fb
$20 Bonus + 25% OFF
$20 Bonus + 25% OFF
Securing Higher Grades Costing Your Pocket? Book Your Assignment at The Lowest Price Now!
loader
Add File

Error goes here

Files Missing!

Please upload all relevant files for quick & complete assistance.

Stuck on Your Question?

Get 24x7 live help from our Top Tutors. All subjects covered.

250 words

Error goes here

Students Who Viewed This Also Studied

3 Pages
Identify And Evaluate Marketing

What further information would you need to analyse information on market and business needs to identify marketing opportunities? 2.What trends are revealed by the diary sales data? 3.What trends are ...

Type

Thesis

Subject

1 Page
Electronic Engineering CDR report

I want a cdr report which is according to the standards of engineers australia for the skill assessment as an electronics engineer. ...

Type

Thesis

Subject

1 Page
Web Application Development

Once go to the specification and let me know ...last time assignment you did not do properly I lost it so please make sure are you guys willing to do or not? last assignment i got waste the money so ...

Type

Thesis

Subject

3 Pages
Business Management

Introduction (background of organization) Must be a local organization based (singapore) supplier selection criteria and evaluation analysis +how the company chose their supplier? +how the company eva ...

Type

Assignment

Subject

COIS23001 – Network Security

Question

Answered

Note: for this question, you need to download a PCAP file located in the course Moodle web site.

Peter is the Network Security Manager for a small spare parts business. The organisation uses an e-sales application to provide a front-end for its e-sales business. Customers are complaining that in the last two or three days the system has become very slow, taking them longer than normal to place their orders. This information has been corroborated by staff complaining that they are not happy with the slow response of the system to complete their daily activities. Peter suspects that the system has been the target of criminal hands and before he starts responding to the attack, he decides to investigate the issue a little further. First, he reviews the firewall logs and notices something abnormal in the type of traffic directed to a number of internal hosts including the organisation’s web server. Curious about this traffic, Peter uses Wireshark to capture a trace of the traffic. [A section of this trace can be accessed from the course Moodle web site].

Based on the above fictional scenario and the provided PCAP:

 

(a) Identify the anomaly in the traffic this organisation is going through (1/2 Mark). What sort of evidence do you have to make this claim? (1. 0 Marks).

(b) What sort of utility or tool do you think the “attacker” is using to conduct this attack? (1/2 mark)

(c) Provide the IP address of the host used by the perpetrator (1/2 Mark). Based on this information, what can you tell about the profile of this individual? Explain why (1.5 Marks).

(d) What Wireshark filter do you think Peter used to produce the given PCAP? Explain why (1 Mark).

 

(Note: One to three lines for each answer is sufficient length to get full marks)

Question 2 (10 marks)

 

You are the system’s administrator of Reliable Power Supplies (RPS), a medium sized company that builds UPSs and switched power supplies for the computing industry. Your task is the analysis, design and configuration of a Firewall System that secures the inbound and outbound traffic at RPS. After conducting the needs analysis you have a clear picture of the type of firewall system that best suits RPS.In the internal network, there is a special host (192.168.1.253/28) running an application that would be disastrous if it was compromised. Therefore for your design, you opt for a dual firewall system that you believe is the best option for this specific case. You also go for a demilitarized zone (Network Address 10.0.0.0/24) containing the e-mail (10.0.0.20/24) and Web services (10.0.0.30/24) of the company.Apart from providing NAT services and Packet Filtering, the first firewall (part of the dual configuration) acts as a Web and FTP Proxy server. This first firewall is connected to the Internet via 200.27.27.10/25 and to the DMZ via 10.0.0.10/24. The second firewall is used to filter traffic between the internal network and the DMZ. It is connected via 10.0.0.254/24 to the DMZ and via 192.168.1.254/28 to the internal network. The internal network address is 192.168.1.240/28.  The security policy requirements used to configure the firewalls are outlined as follows. RPS Web server contains public information including a product catalogue that is accessible to Internet users and it also provides secure online purchasing functionality using SSL/TLS. The internal users are also allowed to access all RPS WWW services; however they are allowed to access Internet WWW and FTP services only via the proxy located on the first firewall via port 3028. As mentioned, the internal network has a special host (192.168.1.253/28) which has complete access to any host and any services without using proxy services configured in the first firewall system. The remaining internal hosts must go via proxy on first firewall.The security policy requirements also dictate the e-mail server to receive from and send messages to hosts on the Internet and the internal users; however these internal users are to retrieve their messages via IMAP. Any other service which is not explicitly outlined in the security policy should be restricted from RPS network

Your tasks

A. Provide a network layout (network diagram) showing all the components of RPS network including both firewalls, the email and web servers, the DMZ, and all the internal hosts (Note that you should draw all the internal hosts. The number of internal hosts can be found from the internal network address given above). Ensure you label all hosts (servers, internal computers and firewalls) with appropriate names and write the IP addresses for each network interface

Marking (4 Marks):2.0 Marks for including all components of the network2.0 Marks for labeling all hosts with names and respective IP addressesB. You are required to develop two sets of rules for the dual firewall.  One will process traffic travelling between the Internet to the DMZ and Intranet. The other will process traffic travelling between the Intranet and the DMZ.  You need to also explain what each rule does. You should complete the following four (4) tables, adding rows where necessary.Table 1 Internet Rules (Firewall 1)

Rule Protocol Transport protocol Source IP Source Port Destination IP Destination Port ActionTable 2 Internet Rules Explanations (Firewall 1)

Rule Number Explanation

Table 3 Intranet / DMZ rules (Firewall 2)

RuleProtocolTransport protocolSource IPSource PortDestination IPDestination PortAction

Table 4  Intranet/DMZ Rule Explanations (Firewall 2)

Rule

Explanation

Marking (6 Marks):

1.5 Marks for meeting the requirements of the Internet rules

1.5 Marks for the descriptions of the Internet rules

1.5 Marks for meeting the requirements of the Intranet/DMZ rules

1.5 Marks for the descriptions of the Intranet/DMZ rules Question 3

DNS and ARP poisoning attacks are similar; however there are fundamental differences between the two. You are to research these specific differences contrasting the way the attacks are conducted and some of the countermeasures available. Ensure you use at least three in-text academic references to contrast these attacks (include neither your textbook nor Wikipedia in these references. Failure to do so may not give you marks).

Remember that you are not to repeat in your research what DNS and ARP poisoning attacks are. We already know that from our discussions in class. In writing about the differences between the two types of attacks, contrast for example the complexity of the attacks (which one is easy to conduct and why), the impact (consequences) of the attacks, which one is more common and the different mechanisms available to counter the attacks. Write no more than 300 words (about a page including in-text references)

Marking (10 Marks):

2.5 Marks for contrasting the complexity of the two type of attacks

2.5 Marks for contrasting the impact (consequences) of the attacks

2.5 Marks for contrasting the countermeasures

2.5 Marks for the format of the writing (referencing, grammar and structure)

 

Question 4:

The use of client-side scripting languages like JavaScript has been crucial in the development of the semantic web. However, in terms of security, it has also given the opportunity to computer criminals to conduct a wide range of cross-site scripting attacks. Historically, the Same Origin Policy has been one of the many mechanisms introduced to counteract this problem. With this policy in place, scripts are allowed to run on webpages only when they originate from the same source or site. This means that for documents or webpages to be retrievable, they have to belong to the same origin: same scheme or application layer protocol, same host or server and same port of a URL.  Despite of its good intention, the SOP is seen as a nuisance by web developers. The claim is that the SOP is too restrictive and inflexible affecting the introduction of creative and innovate applications.  In order to alleviate this problem, the World Wide Web Consortium  (W3C) introduced the Cross-Origin Resource Sharing (CORS) as a mechanism to relax the SOP policy

 Based on this background information and your personal research, please address the following issues associated with the SOP and CORS policies. 

a)Using the CQU domain (www.cqu.edu.au) explain and provide your own illustrative example of how the SOP policy works

b) Assume that in the CQU server you have an html page (your_homePage.html) identified by the URL: www.cqu.edu.au/your_homePage.htmlProvide two examples of URLs (web links) found in your_homePage.html for which the retrieval of the documents is allowed. Similarly, provide two examples of URLs (web links) in your_homePage.html for which the retrieval of the documents is denied. Use the following table to provide the URLs and give the reasons for the outcome of the retrieval of the pages.Your examples (URLs) Retrieval Allow/Deny Explain the reason

Allow

Allow

Deny

Denyc)In your own words explain the concept behind the CORS policyd)Using the two examples given above where the retrieval of the pages was denied, explain the interaction on how the access would be enabled using CORS. Make sure that in describing the interaction the Origin and the Access-Control-Allow-Origin are used in the HTTP headers

Incorrect referencing – Loss of marks depends on severity of the offence. Plagiarism will be referred to CQU authorities for investigation and possible academic penalty.Question 5: (5 marks) In this hypothetical case study, you should use the Internet to assist you in developing responses to three questions.  Use of the text only is not sufficient to attract full marks.SafeBank recently received a series of reports from customers concerning security breaches in online banking.  Customers reported having money transferred from their accounts, usually after they have found that their password has changed.  A full security audit revealed that the money transfers and changes to user passwords all originated from an Eastern European country on servers within the domain of crazyhackers.com – however – the question remained:  how did the hackers undertake the attack?Given that legitimate account numbers and passwords were used, it was initially assumed that it could be some form of phishing attack.  However, no evidence of such emails was found.  The only commonality between the victims was that they all used the same ISP.You are required to answer the following questions.  Please reference all sources  – do not copy directly from sources.A. Based on the information provided, what type of attack has been performed?  Justify your answer.

Hint:  In order to capture account numbers and passwords, how would a hacker “redirect” users to their servers instead of SafeBank’s?B. Describe in detail how the attack occurred – you may wish to include one or more diagrams.  You will need to make assumptions about host names, domains and IP addresses – document these.  You need not concern yourself with the technical details of the capture and reuse of SafeBank’s customer details (eg. Fake web sites/malware) – you are documenting how it was possible from a network perspective.C. What steps would you advise to prevent such attacks?  What limitations does this form of attack have?

 

COIS23001 – Network Security

Answer in Detail

Solved by qualified expert

Get Access to This Answer

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Hac habitasse platea dictumst vestibulum rhoncus est pellentesque. Amet dictum sit amet justo donec enim diam vulputate ut. Neque convallis a cras semper auctor neque vitae. Elit at imperdiet dui accumsan. Nisl condimentum id venenatis a condimentum vitae sapien pellentesque. Imperdiet massa tincidunt nunc pulvinar sapien et ligula. Malesuada fames ac turpis egestas maecenas pharetra convallis posuere. Et ultrices neque ornare aenean euismod. Suscipit tellus mauris a diam maecenas sed enim. Potenti nullam ac tortor vitae purus faucibus ornare. Morbi tristique senectus et netus et malesuada. Morbi tristique senectus et netus et malesuada. Tellus pellentesque eu tincidunt tortor aliquam. Sit amet purus gravida quis blandit. Nec feugiat in fermentum posuere urna. Vel orci porta non pulvinar neque laoreet suspendisse interdum. Ultricies tristique nulla aliquet enim tortor at auctor urna. Orci sagittis eu volutpat odio facilisis mauris sit amet.

Tellus molestie nunc non blandit massa enim nec dui. Tellus molestie nunc non blandit massa enim nec dui. Ac tortor vitae purus faucibus ornare suspendisse sed nisi. Pharetra et ultrices neque ornare aenean euismod. Pretium viverra suspendisse potenti nullam ac tortor vitae. Morbi quis commodo odio aenean sed. At consectetur lorem donec massa sapien faucibus et. Nisi quis eleifend quam adipiscing vitae proin sagittis nisl rhoncus. Duis at tellus at urna condimentum mattis pellentesque. Vivamus at augue eget arcu dictum varius duis at. Justo donec enim diam vulputate ut. Blandit libero volutpat sed cras ornare arcu. Ac felis donec et odio pellentesque diam volutpat commodo. Convallis a cras semper auctor neque. Tempus iaculis urna id volutpat lacus. Tortor consequat id porta nibh.

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Hac habitasse platea dictumst vestibulum rhoncus est pellentesque. Amet dictum sit amet justo donec enim diam vulputate ut. Neque convallis a cras semper auctor neque vitae. Elit at imperdiet dui accumsan. Nisl condimentum id venenatis a condimentum vitae sapien pellentesque. Imperdiet massa tincidunt nunc pulvinar sapien et ligula. Malesuada fames ac turpis egestas maecenas pharetra convallis posuere. Et ultrices neque ornare aenean euismod. Suscipit tellus mauris a diam maecenas sed enim. Potenti nullam ac tortor vitae purus faucibus ornare. Morbi tristique senectus et netus et malesuada. Morbi tristique senectus et netus et malesuada. Tellus pellentesque eu tincidunt tortor aliquam. Sit amet purus gravida quis blandit. Nec feugiat in fermentum posuere urna. Vel orci porta non pulvinar neque laoreet suspendisse interdum. Ultricies tristique nulla aliquet enim tortor at auctor urna. Orci sagittis eu volutpat odio facilisis mauris sit amet.

Tellus molestie nunc non blandit massa enim nec dui. Tellus molestie nunc non blandit massa enim nec dui. Ac tortor vitae purus faucibus ornare suspendisse sed nisi. Pharetra et ultrices neque ornare aenean euismod. Pretium viverra suspendisse potenti nullam ac tortor vitae. Morbi quis commodo odio aenean sed. At consectetur lorem donec massa sapien faucibus et. Nisi quis eleifend quam adipiscing vitae proin sagittis nisl rhoncus. Duis at tellus at urna condimentum mattis pellentesque. Vivamus at augue eget arcu dictum varius duis at. Justo donec enim diam vulputate ut. Blandit libero volutpat sed cras ornare arcu. Ac felis donec et odio pellentesque diam volutpat commodo. Convallis a cras semper auctor neque. Tempus iaculis urna id volutpat lacus. Tortor consequat id porta nibh.

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Hac habitasse platea dictumst vestibulum rhoncus est pellentesque. Amet dictum sit amet justo donec enim diam vulputate ut. Neque convallis a cras semper auctor neque vitae. Elit at imperdiet dui accumsan. Nisl condimentum id venenatis a condimentum vitae sapien pellentesque. Imperdiet massa tincidunt nunc pulvinar sapien et ligula. Malesuada fames ac turpis egestas maecenas pharetra convallis posuere. Et ultrices neque ornare aenean euismod. Suscipit tellus mauris a diam maecenas sed enim. Potenti nullam ac tortor vitae purus faucibus ornare. Morbi tristique senectus et netus et malesuada. Morbi tristique senectus et netus et malesuada. Tellus pellentesque eu tincidunt tortor aliquam. Sit amet purus gravida quis blandit. Nec feugiat in fermentum posuere urna. Vel orci porta non pulvinar neque laoreet suspendisse interdum. Ultricies tristique nulla aliquet enim tortor at auctor urna. Orci sagittis eu volutpat odio facilisis mauris sit amet.

Tellus molestie nunc non blandit massa enim nec dui. Tellus molestie nunc non blandit massa enim nec dui. Ac tortor vitae purus faucibus ornare suspendisse sed nisi. Pharetra et ultrices neque ornare aenean euismod. Pretium viverra suspendisse potenti nullam ac tortor vitae. Morbi quis commodo odio aenean sed. At consectetur lorem donec massa sapien faucibus et. Nisi quis eleifend quam adipiscing vitae proin sagittis nisl rhoncus. Duis at tellus at urna condimentum mattis pellentesque. Vivamus at augue eget arcu dictum varius duis at. Justo donec enim diam vulputate ut. Blandit libero volutpat sed cras ornare arcu. Ac felis donec et odio pellentesque diam volutpat commodo. Convallis a cras semper auctor neque. Tempus iaculis urna id volutpat lacus. Tortor consequat id porta nibh.

47 More Pages to Come in This Document. Get access to the complete answer.

MyAssignmenthelp.com boasts a team of qualified and experienced cheap essay writers committed to provide high-quality essay help solutions at affordable price. MyAssignmenthelp.com has become the best place for students who often search can someone do my essay cheap or can experts write my essay at affordable prices. Despite providing affordable essay help services, we never compromise with the quality of our services. With years of experience in academic writing and in-depth subject knowledge, our experts best cater to the search term, Do my essay online at reasonable price.

More COIS23001 – Network Security : Questions & Answers

Q

What further information would you need to analyse information on market and business needs to identify marketing opportunities? 2.What trends are revealed by the diary sales data? 3.What trends are revealed by the percentage by age group data? 4.You are contracted by an organisation (of your cho ...

View Answer
Q

I want a cdr report which is according to the standards of engineers australia for the skill assessment as an electronics engineer. ...

View Answer
Q

Once go to the specification and let me know ...last time assignment you did not do properly I lost it so please make sure are you guys willing to do or not? last assignment i got waste the money so please ...

View Answer
Q

Introduction (background of organization) Must be a local organization based (singapore) supplier selection criteria and evaluation analysis +how the company chose their supplier? +how the company evaluate? +how they rank their suppliers? +what criteria +compare with other competitors +recomendation ...

View Answer

Content Removal Request

If you are the original writer of this content and no longer wish to have your work published on Myassignmenthelp.com then please raise the content removal request.

Choose Our Best Expert to Help You

expert
student rating student rating student rating student rating student rating
Gates Daly

Master’s degree in Psychology from Cornell University

500 - Completed Orders

Hire Me
expert
student rating student rating student rating student rating student rating
Norman Nolan

PhD in Business and Economics

946 - Completed Orders

Hire Me
expert
student rating student rating student rating student rating student rating
Greenwood Bowers

Master's degree in English Literature from Stanford University

650 - Completed Orders

Hire Me
expert
student rating student rating student rating student rating student rating
Asa Prince

I was a professor of engineering associated with the University of Warwick

460 - Completed Orders

Hire Me

Still in Two Minds? The Proof is in Numbers!

33845 Genuine Reviews With a Rating of 4.9/5.

student rating student rating student rating student rating student rating
04 Dec 2021

It Write Up

Essay: 2 Pages, Deadline: 22 hours

expert finish the assignment on the time. Looks the assignment meet the requirement as per my request.

flag User ID: 5***87 Malaysia

student rating student rating student rating student rating student rating
03 Dec 2021

Marketing

Assignment: 12 Pages, Deadline: 2 days

very very good. also very willing to help out with escalations and reviewing the assignment for me.

flag User ID: 8***21 Singapore

student rating student rating student rating student rating student rating
03 Dec 2021

Marketing

Assignment: 6 Pages, Deadline: 7 days

The assignment provided was great. i had given one less start because the assignment is still not graded

flag User ID: 8***14 Mississauga, Canada

student rating student rating student rating student rating student rating
03 Dec 2021

Assignment

Essay: 2 Pages, Deadline: 4 days

Hi Thank you so much for your help today i got very high score I am so happy thanks again

flag User ID: 2***93 Melbourne, Australia

student rating student rating student rating student rating student rating
03 Dec 2021

Economics

Assignment: 4 Pages, Deadline: 13 days

I just got my result published today. I scored a pretty good mark on this assignment.

flag User ID: 5***78 Australia

student rating student rating student rating student rating student rating
03 Dec 2021

Management

Thesis: 1 Page, Deadline: 5 days

great job I was very satisfied all went through without any problems, thank you so much for your help

flag User ID: 6***06 United Kingdom, Great Britain

student rating student rating student rating student rating student rating
03 Dec 2021

Assignment

Essay: 1 Page, Deadline: 19 days

Writer did a great job. Very informative and thorough. Very Impressive. Thank you.

flag User ID: 7***39 United States

student rating student rating student rating student rating student rating
03 Dec 2021

Statistics

Programming: 2 Pages, Deadline: 1 hour

I am very Satisfied with the help I received. I Highly recommend them for any study help

flag User ID: 2***79 Pawtucket, United States

student rating student rating student rating student rating student rating
03 Dec 2021

Management

Essay: 5 Pages, Deadline: 21 days

It is a good writing with reliable sources and meet the deadline earlier than I expected. Such a good job

flag User ID: 5***30 Canada

student rating student rating student rating student rating student rating
03 Dec 2021

Mechanical Engineering

Home Work: 1 Page, Deadline: 27 days

Made a 69% but worked really hard! I think the option for 2 experts should be available.

flag User ID: 6***06 Atlanta, United States

student rating student rating student rating student rating student rating
04 Dec 2021

It Write Up

Essay: 2 Pages, Deadline: 22 hours

expert finish the assignment on the time. Looks the assignment meet the requirement as per my request.

flag User ID: 5***87 Malaysia

student rating student rating student rating student rating student rating
03 Dec 2021

Marketing

Assignment: 12 Pages, Deadline: 2 days

very very good. also very willing to help out with escalations and reviewing the assignment for me.

flag User ID: 8***21 Singapore

student rating student rating student rating student rating student rating
03 Dec 2021

Marketing

Assignment: 6 Pages, Deadline: 7 days

The assignment provided was great. i had given one less start because the assignment is still not graded

flag User ID: 8***14 Mississauga, Canada

student rating student rating student rating student rating student rating
03 Dec 2021

Assignment

Essay: 2 Pages, Deadline: 4 days

Hi Thank you so much for your help today i got very high score I am so happy thanks again

flag User ID: 2***93 Melbourne, Australia

student rating student rating student rating student rating student rating
03 Dec 2021

Economics

Assignment: 4 Pages, Deadline: 13 days

I just got my result published today. I scored a pretty good mark on this assignment.

flag User ID: 5***78 Australia

student rating student rating student rating student rating student rating
03 Dec 2021

Management

Thesis: 1 Page, Deadline: 5 days

great job I was very satisfied all went through without any problems, thank you so much for your help

flag User ID: 6***06 United Kingdom, Great Britain

student rating student rating student rating student rating student rating
03 Dec 2021

Assignment

Essay: 1 Page, Deadline: 19 days

Writer did a great job. Very informative and thorough. Very Impressive. Thank you.

flag User ID: 7***39 United States

student rating student rating student rating student rating student rating
03 Dec 2021

Statistics

Programming: 2 Pages, Deadline: 1 hour

I am very Satisfied with the help I received. I Highly recommend them for any study help

flag User ID: 2***79 Pawtucket, United States

student rating student rating student rating student rating student rating
03 Dec 2021

Management

Essay: 5 Pages, Deadline: 21 days

It is a good writing with reliable sources and meet the deadline earlier than I expected. Such a good job

flag User ID: 5***30 Canada

student rating student rating student rating student rating student rating
03 Dec 2021

Mechanical Engineering

Home Work: 1 Page, Deadline: 27 days

Made a 69% but worked really hard! I think the option for 2 experts should be available.

flag User ID: 6***06 Atlanta, United States

5% Cashback

On APP - grab it while it lasts!

Download app now

*Offer eligible for first 3 orders ordered through app!

ribbon
callback request mobile
Have any Query?