims to adopt the SPMS as the Results-based Performance Management System (RPMS). II. Scope of Policy 5. This DepEd Order provides for the establishment and implementation of the RPMS in all DepEd schools and offices, covering all officials and employees, school-based and non school-based, in the Department holding regular plantilla positions. It stipulates the specific mechanisms, criteria and processes for the performance target setting, monitoring, evaluation and development planning. IV. Policy Statement 9. The DepEd hereby sets the guidelines on the establishment and implementation of the Results-based Performance Management System (RPMS) in the Department, stipulating the strategies, methods, tools and rewards for assessing the accomplishments vis-a-vis the commitments. This will be used for measuring and rewarding higher levels of performance of the various units and development planning of all personnel in all levels. 10. For non school-based personnel, the RPMS shall provide for an objective and verifiable basis for rating and ranking the performance of units and individual personnel in view of the granting of the Performance-Based Bonus (PBB) starting 2015. 11. For school-based personnel, the RPMS shall be used only as an appraisal tool, which shall be the basis for training and development. The granting of PBB shall be governed by the existing PBB guidelines. 12. The Department shall adopt the RPMS framework shown in Annex B. 13. The DepEd RPMS shall follow the four-stage performance management system cycle as prescribed by the CSC: i. Performance planning and commitment (Phase I); ii. Performance monitoring and coaching (Phase II); iii. Performance review and evaluation (Phase III); and iv. Performance rewarding and development planning (Phase IV). V. Performance Cycle/Process 14. The RPMS shall align the performance targets and accomplishments with the Departmentās mandate, vision, mission and strategic goals. It shall ensure 100% results orientation vis-a-vis the planned targets. On the other hand, the rateeās demonstration of the required competencies shall be monitored for developmental purposes only. 15. The RPMS cycle shall cover performance for one whole year. All school-based personnel shall follow a performance cycle starting in April of the current year and ending in March of the following year; while non school-based personnel shall follow a performance cycle starting in January and ending in December. Annexes C and D illustrate the performance cycles which shall apply to school-based and non school-based personnel, respectively. 16. The performance planning and commitment shall be done prior to the beginning of the performance cycle; while the performance monitoring and coaching shall take place immediately after Phase I, and continue throughout the performance cycle. The performance review and evaluation, as well as the performance rewarding and development planning shall be done at the end of the performance cycle. A. Phase I: Performance Planning and Commitment 17. The performance planning and commitment shall be done prior to the start of the performance cycle where the rater meets with the ratee to discuss and agree on the following: i. Office KRAs, Objectives and Performance Indicators as anchored to the overall organizational outcomes; and ii. Individual KRAs, Objectives and Performance Indicators as anchored to the Office KRAs and Objectives. 18. The Office Performance Commitment and Review Form (OPCRF) shall be accomplished by the head of office to reflect the Office KRAs, Objectives and Performance Indicators. The head of office, in coordination with the Planning Office, shall ensure alignment of the office plans and commitments to the overall organizational outcomes. The OPCRF shall be equivalent to the IPCRF of the head of office. A sample of the filled out OPCRF, including the instructions for accomplishing the form, is shown in Annex E. 19. The Individual Performance Commitment and Review Form (IPCRF) shall be accomplished by the individual personnel to reflect the agreed Individual KRAs, Objectives and Performance Indicators. A sample of the filled out IPCRF, including the instructions for accomplishing the form, is shown in Annex F. 20. Defining the Key Result Areas. The head of office, in coordination with the Planning Office, shall define the office KRAs as anchored on the overall organizational outcomes. The rater and the ratee shall discuss and agree on the break down of the office KRAs into individual KRAs. Three (3) to five (5) KRAs shall be defined for each office and individual employee. KRAs are broad categories of general outputs or outcomes. It is the mandate or function of the office and/or individual employee. The KRA is the reason why an office and/or job exist. It is an area where the office and/or individual employee are expected to focus on. 21. Setting the Objectives. The head of office shall set three (3) objectives per office KRA. The rater and the ratee shall discuss and agree on three (3) objectives per individual KRA. Objectives are specific tasks, which an office and/or employee need to do to achieve their specific KRAs. In objective setting, the SMART criteria, which stands for Specific, Measurable, Attainable, Relevant, Time Bound, shall be applied. The SMART criteria are illustrated in Annex G. 22. Setting the Timeline. The timeline shall define the target date for accomplishing each of the Objectives. The timeline for the office Objectives shall be set by the head of office in coordination with the Planning Office and School Planning Team; while the timeline for the individual Objectives shall be discussed and agreed by the rater and the ratee. 23. Assigning the Weight. Assigning of weights shall be done per KRA. Weights for each office KRA shall be assigned by the head of office in coordination with the Planning Office; while the weights for each of the individual KRAs shall be discussed and agreed upon by the rater and the ratee. 24. Identifying the Performance Indicators. Using a five (5)-point rating scale, the head of office shall identify a performance indicator for each of the office objectives, while the rater and the ratee shall identify and agree on the performance indicator for each of the individual objectives. Performance indicators are exact quantification of objectives expressed through rubrics. They are assessment tools, which gauge whether a performance is positive or negative. In identifying the performance indicator, the operational definition or meaning of each numerical rating shall be indicated under each relevant dimension (i.e., quality, efficiency, or timeliness) per performance target or success indicator. This shall ensure that the rating is objective, impartial and verifiable. Table 1 below discusses the performance measures by which the indicator must satisfy. Table 1. Performance Measures CATEGORY DEFINITION Effectiveness/Quality The extent to which actual performance compares with targeted performance. The degree to which objectives are achieved and the extent to which targeted problems are solved. In management, effectiveness relates to getting the right things done. Efficiency The extent to which time or resources is used for the intended task or purpose. Measures whether targets are accomplished with a minimum amount or quantity of waste, expense, or unnecessary effort. Timeliness Measures whether the deliverable was done on time based on the requirements of the rules and regulations, and/or clients/stakeholders. Time-related performance indicators evaluate such things as project completion deadlines, time management skills and other time-sensitive expectations. Some Performances are only rated on quality and efficiency, some on quality and timeliness, and others on efficiency only. You need not use all three (3) categories. 25. Demonstration of Competencies. During Phase I, the rater shall discuss with the ratee the competencies required of the individual personnel. Competencies are defined as the knowledge, skills and behavior that individuals demonstrate in achieving oneās results. Competencies shall uphold the DepEdās core values. They represent the way individuals define and live the values. 26. DepEd shall adopt four classes of competencies as follows: i. Core behavioral competencies are competencies, which cut across the organization; ii. Leadership competencies are competencies intended for managerial positions; a. Third level officials b. Chiefs and Assistant Chiefs c. School Heads and Department Heads iii. Staff Core Skills are competencies intended for staff and teaching-related personnel; and iv. Teaching competencies are competencies intended for teachers. The DepEd-required competencies are illustrated in Annex I. 27. The rateeās demonstration of the required competencies shall be monitored to effectively plan the interventions needed for behavioral and professional development. The assessment in the demonstration of competencies shall not be reflected in the final rating. 28. Reaching Agreement. Once the office and individual KRAs, Objectives and Performance Indicators are clearly defined, the rater and the ratee shall commit and reach an agreement by signing the OPCRF and IPCRF. The signed/approved OPCRF and IPCRF shall be the basis for monitoring and assessment, which shall take place in Phases II and III, respectively. B. Phase II: Performance Monitoring and Coaching 29. The performance monitoring and coaching shall commence after the rater and the ratee commit on the KRAs, Objectives and Performance Indicators, and sign the OPCRF and IPCRF. This shall be done throughout the year. 30. The two (2) main components of Phase II are the following: i. Performance monitoring; and ii. Coaching and feedback. 31. Performance monitoring shall provide key inputs and objective basis for rating. It shall facilitate feedback and provide evidence of performance. Performance monitoring shall be the responsibility of both the rater and the ratee who agree to track and record significant incidents through the use of the Performance Monitoring and Coaching Form (PMCF) shown in Annex J. Significant incidents are actual events and behaviors in which both positive and negative performances are observed and documented. 32. Coaching and feedback shall be a continuous process. Coaching and feedback shall be provided by the rater and/or shall be sought by the ratee to improve work performance and behavior. The rater, as the coach or mentor of the ratee, playing a critical role in the performance monitoring and coaching, shall provide an enabling environment and intervention to improve the office performance and to manage and develop individual potentials. 33. The PMCF shall capture the significant incidents. It shall provide a record of demonstrated behaviors, competencies and performance, and shall be an effective substitute in the absence of quantifiable data. The rater and the ratee shall sign each significant incident recorded in the PMCF to ensure that agreement has been reached. C. Phase III: Performance Review and Evaluation 34. The performance review and evaluation shall be done at the end of the performance cycle to assess the office and individual employeeās performance level based on the commitments and measures as contained in the signed OPCRF and IPCRF. 35. A mid-year review is prescribed to determine the progress in achieving the Objectives. In exceptional cases, and only if the situation warrants, a one-time recalibration of office and individual Objectives shall be allowed during the mid-year review. Exceptional cases shall include instances when high level decisions are taken into effect such as changes in strategic directions, and circumstances beyond the control of the ratee such as natural and/or man-made calamities, including typhoon, earthquake and other fortuitous events. During the mid-year review, the rater shall inform in writing the ratee of the status of performance, in case of an Unsatisfactory or Poor performance. Coaching, feedback and appropriate interventions shall be provided where necessary. 36. The RPMS shall put premium on KRAs towards the realization of organizational vision, mission, strategic priorities and the OPIF logframe. Hence, rating for planned and/or intervening tasks shall always be supported by reports, documents or any output as proofs of actual performance. In the absence of said bases or proofs, a particular task shall not be rated and shall be disregarded. 37. Office and Individual Performance Assessment. The head of office, in coordination with the Planning Office, shall assess the performance of the office vis-a-vis the committed targets at the beginning of the performance cycle. The rater and the ratee shall discuss and agree on the individual assessment based on the actual accomplishments of each of the KRAs and Objectives. The final rating shall be based solely on the accomplishment of the specific objectives as measured by the Performance Indicators. The OPCRF and IPCRF shall be accomplished and completed by the rater and the ratee to: i. Reflect actual accomplishments and results; ii. Rate each of the objectives; iii. Compute for the score per objective; iv. Determine the overall rating for accomplishments; v. Reach an agreement; and vi. Assess the competencies. 38. Initial self-rating shall be encouraged prior to the rater-ratee discussion. 39. Third Level Officials, as heads of offices, shall accomplish the OPCRF for submission to the Planning Office. The individual assessment of Third Level Officials shall be contained in the CESPES Forms for submission to the Career Executive Service Board (CESB). The BHROD and Personnel Division shall be furnished a copy of both forms. 40. Actual Results. The rater and the ratee shall discuss and agree on the actual accomplishments and results based on the performance commitments and measures made at the beginning of the rating period. They shall evaluate each objective whether it has been achieved or not. The significant incidents as reflected in the PMCF shall be considered for the actual results. 41. Rating the Objectives. Based on the actual accomplishments and results, each of the Objectives shall be rated using the rating scale specified below: Table 2. The RPMS Rating Scale NUMERICAL RATING ADJECTIVAL RATING DESCRIPTION OF MEANING OF RATING 5 Outstanding Performance represents an extraordinary level of achievement and commitment in terms of quality and time, technical skills and knowledge, ingenuity, creativity and initiative. Employees at this performance level should have demonstrated exceptional job mastery in all major areas of responsibility. Employee achievement and contributions to the organization are of marked excellence. 4 Very Satisfactory Performance exceeded expectations. All goals, objectives and targets were achieved above the established standards. 3 Satisfactory Performance met expectations in terms of quality of work, efficiency and timeliness. The most critical annual goals were met. 2 Unsatisfactory Performance failed to meet expectations, and/or one or more of the most critical goals were not met. 1 Poor Performance was consistently below expectations, and/or reasonable progress toward critical goals was not made. Significant improvement is needed in one or more important areas. The final assessment shall correspond to the adjectival description of Outstanding, Very Satisfactory, Satisfactory, Unsatisfactory or Poor. The range of adjectival rating is as per attached in Forms A, B, and C. 42. Process for Computing the Score per KRA. i. The rater and ratee shall ensure that each KRA has been assigned weight according to priority. ii. As an option, the rater and ratee may assign weights to objectives which shall be equal to the total weight assigned to a particular KRA. KRA 1 ā Weight assigned is 40% Objective 1 is 20% Objective 2 is 10% Objective 3 is 10% iii. The score per KRA shall be computed using the following formula: 43. Plus Factor. The plus factor shall be considered as another KRA. These are value adding accomplishments, which are not covered within the regular duties and responsibilities. The weight on the plus factor shall not exceed the weight of the highest mandated KRA. For teachers, the plus factor shall be limited to work/activities, which contribute to the teaching-learning process. 44. Determining the Overall Rating for Accomplishments. The overall rating/assessment for the accomplishments shall fall within the following adjectival ratings and shall be in three (3) decimal points: Table 3. Adjectival Ratings RANGE ADJECTIVAL RATING 4.500-5.000 Outstanding 3.500-4.499 Very Satisfactory 2.500-3.499 Satisfactory 1.500-2.499 Unsatisfactory below 1.499 Poor 45. Reaching Agreement. Upon determining the overall rating for the actual accomplishments and results, the rater and the ratee shall reach an agreement by signing the OPCRF and IPCRF. The average rating of individual staff members should not go higher than the collective performance assessment of the office. 46. Assessing the Competencies. The rater shall discuss with the ratee the set of competencies observed during the performance cycle. The competencies shall not be reflected in the final rating. Competencies shall be monitored for developmental purposes. In evaluating the individualās demonstration of competencies, the rating scale in Table 4 shall apply: Table 4. The DepEd Competencies Scale SCALE DEFINITION 5 Role model 4 Consistently demonstrates 3 Most of the time demonstrates 2 Sometimes demonstrates 1 Rarely demonstrates 5 (role model) ā all competency indicators 4 (consistently demonstrates) ā four competency indicators 3 (most of the time demonstrates) ā three competency indicators 2 (sometimes demonstrates) ā two competency indicators 1 (rarely demonstrates) ā one competency indicator D. Phase IV: Performance Rewarding and Development Planning 47. The results of the performance review and evaluation shall be used in performance rewarding and development planning. This phase shall be done after Phase III. 48. The rater shall discuss and provide qualitative comments, observations and recommendations in the individual employeeās performance commitment, competency assessment and significant incidents which shall be used for training and professional development. These can be written under the strengths and development needs column of the Part IV-Development Plans of the IPCRF. 49. The rater and the ratee shall identify and discuss the individualās strengths and development needs, and reflect them in the Part IV-Development Plans of the IPCRF. The competencies which the ratee demonstrated consistently and the areas, where the ratee meet or exceed expectations shall be referred to as the rateeās strengths. The competencies, which the ratee rarely demonstrates and the areas where the ratee has room for improvement and has not met the expectations, shall be identified as the rateeās development needs. Make a situational SOLO-based questions in the context of school leadership1.Linguistics is the science that studies language. 2.Linguist:Someone who studies linguistics. 3.The Subfields of Linguistics Phonetics deals with the sounds of language. Phonology deals with how the sounds are organized. Morphology deals with how sounds are put together to form words. Syntax deals with how sentences are formed. Semantics deals with the meaning of words, sentences, and texts. Pragmatics deals with how sentences and texts are used in the world (i.e., in context) Text Linguistics deals with units larger than sentences, such as paragraphs and texts. 4.Prescriptive: This approach consists basically of stating what is considered right and wrong in language. 5.Descriptive: This approach, on the other hand, consists of describing the facts. Descriptive linguistics is dedicated to describing the rules of the language, and the language is seen as essentially rule governed. 6.Language is rule-governed, creative, universal, innate, and learned, all at the same time. 7.Linguists understand language as a system of arbitrary vocal signs. 8.Linguistic signs: involve sequences of sounds which represent concrete objects and events as well as abstractions.Signs may be related to the things they represent in a number of ways. 9.Iconic: which resemble the things they represent (as do, for example, photographs, diagrams, star charts, or chemical models). 10.Indexical: which point to or have a necessary connection with the things they represent (as do, for example, smoke to fire, a weathercock to the direction of the wind, a symptom to an illness, a smile to happiness, or a frown to anger). 11.Describe the characteristics of human language: Creative: (The structural elements of human language can be combined to produce new utterances, which neither the speaker nor his hearers may ever have made or heard before.) Rule-governed: (Language is made of rules.) Universal: (There are some aspects that are present in all languages of the world.) Innate:(all humans possess an innate capacity for language, activated in infancy by minimal environmental stimuli. Chomsky) Uniquely human: (Language is what sets us apart from other species. It is what makes us human.) Learned:(Children acquire language from their natural setting.) 12.Differentiate between iconic, indexical and symbolic signs. A. iconic, which resemble the things they represent (as do, for example, photographs, diagrams, star charts, or chemical models) B. indexical, which point to or have a necessary connection with the things they represent (as do, for example, smoke to fire, a weathercock to the direction of the wind, a symptom to an illness, a smile to happiness, or a frown to anger). c. symbolic, which are only conventionally related to the thing they represent (as do, for example, a flag to a nation, a rose to love, a wedding ring to marriage). 12. Distinguish between different senses of the grammar word. The prescriptivistĀ“s grammar (Grammar is a set of rules that label the different utterances as either right or wrong.) The descriptivistĀ“s grammar (Grammar is a set of rules that govern the langauge spoken by people. ) The linguistĀ“s grammar (Grammar is the subconscious knowledge of the set of rules that enables speakers to use the language) The speakerĀ“s grammar (Grammar is the intrinsic linguistic knowledge within a native speaker) 13.Describe common fallacies about language and grammar: āŗOne type of grammar is simpler than another. āŗChanges in grammar involve deterioration in a language āŗGrammars should be logical and analogical (that is, regular) āŗPeople must be taught the grammatical rules of their language. āŗOnly some languages have grammar. āŗGrammars differ from each other in unpredictable ways. 14.Generality: All Languages Have a Grammar 15. Equality: All Grammars Are Equal 16.Changeability: Grammars Change Over Time 17. Universality: Grammars Are Alike in Basic Ways 18.Tacitness: Grammatical Knowledge Is Subconscious 19.Linguistics is defined as the study of language systems. It is the scientific study of language. 20.Historical approach:It is the study of language change. 21.Linguistic Competence: is the unconscious knowledge speakers of a language have about the system that enables them to create and understand novel utterances. 22.Performance: is the use of it. Performance is āthe actual use of language in concrete situations.ā 23.I-Language (internal language): which is the intrinsic linguistic knowledge within a native speaker. 24.E-Language (external language): which is the observable languageāthe output from a speaker. 25.Parole ('speech') refers to the concrete instances of the use of langue, including texts which provide the ordinary research material for linguistics. 26.Langue: 27.Language: is a system of communication that is non-stereotyped and non-finite; it is unlimited in its scope. 28.Grammar: to refer to a subconscious linguistic system of a particular type. Grammar makes possible the production and comprehension of a potentially unlimited number of utterances. 29.Communication and animals: Selecting a mode of communication (speech,writing, gesture). Delivering the symbols through a medium, a physical basis for communication, light, air, or ink. Decoding of the symbols to obtain the information. 30.SIGNS: Communication relies on using something to stand for something else. Words are an obvious example of this: You do not have to have a car, a sandwich, or your cousin present in order to talk about themāthe words car, sandwich, and cousin stand for them instead. This same phenomenon is found in animal communication as well. 31.The signifier: A signifier is that part of a sign that stimulates at least one sense organ of the receiver of a message.A signifier can also be a picture, a photograph, a sign language gesture, or one of the many other words for tree in different languages. 32.The signified: The signified component of the sign refers to both the real world object it represents and its conceptual content. The first of these is the real world content of the sign, its extension or referent within a system of signs such as English, avian communication, or sign language. 33.Iconic signs or icons: always bear some resemblance to their referent. A photograph is an iconic sign; so too is a stylized silhouette of a female or a male on a restroom door. 34.Some iconic tokens: a. open-mouth threat by a Japanese macaque; b. park recreation signs; c. onomatopoeic words in English. 35.An indexical sign, or index, fulfils its function by pointing out its referent, typically by being a partial or representative sample of it. Indexes are not arbitrary, since their presence has in some sense been caused by their referent. For this reason it is sometimes said that there is a causal link between an indexical sign and its referent.The track of an animal, for example, points to the existence of the animal by representing a part of it. The presence of smoke is an index of fire. 36.Symbolic signs: bear an arbitrary relationship to their referents and in this way are distinct from both icons and indexes. Human language is highly symbolic in that the vast majority of its signs bear no inherent resemblance or causal connection to their referents, as the following words show. 37.Mixed signs Signs: are not always exclusively of one type or another. Symptomatic signs, for example, may have iconic properties, as when a dog opens its mouth in a threat to bite. Symbolic signs such as traffic lights are symptomatic in that they reflect the internal state of the mechanism that causes them to change color. 38.Signals: All signs can act as signals when they trigger a specific action on the part of the receiver, as do traffic lights, words in human language such as the race starter's "Go!", or the warning calls of birds. 39.SIGN STRUCTURE: No matter what their type, signs show different kinds of structure. A basic distinction is made between graded and discrete sign structure. 40.Graded signs convey their meaning by changes in degree. A good example of a gradation in communication is voice volume. The more you want to be heard, the louder you speak along an increasing scale of loudness. There are no steps or jumps from one level to the next that can be associated with a specific change in meaning. 41.Discrete signs are distinguished from each other by categorical (stepwise) differences. There is no gradual transition from one sign to the next. The words of human language are good examples of discrete signs. 42.A VIEW OF ANIMAL COMMUNICATION āŗLargely iconic āŗLargely symptomatic āŗLittle arbitrary āŗNot deliberate āŗNot conscious āŗNot symbolic āŗStimulus boundMediul wireless transportÄ semnale electromagnetice care reprezintÄ cifre binare pentru comunicaČiile de date care folosesc frecvenČe radio sau de microunde. Ca Či mediu de reČea, wireless nu este restricČionat la conductori sau cÄi de acces, aČa cum sunt mediile din fibrÄ sau cupru. Mediul wireless asigurÄ cele mai bune opČiuni de mobilitate dintre toate mediile. Astfel, numÄrul de echipamente wireless este Ć®n continuÄ creČtere. Din aceste motive, wireless a devenit o opČiune pentru toate reČelele de domiciliu. Pe mÄsurÄ ce opČiunile lÄČimii de bandÄ cresc, wireless creČte Ć®n popularitate Ć®n reČelele companiilor. Figura evidenČiazÄ cĆ¢teva simboluri cu privire la wireless. Ćn orice caz, wireless-ul are cĆ¢teva zone de preocupare precum: ā¢ Aria de acoperireTehnologiile de comunicare a datelor wireless funcČioneazÄ bine Ć®n mediile deschise. Ćn orice caz, unele materiale de construcČie folosite Ć®n structuri Či clÄdiri Či terenul local vor limita aria de acoperire. ā¢ InterferenČaWireless-ul este predispus la interferenČe Či poate fi Ć®ntrerupt de echipamente obiČnuite cum ar fi telefoane fÄrÄ fir, unele tipuri de luminÄ fluorescentÄ, cuptoare cu microunde Či alte comunicaČii wireless. ā¢ SecuritateaAcoperirea comunicaČiei wireless nu necesitÄ acces fizic la mediu. AČadar, echipamentele Či utilizatorii care nu au autorizaČie pentru a accesa reČeaua pot obČine accesul la transmisie. Ćn consecinČÄ, securitatea reČelei este o componentÄ principalÄ pentru administrarea reČelei wireless. DeČi wireless-ul creČte Ć®n popularite pentru conectivitatea calculatoarelor, fibra Či cuprul sunt cele mai populare medii ale layer-ului fizic pentru dezvoltarea reČelelor. Tipuri de Mediu Wireless IEEE Či standardele industriei de telecomunicaČii pentru comunicarea wireless a datelor acoperÄ atĆ¢t layer-ului fizic, cĆ¢t Či layer-ul data link. ExistÄ patru standarde uzuale de comunicare a datelor care se aplicÄ mediului wireless: ā¢ Standard IEEE 802.11Tehnologia WLAN (Wireless LAN), denumitÄ Či Wi-Fi, foloseČte un sistem nedeterminist sau controversat cu un proces de acces la mediu CSMA/CA (Carrier Sense Multiple Access/Collision Avoidance). ā¢ Standard IEEE 802.15Standardul WPAN (Wireless Personal Area Network), cunoscut Či ca "Bluetooth", foloseČte un proces de Ć®mperechere a echipamentelor pentru a comunica pe distanČe cuprinse Ć®ntre 1 Či 100 metri. ā¢ Standard IEEE 802.16CunoscutÄ de obicei ca WiMAX (Worldwide Interoperability for Microwave Access), foloseČte o topologie de tip point-to-multipoint pentru a furniza acces broadband de tip wireless. Figura evidenČiazÄ cĆ¢teva diferenČe ale mediilor wireless. NotÄ:Celelalte tehnologii wireless cum ar fi comunicaČiile prin satelit Či celulare pot asigura Či ele conectivitatea reČelei de date. Ćn orice caz, aceste tehnologii wireless depÄČesc scopul acestui capitol. Ćn fiecare din exemplele de mai sus, specificaČiile layer-ului fizic sunt aplicate zonelor care includ: ā¢ Codificarea semnalului radio sau de date ā¢ FrecvenČa sau puterea de transmisie ā¢ RecepČia semnalului sau cerinČele de decodificare ā¢ ConstrucČia Či design-ul antenei NotÄ:Wi-Fi este marcÄ Ć®nregistratÄ Wi-Fi Alliance. Wi-Fi este utilizat Ć®mpreunÄ cu produse certificate care aparČin echipamentelor din WLAN bazate pe standardele IEEE 802.11. LAN Wireless O implementare uzualÄ wireless a datelor este permiterea echipamentelor sÄ se conecteze prin wireless la un LAN. Ćn general, un LAN wireless necesitÄ urmÄtoarele echipamente de reČea: ā¢ Puncte de Acces Wireless (AP)ConcentreazÄ semnalele wireless de la utilizatori Či se conecteazÄ, de obicei printr-un cablu de cupru la infrastructura de reČea existentÄ bazatÄ pe cupru, cum ar fi Ethernet. Routerele wireless din companiile mici sau de domiciliu integreazÄ funcČiile unui router, switch Či punct de acces Ć®ntr-un echipament, aČa cum se aratÄ Ć®n figurÄ. ā¢ PlÄcile de reČea wirelessAsigurÄ capacitatea de comunicare wireless la fiecare host de reČea. AvĆ¢nd Ć®n vedere cÄ tehnologia s-a dezvoltat, a apÄrut un numÄr de standarde WLAN bazate pe Ethernet. Este necesarÄ atenČia atunci cĆ¢nd se achiziČioneazÄ echipamentele wireless pentru a asigura compatibilitatea Či interoperabilitatea. Beneficiile tehnologiilor de comunicare a datelor wireless sunt evidente, Ć®n special convenienČa ce reiese din mobilitatea hostului Či reducerea costurilor necesare cablÄrii. Ćn orice caz, administratorii de reČea trebuie sÄ dezvolte Či sÄ aplice politici de securitate Či procese pentru a proteja LAN-urile wireless Ć®mpotriva accesului neautorizat Či a defecČiunilor. Standardele 802.11 Wi-Fi Ćn ultimii ani au fost dezvoltate mai multe standarde 802.11. Standardele includ: ā¢ IEEE 802.11aFuncČioneazÄ pe banda de frecvenČÄ de 5 GHz Či oferÄ viteze de pĆ¢nÄ la 54 Mb/s. Deoarece acest standard funcČioneazÄ la frecvenČe Ć®nalte, are o arie de acoperire micÄ Či este mai puČin eficientÄ la penetrarea structurilor construcČiilor. Echipamentele care funcČioneazÄ Ć®n cadrul acestui standard nu sunt interoperabile cu standardele 802.11b Či 802.11g descrise mai jos. ā¢ IEEE 802.11bFuncČioneazÄ pe banda de frecvenČÄ de 2.4 GHz Či oferÄ viteze de pĆ¢nÄ la 11 Mb/s. Echipamentele care implementeazÄ acest standard au o arie mai mare Či pot pÄtrunde mai bine Ć®n structurile clÄdirilor decĆ¢t echipamentele bazate pe 802.11a. ā¢ IEEE 802.11gFuncČioneazÄ pe banda de frecvenČÄ de 2.4 GHz Či oferÄ viteze de pĆ¢nÄ la 54 Mb/s. Echipamentele care implementeazÄ acest standard funcČioneazÄ la aceeaČi frecvenČÄ de radio Či arie ca Či 802.11b dar cu lÄČimea de bandÄ de la 802.11a ā¢ IEEE 802.11nFuncČioneazÄ pe benzile de frecvenČÄ de 2.4 GHz sau 5 GHz. Rata aČteptatÄ a datelor este cuprinsÄ Ć®ntre 100 Mb/s Či 600 Mb/s cu o distanČÄ care poate ajunge pĆ¢nÄ la 70 metri. Este compatibil cu echipamentele 802.11a/b/g. ā¢ IEEE 802.11acPoate funcČiona simultan pe benzile de frecvenČÄ 2.4 GHz Či 5.5 GHz Či asigurÄ rate de pĆ¢nÄ la 450 Mb/s Či 1.3 Gb/s (1300 Mb/s). Este compatibil cu echipamentele 802.11a/b/g/n. ā¢ IEEE 802.11adCunoscut Či ca "WiGig". FoloseČte o soluČie Wi-Fi pe trei benzi folosind 2.4 GHz, 5 GHz Či 60 GHz Či oferÄ viteze teoretice de pĆ¢nÄ la 7 Gb/s. Figura evidenČiazÄ cĆ¢teva din aceste diferenČe.