Reference no: EM133314
QUESTION 1
(a)What is your knowing for the term "cyber weapon"? Give an example of a cyber weapon.
(b)How was Sony play station network server (online game center) attacked by the Anonymous collective?
(c)What are the two most imperative threat faced by the security industry?
(d)(i) Discriminate the following two biometric techniques.
1. Iris Scan
2. Retina Scan
(ii) Which of the two techniques is most preferred by users? Give good reason for your answer.
(e)Confer the privacy issues related to the use of Biometrics.
QUESTION 2
(a)Put in plain words the concept of Single Sign On (SSO). Mention one benefit and one drawback of SSO.
(b)By means of a figure, tell how Kerberos provides SSO.
QUESTION 3
(a)Briefly explicate how the Security Configuration and Analysis Tool (SCAT) snap-in in MMC (Microsoft Management Console) can be used for securing a computer.
(b)Express the use of each of the subsequent windows command line tool for security purposes:
(i) netstat -an
(ii) arp -a
(iii) ipconfig /displaydns
(c)From a security perspective, what is the use of the MS Config. Means (tools) in windows?
(d)Converse how booting into Safe Mode can help to eradicate malware.
(e)By means of Group Policy, it is possible to arrange security policies in a computer. How can the Group Policy console be accessed from command prompt?
QUESTION 4
(a)Portray the five phases an attacker or ethical hacker undertakes to gain access to a network. Exemplify with a figure.
(b)All through the Foot printing phase, often DNS interrogation allows the attacker to get much information about the network. Why is it so?
(c)Examine two modes to thwart network reconnaissance in a network.
(d) Differentiate or amid b/w human based social engineering and computer based social engineering.
|
Security vulnerabilities of vc
: single access point (AP), wireless network, CSMA/CA, goals of information security, Wireless LANs, wireless hacking process, Wired Equivalent Privacy (WEP), Open System Authentication and Shared Key Authentication, Initialisation Vector (IV), RADIU..
|
|
Owasp top 10 web application security risks
: Reflected XSS and Stored XSS attack, threat Modeling methodologies, Extended Stack Pointer (ESP) and the Extended Base Pointer (EBP), Canary-based defense to buffer overflow attacks in C language, admin.aspx, Index hijacking, cross-site request fo..
|
|
Cryptosystem
: Block cipher, Primitive root, Confusion, Diffusion, Digital signature, Conventional Symmetric-Key Encryption
|
|
Cyber weapon
: Single Sign On (SSO), Single Sign On (SSO), netstat -an, arp -a, ipconfig /displaydns, MS Config. Means, MS Config. Means, network reconnaissance
|
|
Dos and ddos attack
: Denial of Service attack (DoS) and Distributed Denial of service (DDoS) attack, two-factor authentication system, password ageing, biometric devic, cryptographic attack made Double DES (2DES), Demilitarized Zone (DMZ), SSL protocols
|
|
What is the standard error
: If you have five critical errors, two main faults, and five minor errors, what is the standard error
|
|
Determine the expected portfolio return
: Determine the expected portfolio return, rp, for each of the 6 years. Evaluate the expected value of portfolio returns, rp, (line over the r) over the 6-year period
|
|
Federal income tax return
: Use the given information to complete Phillip and Claire Dunphy's 2012 federal income tax return.
|