User Account

All Pages

Securities Issues in a company, Computer Network Security

Assignment Help:

'Near Field Communication' (NFC) technologies are expected to become commonplace in the near future. Some relevant features are these:

  • A suitable device (such as a mobile phone) may interact with another device (another phone, or a simple tag, or some other fixed reader), provided the two devices are held in close proximity, or 'tapped' together. In order to communicate, simple tags can derive their power from the nearby device.
  • Moderate amounts of data may be exchanged (one-way or two-way) in such interactions - a few kBytes, typically.
  • Management of data relevant to such interactions might be stored in the ordinary memory of the phone, or might be undertaken by a secure element such as the SIM card. In a payment application, for example, the 'cash balance' might be recorded by the card, that card running a protocol with the remote card, intended to ensure that a rogue application could not corrupt its legitimate operation. Such secure storage is characterized by high qualities of security, and very limited storage capacity.

One topic of debate among security experts is whether the 'near field' property can be subverted - for example, whether special antennae could eavesdrop from a distance: this is likely to be the case, in the right circumstances.

Suppose a supermarket has decided to use NFC to enhance shoppers' experience, and to attempt to induce its customers (or potential customers) to buy more items.

Crucially, this will involve giving the shoppers a special app to run on their smartphones, and will involve placing relevant tags on shelves and/or individual products. Three phases of app roll-out are envisaged:

1. The app allows shoppers to look up information about products - such as their nutritional content - before buying them. The shopper's phone is tapped onto the relevant shelf label to receive such information.

2. the app receives vouchers and special offers, pushed by the supermarket (perhaps on a schedule, perhaps based on the shopper's habits, perhaps when tapped on a shelf to activate a particular offer, or perhaps when the phone's location service indicates proximity to this supermarket or a competitor's shop).

3. The app allows shoppers to scan each item they place in their trollies (much as some supermarkets currently allow with hand-held barcode scanners); 3 stored vouchers are automatically applied; upon leaving the shop, the app automatically triggers an online payment for the full cost of the contents of the cart

Your task is to identify the threats inherent in this scenario (or, these scenarios, regarding each phase separately). Describe each threat, making clear the anticipated motive(s) of the attacker(s). There may be significant high-level design decisions to be made which will impact the security of the solution: explain what these are, and what their implications are.

Which threats would you expect to give rise to the biggest risks? Explain your answer. Your answer will necessarily be incomplete without an assessment of vulnerabilities, which is out of scope. Is there any other information you would need in order to complete a risk assessment?

Related Discussions:- Securities Issues in a company

Describe privacy-protecting techniques, Question: a) What do you meant...

Question: a) What do you meant by Privacy? b) Name the four privacy violations. c) Often, aggregate information and anonymized information can be combined to identif

Quote, How much would it cost to have a project completed by tomorrow night...

How much would it cost to have a project completed by tomorrow night?

802.11 wireless lans and csma/ca, 802.11 WIRELESS LANs AND CSMA/CA:  ...

802.11 WIRELESS LANs AND CSMA/CA:  IEEE 802.11 is standard wireless LAN that needs radio signals at 2.4GHz. Its speed is 11Mbps. The older computers use radio signals at data

Explain the terms used in network security, Question 1 (a) Explain b...

Question 1 (a) Explain briefly the following terms as used in network security: (i) Denial of service (DoS) attack (ii) Birthday attack (iii) DeMilitarized Zone

Miss, You are an IT Security administrator in a banking organization. Your ...

You are an IT Security administrator in a banking organization. Your organization hired an outside IT firm to do a proof of Concept for new equipment which is a computer based syst

Simplex data exchange, Simplex data exchange Simplex communication def...

Simplex data exchange Simplex communication defines to communication that happens in one direction only. Two definitions have made over time: a common definition, which is des

Describe the time limit problem, Problem: (a) Use a simple example to ...

Problem: (a) Use a simple example to explain what is meant by a finite state machine. (b) Describe the time limit problem in an interrupt-driven system. (c) A certain m

Provide a labelled drawing of a standard serial port, Question 1: (a) W...

Question 1: (a) With the help of a diagram show the basic structure of a computer system. (b) Explain as fully as you can each of the parts mentioned above. (c) What are

Alert, hi

hi

Find the capacity of the wcdma, Question: (a) Describe the term interfe...

Question: (a) Describe the term interference in the space, time, frequency, and code domain. (b) Consider a 1 G - AMPS: 824-849 MHz (forward) ; 869-894 MHz (reverse). B

Write Your Message!

Captcha
Order Assignment

Featured Services

Order Now

Popular Subjects

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd