User Account

All Pages

Evaluate the security of a password management protocol

Assignment Help Computer Network Security
Reference no: EM13862477

Q1: Cracking password management protocols

One of the best ways to evaluate the security of a password management protocol is to try to crack it yourself. Fortunately, you do not need to be an expert hacker to do this. A number of password cracking tools are available for free online.

For this Discussion, you will choose one example of a password management protocol (this includes password creation, storage, revocation, etc.) in any product suite you have used (e.g., Microsoft, Apple, Adobe, etc.) and discuss its security or insecurity with your colleagues. Then you will install one of the available cracking tools to see whether you can crack this system and share your experience with your colleagues.

To complete this Discussion:

Post: Name the product and the associated password management protocol you selected. Analyse the good and bad practices of this protocol. Install a password-cracking tool and try to crack that product. Then share your experience with your colleagues using screenshots. Recommend ways this protocol could be improved, if possible, and explain the results of the improvements you recommended.

Q2: Context and environment

In a pervasive computing environment, context plays an important role. Services are provided in a smart way based on the surrounding conditions (i.e., contextual attributes). From a security perspective, security services such as access control have to reflect this fact and be context-aware. With that in mind, consider the following scenario:

Alice, a security researcher, thinks that the role-based access control (RBAC) model, along with all traditional access control models, is not suitable. Bob thinks the opposite. Bob thinks RBAC, for instance, could be used to grant/deny permissions in such an environment.

For this Discussion, you will consider the current access control models you have seen so far and align yourself with either Alice or Bob.

To complete this Discussion:

Post: Take a position in which you agree with either Alice or Bob as described in the example, or if you are somewhere in between. Evaluate the suitability of role-based access control (RBAC) for accommodating contextual information in the access control decision-making process. Identify and describe any obstacles, and explain your solutions for them. Given the access policy, evaluate whether or not Extensible Access Control Markup Language (XACML) could be used to express the contextual attributes.

Encryption case study

ABC Company uses the cloud for its applications. It uses a password management application that stores passwords in a protected file encrypted by a single password. The password is five alphabetic characters and is changed on a monthly basis by the administrator, who delegates that to a colleague in case of the administrator's absence. When a subject seeks access to a certain protected object, the application decrypts the whole file in memory and matches the subject's password with the one in the store. The access control system does not accommodate contextual attributes in its access decision.

Verified Expert

Reference no: EM13862477

Questions Cloud

What is the basis of the truck for determining?depreciation : Carrie owns a truck costing $13,000 and used for personal activities. The truck has a $9,900 FMV when it is transferred to her?business, which is operated as a sole proprietorship. What is the basis of the truck for determining?depreciation? What is ..
What problem do you believe is the most pressing : What problem do you believe is the most pressing, and why would you address that problem first? What are the expectations that you would share with the inmates and the guards about your plan
Using the effective interest method : On 1/1/2014 the Jackson Co. has a $40,000 debt outstanding which matures on 12/31/16. Interest which is payable on Dec. 31 of each year, was last paid on 12/31/13. Using the effective interest method. how much interest expense is recognized on the de..
What is the basis of the house for depreciation : Tara owns a house that she has been living in for eight years. She purchased the house for $200,000 and the FMV today is $ 160,000. She is moving into her?friend’s house and has decided to convert her residence to rental property. Assume 20% of the?p..
Evaluate the security of a password management protocol : Evaluate the security of a password management protocol is to try to crack it yourself. Fortunately, you do not need to be an expert hacker to do this.
Journal entry to record the redemption of the bonds : Normal 0 false false false EN-US X-NONE X-NONE MicrosoftInternetExplorer4 ..
Employees income tax rates to increase : Normal 0 false false false EN-US X-NONE X-NONE MicrosoftInternetExplorer4 ..
What are some of the social emotional : What are some of the impacts of these disorders on the community?

Reviews

Write a Review

Computer Network Security Questions & Answers

  Different logon passwords to be five upper-case letters

Computer system 1 needs logon passwords to be five upper-case letters. How many different passwords are there for system 1?

  What is the definition of information security what

1.what is the definition of information security? what essential protections must be in place to protect information

  Explain how would you apply operation security opsec

network security-operation security in a corporation - word count 200how would you apply operation security opsec

  Summary of network vulnerabilities that you uncover

Your first milestone consists of two deliverables: a Visio diagram that depicts your interpretation of the current network and a written summary of network vulnerabilities that you uncover

  Modern networks have to support a number of digital data

modern networks have to support a number of digital data protocols as well as digital audio protocols. the ability to

  Ientify another application other than course management

security change management and architectural adaptationthe online course management system from previous assignments is

  Incremental evaluation of a system

TCB subsets are said to leverage purely hierarchical domains ordered by privilege and explain the relation between these domains and protection rings.

  Explain how you would go about decrypting a message that

explain how you would go about decrypting a message that was encrypted in blocks of length two using an affine

  How is your firewall implementation

Imagine you have installed and configured firewalls in all of the right places within your organization's network. Like any other organization, you try to stay current by deploying the latest and greatest in firewall technology.

  Examine how system balanced security and usability

Analyzes the implementation of the system in your plan. Examine how this system balanced security and usability, and explain the challenges of incorporating system security and system usability into a design.

  What are the specific limitations of a computer system

1. what are the specific limitations of a computer system that provides no operating system? what must be done to load

  Relationship between infrastructure and security

Justify and support the relationship between infrastructure and security as it relates to this data-collection and analysis company. Present the rationale for the logical and physical topographical layout of the planned network

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd