Security fundamentalsTask(text book picture attached)You have to reference the text book and any additional material you have used in your answers in APA style..Answers MUST be written in your own...

1 answer below »
Security fundamentalsTask(text book picture attached)You have to reference the text book and any additional material you have used in your answers in APA style..Answers MUST be written in your own words. If an answer contains more than 10% direct quote (referenced or unreferenced), 0 marks will be awarded for this question. One or two sentence answers will be too short and only receive low marks. Answers longer than 1 pages (12 point font, single line spacing) may incur a penalty if too much non-relevant information is stated. For mathematical questions it is expected that you show intermediate steps of your working. Just stating the correct solution will result in low marks, on the other hand if the working is correct and you only made minor mistakes, you will still be awarded marks, even though the final answer is wrong.
Question 1 [5 Marks]Automated Teller Machines (ATM) are designed so that users will provide a personal identification number (PIN) and a card to access their bank accounts. Give examples of confidentiality, integrity and availability requirements associated in such a system and describe the degree of importance for each requirement.Answer should include (How ATM preserve confidentiality, integrty and availiability.Which is important: all degree of importance among them?
Question 2 [5 Marks]A thief broke into an Automated Teller Machine (ATM) using a screwdriver and was able to jam the card reader as well as breaking five keys from the keypad. The thief had to halt the process of break-in and hide, as a customer approached to use the ATM. The customer was able to successfully enter their ATM card, punch in the 4 digit PIN and was able to draw out some cash. Since the card reader was jammed, the customer was however not able to withdraw the ATM card, and drove off to seek some help. In the meantime, the thief came back and decided to try to discover the customer’s PIN so that he can steal money from the customer. You are required to calculate the maximum number of PINs that the thief may have to enter before correctly discovering the customer’s PIN?
Question 3 [5 Marks]Thinking about bio-metric authentication, list three reasons why people may be reluctant to use bio-metrics. Describe various ways of how to counter those objections.
Question 4 [5 Marks]In bio-metric authentication, false positive and false negative rates can be tuned according to the requirement, and they are often complementary i.e. raising one lowers the other. Describe two circumstances where false negatives are significantly more serious than false positives.
Question 5 [10 Marks]Jack is a successful lawyer who runs a law firm that deals with sensitive cases. In 2017, afterthe widely known ransomware attacks, their data was compromised. As a protectivemeasure, he requested that all employees must encrypt their messages to each other.Employees generally exchange instructions or case updates with messages that are nolonger than thirty characters each. For the purpose of hiding the meaning of the messages,they were told to encrypt them using Caesar cipher substitution then using anothersubstitution where the key is 567. Once the message is processed through theaforementioned methods, they added an extra layer of security by encrypting the messagewith One Time Pad that increments by one each time it’s used but remains less or equals to15 for encryption and decryption. For one particular message between two employees, thatkey was:7,15,12,6,8,9,4,2,1,13,12,5,3,1,8,15,6,4,8,12,8,10,9,14,6,11,13,2,4,6When the receiver received the message, he/she received the following ciphertext:LC DOMX IZY XVHP XMJQSH AANW FIHABRTWhat is the plaintext?
RationaleBe able to justify security goals and the importance of maintaining the secure computing environment against digital threats.Be able to explain the fundamental concepts of cryptographic algorithms.Be able to examine malicious activities that may affect the security of a computer program and justify the choice of various controls to mitigate threats.Be able to compare and contrast foundational security policies and models that deal with integrity and confidentiality.Marking criteria and standardsQuestion1 : In depth use of a good range of relevant literature to address the points. Provides an extensive range of examples of the CIA triad with sound evidence of synthesis of own research and prescribed readings in topics.Question 2: The answer is correct with a complete, clear, and detailed step-by-step working provided of how the answer was calculated.Question 3: Clear, comprehensive description of biometric authentication and why general population may object to using this technique. Critical points identified & discussed.Question 4: Clear, comprehensive description discussion of two circumstances where false negatives are significantly more serious than false positives in biometric authentication listing all critical points.Question 5:Correct identification of how to quickly identify if transposition techniques have been used. Correct decryption of the message has been provided along with a clear, concise and step by step explanation of the decryption technique used.
Answered Same DayApr 09, 2021ITC595Charles Sturt University

Answer To: Security fundamentalsTask(text book picture attached)You have to reference the text book and any...

Ankit answered on Apr 11 2021
153 Votes
Student Id    
                    Student Name
University Name
                    Title of assignment
Question 1
Confidentiality
Confidentiality means protection of bank account data or PIN from unauthorized access. Example of confidentiality associated with ATM is that in order to
access ATM, PIN is used by customers to access their card. PIN is to be confidential so that unauthorized person does not access this. Customers use strong PIN with alpha-numeric and special characters for ATM card safety. Bank keeps customers PIN confidential on their centralized server. All customer’s transactions are confidential on their bank system or server so that attackers do not get access.
Degree of importance of confidentiality
· The data transmission between bank and ATM should be encrypted
· PIN should be properly encrypted so that right person can read or get access.
Integrity
Integrity means protection of bank account data or PIN from being modified by unauthorized access. Example of Integrity associated with ATM is that the bank maintains integrity of client data on their server by using modern and fastest methodologies for ATM access. Also they maintained ATM collaboration. Bank system is update regularly on daily or weekly manner with real data in case of customer deposit case and it is not affecting customer account.
Degree of importance of Integrity
If Bank system and server is not updated regularly with real data, then integrity suffers.
Availability
Availability means authorized user of ATM card access their data whenever required. Example of Availability associated with ATM is that regular backup of account data on database server. Sometimes data is lost due to power failure, natural disaster etc. so regular backup maintain availability of data. ATM services are regularly checked to maintain cash so that customer get uninterrupted services. [Chia 2012]
Degree of importance of Availability
There is need to keep regular backup of account database so that services are available regularly. If there is halt in services such unavailable cash at ATM, backup failure etc. customers will not feel good.
Question 2
The total number of keys provided for ATM are 10 i.e. (0,1,2,3,4,5,6,7,8,9).
5 keys are broken by thief broke so only 5 keys are left.
The number of keys left as n=5
4 digits are used for ATM pin so r=4
Repetition is allowed in this.
Applying Permutation Formula,
Here is maximum number of pins entered by thieves are 624
Question 3
Here are three reasons why people reluctant to use Bio-metric as below:
1) Theft issue: Biometric data theft...
SOLUTION.PDF

Answer To This Question Is Available To Download

Related Questions & Answers

More Questions »

Submit New Assignment

Copy and Paste Your Assignment Here