User Account

All Pages

How do nist criteria for selection of des and aes

Assignment Help Computer Network Security
Reference no: EM13336618

Part A :

Answer the following questions :

1. The total processing speed of microprocessors (based on clock rate and number of circuits) is doubling roughly every year. Today, a symmetric session key needs to be 100 bits long to be considered strong. How long will a symmetric session key have to be in 30 years to be considered strong?

2. How do NIST criteria for selection of DES and AES relate to Shanon's original standards of a good cryptographic system? What are the significant differences? How do these standards reflect a changed environment many years after Shannon wrote his standards?

3. A program is written to compute the sum of the integers from 1 to 10. The programmer, well trained in reusability and maintainability, writes the program so that it computes the sum of the numbers from k to n. However, a team of security specialists scrutinizes the code. The team certifies that this program properly sets k to 1 and n to 10; therefore, the program is certified as being properly restricted in that it always operates on precisely the range 1 to 10.

(a) Explain different ways that this program can be sabotaged so that during execution it computes a different sum, for example, 3 to 20.

(b) One means of limiting the effect of an untrusted program is confinement: controlling what processes have access to the untrusted program and what access the program has to other processes and data. Explain how confinement would apply to the above example.

4. The distinction between a covert storage channel and a covert timing channel is not clear-cut. Every timing can be transformed into an equivalent storage channel. Explain how this transformation could be done.

Part B :

1. Research the TJX data breach case on the web and answer the following questions.

a. Was the TJX break-in due to a single security weakness or multiple security weaknesses? Explain.
b. Suggest a set of measures which probably would have prevented the TJX data breach. Justify your answer.
c. Which of the CIA goals did TJX fail to achieve in this attack?

Rationale
This assessment task is based on the following topics discussed in the subject: the overview of Information security fundamentals, security threats, cryptography, malicious software and its countermeasures, operating system security and software security .

The assessment task is aligned with the following learning outcomes of the subject:

On successful completion of this subject, students will

be able to justify security goals and the importance of maintaining the secure computing environment against digital threats;
be able to explain the fundamental concepts of cryptographic algorithms;
be able to examine malicious activities that may affect the security of a computer program and justify the choice of various controls to mitigate threats.

Reference no: EM13336618

Questions Cloud

How do these standards reflect a changed environment : Explain different ways that this program can be sabotaged so that during execution it computes a different sum, for example, 3 to 20.
Explain bacteria to inactivate the antibiotic penicillin : Penicillase is an enzyme secreted by bacteria to inactivate the antibiotic penicillin. The enzyme has a molar mass of 30,000 and a single active site. The catalytic rate constant is 2000 s-1 and the Michaelis constant is KM = 5 x 10-5 M.
What is the magnetic moment of the loop : The plane of a 6.0 cm × 8.0 cm rectangular loop of wire is parallel to a 0.16-T magnetic field. The loop carries a current of 6.8 A. What is the magnetic moment of the loop
Explain the molar mass of a protein is from a measurement : The molar mass of a protein is determined from a measurement of the osmotic pressure. If 0.01 grams of the protein is dissolved in 1 ml. and osmotic pressure of 5 x 10-3 atm develops at a temperature of 310 K, what is the molar mass of the protein..
How do nist criteria for selection of des and aes : How do NIST criteria for selection of DES and AES relate to Shanon's original standards of a good cryptographic system? What are the significant differences? How do these standards reflect a changed environment many years after Shannon wrote his s..
What is the discharging current : A parallel-plate capacitor with circular plates of radius R is being discharged. What is the discharging current
Find the net downward force on the tanks flat bottom : The pressure at the surface of the water will be 140kPa , and the depth of the water will be 13.8m . The pressure of the air in the building outside the tank will be 87.0kPa
How much displacement current is encircled by the loop : A capacitor with parallel circular plates of radius R = 1.65 cm is discharging via a current of 16.5 A. How much displacement current is encircled by the loop
Explain the maximum age of a sample : What is the maximum age of a sample that can be measured by 14C dating if the error of measurement is 0.5%

Reviews

Write a Review

Computer Network Security Questions & Answers

  An overview of wireless lan security - term paper

Computer Science or Information Technology deals with Wireless LAN Security. Wireless LAN Security is gaining importance in the recent times. This report talks about how vulnerable are wireless LAN networks without any security measures and also talk..

  Computer networks and security against hackers

This case study about a company named Magna International, a Canada based global supplier of automotive components, modules and systems. Along with the company analysis have been made in this assignment.

  New attack models

The Internet evolution is and is very fast and the Internet exposes the connected computers to attacks and the subsequent losses are in rise.

  Islamic Calligraphy

Islamic calligraphy or Arabic calligraphy is a primary form of art for Islamic visual expression and creativity.

  A comprehensive study about web-based email implementation

Conduct a comprehensive study about web-based email implementation in gmail. Optionally, you may use sniffer like wireshark or your choice to analyze the communication traffic.

  Retention policy and litigation hold notices

The purpose of this project is to provide you with an opportunity to create a document retention policy. You will also learn how to serve a litigation hold notice for an educational institute.

  Tools to enhance password protection

A report on Tools to enhance Password Protection.

  Analyse security procedures

Analyse security procedures

  Write a report on denial of service

Write a report on DENIAL OF SERVICE (DoS).

  Phising email

Phising email It is multipart, what are the two parts? The HTML part, is it inviting the recepient to click somewhere? What is the email proporting to do when the link is clicked?

  Express the shannon-hartley capacity theorem

Express the Shannon-Hartley capacity theorem in terms of where is the Energy/bit and is the psd of white noise.

  Modern symmetric encryption schemes

Pseudo-random generators, pseudo-random functions and pseudo-random permutations

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd