User Account

All Pages

Compare and contrast the security mechanisms

Assignment Help Other Subject
Reference no: EM132376729

Learning outcomes

Upon successful completion of this subject, students should:

• be able to justify security goals and the importance of maintaining the secure computing environment against digital threats;
• be able to explain the fundamental concepts of cryptographic algorithms;
• be able to examine malicious activities that may affect the security of a computer program and justify the choice of various controls to mitigate threats;
• be able to compare and contrast the security mechanisms of a trusted operating system with those used in a general purpose operating system;
• be able to investigate and justify the use of the access control mechanisms and user authentication processes;
• be able to compare and contrast foundational security policies and models that deal with integrity and confidentiality.

Subject content

There are a number of topics in this subject which you will cover. These topics are:
• Overview of information security
• Authentication and access control
• Cryptography
• Types of security threats and attacks
• Operating system security
• Network security
• Database security
• Cloud computing security
• Privacy
• Emerging topics in security

Assessment item - Security fundamentals

Task

This assessment aims to develop and gauge student understanding of the key topics covered so far by answering the following questions. Answering these questions will help you build some understanding for the next assessment item as well as for the entire subject. It is expected that answers to the assignment questions be succinct (i.e. precise and concise) with all sources of information fully referenced as per APA referencing style. You have to reference the text book and any additional material you have used in your answers.

Note that the guide for APA referencing is provided in the resources section of Interact site of this subject.

Answers MUST be written in your own words. If an answer contains more than 10% direct quote (referenced or unreferenced), 0 marks will be awarded for this question. One or two sentence answers will be too short and only receive low marks. Answers longer than 1.5 pages (12 point font, single line spacing) may incur a penalty if too much non-relevant information is stated. For mathematical questions it is expected that you show intermediate steps of your working. Just stating the correct solution will result in low marks, on the other hand if the working is correct and you only made minor mistakes, you will still be awarded marks, even though the final answer is wrong.

Question 1

Automated Teller Machines (ATM) are designed so that users will provide a personal identification number (PIN) and a card to access their bank accounts. Give examples of confidentiality, integrity and availability requirements associated in such a system and describe the degree of importance for each requirement.

Question 2
A thief broke into an Automated Teller Machine (ATM) using a screwdriver and was able to jam the card reader as well as breaking five keys from the keypad. The thief had to halt the process of break-in and hide, as a customer approached to use the ATM. The customer was able to successfully enter their ATM card, punch in the 4 digit PIN and was able to draw out some cash. Since the card reader was jammed, the customer was however not able to withdraw the ATM card, and drove off to seek some help. In the meantime, the thief came back and decided to try to discover the customer's PIN so that he can steal money from the customer. You are required to calculate the maximum number of PINs that the thief may have to enter before correctly discovering the customer's PIN?

Question 3

Thinking about bio-metric authentication, list three reasons why people may be reluctant to use bio-metrics. Describe various ways of how to counter those objections.

Question 4
In bio-metric authentication, false positive and false negative rates can be tuned according to the requirement, and they are often complementary i.e. raising one lowers the other. Describe two circumstances where false negatives are significantly more serious than false positives.

Question 5
Transposition is one known method of encrypting the text. What can be one way that a piece of cipher text can be determined quickly if it was likely a result of a transposition? Utilising some of the decryption techniques (substitution and others) covered in the subject so far, you are required to decipher (find the plain text) the cipher text that will be proviced to you closer to the assessment due date via the subject site. In order to present your solution, you need to demonstrate and explain the steps taken to decipher this text.

Rationale
This assessment task will assess the following learning outcome/s:
• be able to justify security goals and the importance of maintaining the secure computing environment against digital threats.
• be able to explain the fundamental concepts of cryptographic algorithms.
• be able to examine malicious activities that may affect the security of a computer program and justify the choice of various controls to mitigate threats.
• be able to compare and contrast foundational security policies and models that deal with integrity and confidentiality.

Assessment item - Research project (Abstract)

Task
In this assessment task you are required to select a topic for your research project from the list of research areas/topics provided below:
•Biometrics for authentication: security and privacy implications
•Security and privacy issues in Internet of Things (IoT) /Smart Architectures
•Security threats in cloud computing and preventive methods
•Security issues in Software Defined Networks (SDN)
•Denial of service and distributed denial of service attacks
•Investigating security of Blockchain enabled applications
•Malware: past, present and future
•Employee privacy and email, WWW, and instant messaging
•Wireless Network security and preventive techniques
•Security threats related to BYOD devices and countermeasures
•Cryptographic techniques
•Data Exfiltration techniques

In this assessment, you are required to submit the title and an abstract for your selected research project. The abstract will provide an overview of your selected topic, along with key securtiy challenges in that area and why you have selected this to be your area of research. At the end of the submission, you should have "Reference" section that will have a maximum of two articles (at least one journal article) used to build your discussion for this abstract.

Rationale

This assessment task will assess the following learning outcome/s:
• be able to justify security goals and the importance of maintaining the secure computing environment against digital threats.
• be able to explain the fundamental concepts of cryptographic algorithms.
• be able to examine malicious activities that may affect the security of a computer program and justify the choice of various controls to mitigate threats.
• be able to compare and contrast the security mechanisms of a trusted operating system with those used in a general purpose operating system.
• be able to investigate and justify the use of the access control mechanisms and user authentication processes.
• be able to compare and contrast foundational security policies and models that deal with integrity and confidentiality.
This assessment has been designed to assist students with the completion of assessment 5 (Research Project Report).The aim of this task is to help students :
• to build an understanding and perspective of current and emerging topics in Information Security;
• to help the students to formulate their research project in a step by step manner; and
• to build generic skills including, critical thinking, analysis, problem solving in the context of Information Security

Assessment item - Research project (Report)Task

In this assessment, you are required to provide a complete report of your research project,

that you chose in Assessment 3 (Research Project Abstract) by discussing the following aspects:
• Overview of the technology involved
• Relevant technologies and applications of those technologies
• Highlighting the challenges/problems in your chosen research area
• Identification of any gaps in the literature by:
discussing areas/issues that you believe have been addressed in the current literature;
highlighting areas/issues that have not been addressed or adequately addressed; and discussing your view(s) on the issue(s) that you see as being critical.
• Summarize the future research directions based on the identified gaps

To accomplish the above, you are expected to read and critically evaluate recent research in your selected research area by citing a minimum of 5 research articles. Students are encouraged to access such research articles from well known and reputed research portals such as IEEE, ACM, Springer, Wiley etc. Please note Wikipedia and general blogs will not be considered as reputable citations.

Rationale

This assessment task will assess the following learning outcome/s:
• be able to justify security goals and the importance of maintaining the secure computing environment against digital threats.
• be able to explain the fundamental concepts of cryptographic algorithms.
• be able to examine malicious activities that may affect the security of a computer program and justify the choice of various controls to mitigate threats.
• be able to compare and contrast the security mechanisms of a trusted operating system with those used in a general purpose operating system.
• be able to investigate and justify the use of the access control mechanisms and user authentication processes.
• be able to compare and contrast foundational security policies and models that deal with integrity and confidentiality.
This assessment continues links back to assessment 3 where students initiated their research project by selecting a research topic in an emerging area of information security.The aim of this task is to help students :
• to demonstrate ability to integrate and apply information from various topics;
• to build an understanding and perspective of current and emerging topics in Information Security;
• to help the students to formulate their research project in a step by step manner; and
• to build generic skills including, critical thinking, analysis, problem solving in the context of Information Security

Verified Expert

The file has been done on the topic of BYOD and describes about its benefits, as well the disadvantages they have.The models and policies that must be adapted by the organisation, especially IT to secure the network systems and stop from getting the devices attacked with malware.This is report of a research project and it covers the areas of BYOD, and its preference in delivering quick services to the client and be at par with their competitors to get market space and profit.

Reference no: EM132376729

Questions Cloud

A loan where the borrower pays interest each period : A loan where the borrower pays interest each period, and repays some or all of the principal of the loan over time is called what?
Good working order and would last for another : Although the Chen Company's milling machine is old, it is still in relatively good working order and would last for another 10 years.
Write a research proposal for a small-scale study : 7001HSV Foundations of Research Inquiry Assignment, Griffith University, Australia. Write a research proposal for a small-scale study
How would zoe apply a copyright notice to the creative work : BSB42415 Certificate IV Marketing and Communications-RMIT University-Australia-How would Zoe apply a copyright notice to the creative work?
Compare and contrast the security mechanisms : Information Security - explain the fundamental concepts of cryptographic algorithms - justify security goals and the importance of maintaining
Why do venture capital investors structure deals : Why do venture capital investors structure deals so that the venture capital managers have a strong incentive to work hard?
Appropriate for the interest rate on the debt : Is it appropriate for the interest rate on the debt used to finance the project be the same as the discount (opportunity cost of capital) rate? Why or why not?
How could you use data to improve the teams success : Conflict at work(Retail Pharmacy is the workplace). Now is your opportunity to collect data and create a qualitative study on this topic.
Deduct annual interest payments and dividend payments : When we calculate a project's annual free cash flows, do we deduct annual interest payments and dividend payments? Why?

Reviews

len2376729

9/26/2019 12:03:05 AM

Criteria HD 100% - 85% DI 84% - 75% Demonstrate Demonstrate Demonstrate an ability to an ability to an ability to analyse, analyse, analyse, reason and reason and reason and discuss the discuss the discuss the concepts concepts to concepts to learned in draw justified draw justified the subject conclusions conclusions (This that are that are includes logically logically content supported by supported by from online examples and examples and meetings, best practice. best practice. textbook Answers The answers chapters, succinctly are logically modules, integrate and structured to readings and link create forum information cohesive and discussions) into cohesive and coherent coherent piece of piece of analysis that analysis and consistently consistently use correct use correct security security terminologies and terminologies. sophisticated language.

len2376729

9/26/2019 12:02:51 AM

Identify gaps in the literature. (4 Marks) Comprehensive knowledge of the topic and in depth explanation of the issues that are not addressed; Reasonable knowledge of the topic and a comprehensive explanation of the issues that are not addressed. Comment on future research directions based on the identified gaps i.e what other research questions arise from the literature. (4 Marks) The proposed future research direction is well formulated and ably answers all the identified gaps. The proposed future direction is adequately formulated and sufficiently answers most of the identified gaps. Be written clearly (with content well organized) (3 Marks) Highly developed skills in expression & presentation of ideas. Fluent writing style appropriate to assessment task/document type. Grammar & spelling accurate. Formal English is used Well developed skills in expression & presentation of ideas. Fluent writing style appropriate to assessment task/document type. Grammar & spelling accurate. Mostly uses formal English.

len2376729

9/26/2019 12:02:39 AM

Assessable Components HD 100% - 85% Abstract section (5 Marks) A very concise abstract where the aim of study is perfectly articulated, the central question is precisely formulated, Introduction section (5 Marks) A comprehensive discussion in relation to the research background as well as the aim/objectives of research is included. Select literature that reflects recent developments in the area and emphasizes primary literature (i.e. Literature selected magnificently reflects recent developments in the area and completely emphasizes primary literature (i.e.

len2376729

9/26/2019 12:02:19 AM

Q4 5 Marks Clear, comprehensive description discussion of two circumstances where false negatives are significantly more serious than false Detailed description discussion of two circumstances where false negatives are significantly more serious than false positives in positives in biometric authentication listing all critical points. biometric authentication. Many critical points identified & discussed. Q5 10 Marks Correct identification of how to quickly identify if transposition techniques have been used. Correct decryption of the message has been provided along with a clear, concise and step by step explanation of the decryption technique used. Correct identification of how to quickly identify if transposition techniques have been used. Correct decryption of the message has been provided along with a clear, and step by step explanation of the decryption technique used.

len2376729

9/26/2019 12:02:06 AM

own research and prescribed readings in topics. readings in topics. Q2 5 Marks The answer is correct with a complete, clear, and detailed step- by-step working provided of how the answer was calculated. The answer is correct with a complete, clear, and step- by-step working provided of how the answer was calculated. Q3 5 Marks Clear, comprehensive description of biometric authentication and why general population may object to using this technique. Critical points identified & discussed. Detailed description of biometric authentication and why general population may object to using this technique. Many critical points identified & discussed.

len2376729

9/26/2019 12:01:57 AM

Question HD 100% - 85% DI 84% - 75% In depth use of Evidence of a good range using relevant of relevant literature to literature to address the address the points. Q1 5 Marks points. Provides an extensive range of Provides a detailed range of examples of the CIA triad examples of with evidence the CIA triad of synthesis of with sound external evidence of readings and synthesis of prescribed

Write a Review

Other Subject Questions & Answers

  Cross-cultural opportunities and conflicts in canada

Short Paper on Cross-cultural Opportunities and Conflicts in Canada.

  Sociology theory questions

Sociology are very fundamental in nature. Role strain and role constraint speak about the duties and responsibilities of the roles of people in society or in a group. A short theory about Darwin and Moths is also answered.

  A book review on unfaithful angels

This review will help the reader understand the social work profession through different concepts giving the glimpse of why the social work profession might have drifted away from its original purpose of serving the poor.

  Disorder paper: schizophrenia

Schizophrenia does not really have just one single cause. It is a possibility that this disorder could be inherited but not all doctors are sure.

  Individual assignment: two models handout and rubric

Individual Assignment : Two Models Handout and Rubric,    This paper will allow you to understand and evaluate two vastly different organizational models and to effectively communicate their differences.

  Developing strategic intent for toyota

The following report includes the description about the organization, its strategies, industry analysis in which it operates and its position in the industry.

  Gasoline powered passenger vehicles

In this study, we examine how gasoline price volatility and income of the consumers impacts consumer's demand for gasoline.

  An aspect of poverty in canada

Economics thesis undergrad 4th year paper to write. it should be about 22 pages in length, literature review, economic analysis and then data or cost benefit analysis.

  Ngn customer satisfaction qos indicator for 3g services

The paper aims to highlight the global trends in countries and regions where 3G has already been introduced and propose an implementation plan to the telecom operators of developing countries.

  Prepare a power point presentation

Prepare the power point presentation for the case: Santa Fe Independent School District

  Information literacy is important in this environment

Information literacy is critically important in this contemporary environment

  Associative property of multiplication

Write a definition for associative property of multiplication.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +91-977-207-8620

Phone: +91-977-207-8620

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd