Protocol stack for wap2

Assignment Help Computer Network Security
Reference no: EM133477

QUESTION 1

(a)Make a distinction between passive and active attacks.

(b)Provide two reasons why it is very important to organise security awareness programs for users.

(c)Give explanation how symmetric cryptography provides

i. confidentiality

ii. authentication.

(d)What are the two sorts of operations used by symmetric cryptography?

(e)Give explanation for Kerchoff's principle.

(f)Which cryptanalytic attack is approximately theoretically feasible?

(g)State the four conditions that have to be satisfied for the one-time pad algorithm to provide unconditional security.

(h)Why is it that the one-time-pad algorithm gives unconditional security?

QUESTION 2

(a)Explain the two probable configurations for 3DES.

(b)What is the main drawback of 3DES?

(c)Why are mainly modern symmetric algorithm block ciphers?

(d)Give explanation for four weaknesses of symmetric cryptography.

(e)Presume that Alice have to send bulk data to a remote user Bob. Illustrate how Alice would use both symmetric and asymmetric cryptography to achieve both security and efficiency in terms of encryption time.

QUESTION 3

(a)Which PKI (Public Key Infrastructure) model is characteristically favored by business organization?

(b)Provide one possible use of the "extensions" ground of an X.509 certificate.

(c)Consumers in a PKI can obtain digital certificates of users they want to communicate with. Which protocol is typically used to interact with the directory server to obtain certificate(s)?

(d)Estimate the RSA public and private keys given the values of p and q as follows: p = 17; q = 11. Show details of workings. Choose e = 7.

(e)What is meant by Certificate Revocation? When would a certificate have to be cancelled?

(f)Alice and Bob are communing.

i. Give details how Alice and Bob can communicate such that all their communication can be authenticated and can be verified for integrity. Confidentiality is not required.

ii. Alter your answer such that now it also provides replay attack detection.

QUESTION 4:

(a)Regard the following authentication options:

A. Using password.

B. Using pin and fingerprint

Which option A or B gives stronger security and why?

(b)Provide one example of a strong password. Why should passwords be strong?

(c)In quantum cryptography, light is polarized before transmission. If a wave of light is polarized first by 00 followed by 450 and finally by 900, what is the intensity of the light after each polarization i.e. after 00, after 450 and after the final 900. Presume intensity of incident light is Io

(d)How can network datagrams (packets) be protected at the network layer?

(e)Does SSL protect against eavesdropping? Does SSL protect against traffic analysis? Give good reason for your answer.

(f)Name or provide three SSL protocol from the SSL protocol stack.

QUESTION 5

(a)Confer three security issues related to cellular networks.

(b)Briefly portray three different types of attack that can be undertaken on the cellular network infrastructure.

(c)What is the WAP protocol?

(d)What was the underlying principle following developing WAP2 protocol stack in regard to the existing WAP1 protocol stack?

(e)Draw the protocol stack for WAP2.

Reference no: EM133477

Questions Cloud

Energy transition : energy, poverty, agriculture, biodiversity, Energy Management, geothermal energy, use of E10 in petrol vehicles, use nuclear power to meet the electricity demand, sustainable energy
Information flow complexity : Cyclomatic complexity, monitoring devices, wireless dial-out device with controller, Request for Proposals (RFPs), Weighted IFC
Project management for engineering : economic feasibility of the projec, restrictions are the economics of the project based,  technical feasibility for the project
Ip spoofing : honeypot or a firewall, error handling, Denial-Of-Service, Public Key Infrastructure, WLAN Administrator, WEP Protocol, RSA Algorithm, Network Engineer
Protocol stack for wap2 : WAP protocol, cellular network infrastructure, SSL protect against eavesdropping, network datagrams (packets) be protected at the network layer, pin and fingerprint, Certificate Revocation, Public Key Infrastructure, modern symmetric algorithm bl..
Network threats : confidentiality, integrity and availability, trojan horse, Compress the data, Caesar cipher, rail fence cipher, PGP operation, network perimeter, MSFT, RSA cryptosystem
Ssl for http traffic : SSL Record protocol of the SSL protocol stack, RADIUS, networks for access control, DNS poisoning, Spear Phishing attacks, centralised or decentralised access control, encrypt email data
Security by obscurity : Defacement, Infiltration, Phishing, Pharming, Insider Threats, Click Fraud, Denial of Service, Data Theft/Loss, IP Whitelisting and IP Spoofing, recursive PHP functio, worm and a virus, hash on a string using MD5
Concept of subletting in v6 : small package routing is more efficient in IPV6 than in IPV4, increase the hacking factor, network security model (NSM), ACL, VLAN, war dialing

Reviews

Write a Review

Computer Network Security Questions & Answers

  An overview of wireless lan security - term paper

Computer Science or Information Technology deals with Wireless LAN Security. Wireless LAN Security is gaining importance in the recent times. This report talks about how vulnerable are wireless LAN networks without any security measures and also talk..

  Computer networks and security against hackers

This case study about a company named Magna International, a Canada based global supplier of automotive components, modules and systems. Along with the company analysis have been made in this assignment.

  New attack models

The Internet evolution is and is very fast and the Internet exposes the connected computers to attacks and the subsequent losses are in rise.

  Islamic Calligraphy

Islamic calligraphy or Arabic calligraphy is a primary form of art for Islamic visual expression and creativity.

  A comprehensive study about web-based email implementation

Conduct a comprehensive study about web-based email implementation in gmail. Optionally, you may use sniffer like wireshark or your choice to analyze the communication traffic.

  Retention policy and litigation hold notices

The purpose of this project is to provide you with an opportunity to create a document retention policy. You will also learn how to serve a litigation hold notice for an educational institute.

  Tools to enhance password protection

A report on Tools to enhance Password Protection.

  Analyse security procedures

Analyse security procedures

  Write a report on denial of service

Write a report on DENIAL OF SERVICE (DoS).

  Phising email

Phising email It is multipart, what are the two parts? The HTML part, is it inviting the recepient to click somewhere? What is the email proporting to do when the link is clicked?

  Express the shannon-hartley capacity theorem

Express the Shannon-Hartley capacity theorem in terms of where is the Energy/bit and is the psd of white noise.

  Modern symmetric encryption schemes

Pseudo-random generators, pseudo-random functions and pseudo-random permutations

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd