CISY478-InClass Exercise_Information Security - 02-07-23

.docx

School

Virginia State University *

*We aren’t endorsed by this school

Course

478

Subject

Computer Science

Date

May 6, 2024

Type

docx

Pages

2

Uploaded by MegaBee4187 on coursehero.com

CISY 478 - Spring 2023 In Class Exercise for February, 2023 Instructor: Dr. Adeyemi A. Adekoya Exercise Objectives 1. Demonstrate the ability to identify different types of network attacks. 2. Demonstrate the ability to recommend solutions to manage network security. Exercise Overview A large organization with headquarters in New York, London, and Sydney, owns and uses an extensive Virtual Private Network (VPN). Recently, the organization's network was attacked on various fronts. In the first instance, an attacker (HACKER) created a network of infected computers and sent out an instruction for each of those computers to send a request to one of the organization's primary servers. When the server received over 3 million simultaneous hits, it became overwhelmed and failed. In the second instance, an attacker located an active port that wasn't in use and plugged in to it to gain physical access to the network. From there, the attacker used Address Resolution Protocol, or ARP poisoning to listen in on a conversation between two hosts. The attacker spoofed the media access control, or MAC, address of each host to redirect traffic to the attacker's PC and gained access to private login credentials. Finally, many employees were using the company’s computers and network resources to access social media Web sites (e.g., YouTube, Facebook) and in some cases Web sites with malicious code or inappropriate content. Not only did such non-work related Web visits result in high consumption of the company’s network bandwidth but in a handful of occasions, they caused the company’s systems to be infected with malware infections. Task: Identifying Attacks and Recommending Securing Controls You need to make recommendations regarding how the organization's network may be better secured to avoid similar attacks in future. Specifically, carry out the following instructions: Number Instructions 1 Identify and describe the different types of attacks that were executed against the network. 2 How can large organizations with extensive infrastructures, such as the one described in the given scenario, control and restrict remote access to their networked resources? 3 With respect to the second attack, how can you protect physical ports so an attacker can't plug in and gain access to the network? In what ways can you improve port security? 4 How can large organizations with extensive websites visits by their employees, such as the one described in the given scenario, conserve on their bandwidth use and control its employees’ access to Web sites? 5 For a large organization with extensive infrastructures, such as the one described in the given scenario, identify at least 4 different ways through which you can monitor network traffic and detect vulnerabilities that could be exploited to launch network attacks.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
  • Access to all documents
  • Unlimited textbook solutions
  • 24/7 expert homework help
Related Questions
Differentiating between spoofing and session hijacking is important. If you utilize the internet, please outline two security measures you employ to prevent session hijacking.
How does IP spoofing operate? What is it? Is the forgery of IP addresses regarded as a security risk?
Distinguishing spoofing from session hijacking is important. If you use the internet, tell us two measures you take to protect yourself from session hijacking.
What is the definition of IP spoofing? Is IP spoofing regarded as a security risk?
Discussion Topic Post a total of 3 substantive responses over 2 separate days for full participation. This includes your initial post and 2 replies to classmates or your faculty member. Due Day 3 Respond to the following in a minimum of 175 words: Discuss how penetration tests provide insight about network vulnerabilities through testing network defenses, such as firewalls, honeypots, and IDS. Provide an example of an intrusion and how it can be circumvented. Due Day 7 Post 2 replies to classmates or your faculty member. Be constructive and professional.
Differentiating between spoofing and session hijacking is important. If you utilize the internet, please outline two security measures you employ to prevent session hijacking.
Differentiating spoofing from session hijacking is important. If you use the internet, tell us two measures you take to protect yourself against session hijacking.
Describe the definition of "firewall" in terms of network security and how it is employed in different network topologies.
It's important to differentiate between spoofing and session hijacking. If you use the internet, please provide two measures you take to prevent session hijacking.
The rerouting of harmful traffic from one VPN to another has the potential to trigger an attack on the network. Before a defense can be devised, it is necessary to determine the attack pattern of the attacker. What kind of preventative steps can you conceive of taking?
Describe how "firewall" is used in the context of network security, how it is applied to different network topologies, and why it is required.
Explore the concept of blockchain-based authentication for network access control and its potential advantages in network security.
What is IP spoofing and how does it work? Is IP spoofing considered a security risk?
Explain the definition of the term "firewall" in terms of network security, as well as how it is employed in different network topologies.
A network intrusion may occur if malicious traffic is routed from one VLAN to another, which is one method of committing a network breach. Determine the pattern of attack used by the attacker. Describe all of the preventative steps you can put in place to prevent this from occurring.
A network intrusion may occur if malicious traffic is routed from one VLAN to another, which is one method of committing a network breach. Determine the pattern of attack used by the attacker. Describe all of the preventative steps you can put in place to keep this from occurring.
When it comes to protecting vehicular communications or vehicle-to-vehicle communications, what security techniques/mechanisms may be employed? * What follows is a time estimate for how long it takes to encrypt and decrypt a message using each security technique/mechanism.
Explain the definition of the word "firewall" in terms of network security, as well as how it is employed in different network topologies.
Discuss the security implications and solutions for mitigating DDoS (Distributed Denial of Service) attacks using network protocols.
What does the term "firewall" mean in terms of network security? Describe how it is used in network topologies and designs.
As compared to various approaches to network security, such as application layer security, what are the advantages and disadvantages of employing IPSec, and why should you make use of it?
SCENARIO 1: You have just completed a routine security audit on the company’s information systems, and you found several areas of vulnerability. For example, file permissions have not been updated in some time, no comprehensive password policy exists, and network traffic is not fully encrypted. You noted these areas, among others, in a report to your supervisor. The report included specific recommendations to fix the problems. Your supervisor responded by saying that budgets are tight right now, and she could not approve your requests to resolve these issues. As an IT professional, you are very uncomfortable with the risk level, but you have been unable to sway your supervisor. When you discussed the situation with a colleague, he said, “Why worry about it? If it’s good enough for her, it should be good enough for you.” What do you think of your colleague’s advice, and why? Is this an ethical question? If you are still is uncomfortable, what are your options? SCENARIO 2: You work for a…
TASK 01 (SHODAN)•For this assignment you will have to do some observation task on some vulnerabilities that can be exploited to attack ICS security.•Remember: ONLY OBSERVE for study purpose. UNITEN will not be responsible for your experimentation beyond the required task.Search for potential location of ICS devices•Use Shodan website•Search for location that is linked to port 102 in Malaysia•Note how many are there in Malaysia1.Find out what all those displayed information mean from the search. Explain it in your report. [5 marks]2.Use the map in SHODAN to actually find out where these location actually is. [2 marks]3.Cross check with google map if the location is actually real. List at least TWO detailed address and information found through SHODAN, [3 marks]4.Extra bonus marks: Find out other port number that might be used by ICS device and perform a search. List them out and perform the same test. Write the same report of your findings. TASK 02 (GOOGLE HACKING)•For this assignment…
What are the distinctions between a VPN and a firewall?
What exactly is IP spoofing? Is IP spoofing considered a security risk?
Identifying any three protocols that might be exploited by attackers is essential if your organization's users rely substantially on the network.
When comparing IPSec to other forms of network security, including application layer security, what are the advantages and disadvantages of using it, and why should you?
Analyze the operation of firewalls at the Network Layer and their role in network security.
In terms of network security, define the term "firewall" and describe how it is used in various network architectures.
What does it mean to fake one's IP address? Spoofing of Internet Protocol (IP) addresses is a sort of security violation, right?
What does the phrase "firewall" mean in terms of network security, and how is it used in network topologies?
Explain the differences between authentication and authorization in the context of network security.
SEE MORE QUESTIONS
Recommended textbooks for you
Text book image
Database System Concepts
Computer Science
ISBN:9780078022159
Author:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Publisher:McGraw-Hill Education
Text book image
Starting Out with Python (4th Edition)
Computer Science
ISBN:9780134444321
Author:Tony Gaddis
Publisher:PEARSON
Text book image
Digital Fundamentals (11th Edition)
Computer Science
ISBN:9780132737968
Author:Thomas L. Floyd
Publisher:PEARSON
Text book image
C How to Program (8th Edition)
Computer Science
ISBN:9780133976892
Author:Paul J. Deitel, Harvey Deitel
Publisher:PEARSON
Text book image
Database Systems: Design, Implementation, & Manag...
Computer Science
ISBN:9781337627900
Author:Carlos Coronel, Steven Morris
Publisher:Cengage Learning
Text book image
Programmable Logic Controllers
Computer Science
ISBN:9780073373843
Author:Frank D. Petruzella
Publisher:McGraw-Hill Education
SEE MORE TEXTBOOKS
Related Questions
SEE MORE QUESTIONS
Recommended textbooks for you
Text book image
Database System Concepts
Computer Science
ISBN:9780078022159
Author:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Publisher:McGraw-Hill Education
Text book image
Starting Out with Python (4th Edition)
Computer Science
ISBN:9780134444321
Author:Tony Gaddis
Publisher:PEARSON
Text book image
Digital Fundamentals (11th Edition)
Computer Science
ISBN:9780132737968
Author:Thomas L. Floyd
Publisher:PEARSON
Text book image
C How to Program (8th Edition)
Computer Science
ISBN:9780133976892
Author:Paul J. Deitel, Harvey Deitel
Publisher:PEARSON
Text book image
Database Systems: Design, Implementation, & Manag...
Computer Science
ISBN:9781337627900
Author:Carlos Coronel, Steven Morris
Publisher:Cengage Learning
Text book image
Programmable Logic Controllers
Computer Science
ISBN:9780073373843
Author:Frank D. Petruzella
Publisher:McGraw-Hill Education
SEE MORE TEXTBOOKS