Identified issues in networks, Computer Network Security

Assignment Help:

The "Big Red Rocks" (BRR) mining company is based and operates in Western Australia. They are primarily an iron ore miner, but they also produce electricity through tidal power to support their crushing operations, with any excess power sold back to the power grid through the electricity market. BRR maintains a head office in Perth, and a site office in Port Hedland. There is also a control system network operated at their crushing plant outside of Port Hedland. There is a requirement for database information from the crusher site to be sent to Perth for accounting and other purposes. BRR has been informed by CERT Australia that some of their internal documents have been found on external third party websites, and that they have significant security issues which need to be rectified. You are a network security consultant who has been hired to advise on the issues present in the current architecture and associated network security issues.

The following hardware and software is in operation at each site:

Perth Head Office

  • 200 client desktop PCs running Windows Vista
  • Web server (external) running Apache on Redhat Linux
  • MS Exchange Server on Windows Server 2008
  • 802.11 wireless using WPA TKIP
  • Executives have iPads to access the internal network
  • Connection between Head Office and PH Site over Telco private WAN
  • External Access is via VPN (PPTP) user name and password
  • There is an AV server
  • Port Hedland Office
  • Runs 20 PCs with Windows Vista
  • Authentication to ADS over the WAN link to Perth
  • Connected to mine site via 802.11 wireless (WPA TKIP)

Mining Site

  • No ADS - all PCs belong to a workgroup
  • Connection to PH Site Office via 802.11g point to point link (WPA TKIP)
  • 10 PCs running Windows Vista in the office
  • 5 PCs running Windows NT in the control room (NOTE: This cannot be changed as the SCADA software will not run on a newer OS)
  • There are no individual logons or passwords on the control room PCs (Usernames and passwords cannot be implemented as this is an operational issue)
  • SCADA engineers remotely connect to the mine site through a VPN Server PPTP

 

Other information:

  • The network security policy has not been updated since 2005
  • There is no patching regime
  • See attached network diagram (Note: this may be out of date but is the most current we can find)
  • The VPN at the Head Office and the VPN at the mine site are not connected

 

Tasks:

You are required to produce the following deliverables as part of your contract:

1. A list of the issues with BRRs network as it currently stands. The list will explain the vulnerabilities associated with each issue

2. Treatment recommendations to address the identified issues in BRRs networks

3. A detailed network diagram which creates a more secure network for BRRs operations

4. Updated network security policies which take into consideration current issues and hardware


Related Discussions:- Identified issues in networks

Describe header fields present in a udp segment, Question (a) In relati...

Question (a) In relation to a TCP segment structure, provide the fields responsible for: i. Connection Management ii. Flow Control iii. Error Control iv. Reliable, in-order

What is the size of the initialization vector n wpa, Question : Wi-Fi p...

Question : Wi-Fi protected access (WPA) was specified by the Wi-Fi alliance with the primary aim of enhancing the security of existing 802.11 networks. However, WPA was only a

CS, Discuss how developers should apply the following countermeasures to im...

Discuss how developers should apply the following countermeasures to improve the security of their code:

Define protocol, For simplicity, each character is regarded as one data pac...

For simplicity, each character is regarded as one data packet, which means that the data in each packet should have the max length of only 1 byte. Your own packet header (not th

Ucsf medical center case study-information security, Example : UCSF Medical...

Example : UCSF Medical Center In the year 2002, the University of California, San Francisco (UCSF) Medical Center received an email message from someone who claimed to be a doct

Illustrate the term file carving, QUESTION (a) Illustrate the term fil...

QUESTION (a) Illustrate the term file carving. (b) What are the basic three main techniques for image steganography? (c) Distinguish between vector graphics and raster

Explain symmetric and asymmetric encryption system, Question 1: (a) Dif...

Question 1: (a) Differentiate between symmetric and asymmetric encryption system. (b) Describe how a digital signature is created. (c) Explain briefly what SSL (secure so

Secure clustering in WSNs, i have an idea of clustering in wsns . where eac...

i have an idea of clustering in wsns . where each and every sensor node use the reputation scheme and while clustering provide help against the selfishness atatck of the sensor nod

Host-based ids, Host-Based IDS A host-based IDS (HIDS) resides on a part...

Host-Based IDS A host-based IDS (HIDS) resides on a particular computer or server and monitors activity only on that system. HIDS also called as system integrity verifiers as th

Explain quality management system, Question: Quality management standar...

Question: Quality management standards are seen as a major pillar supporting the drive for continuous quality improvement through TQM. (a) What do you meant by the term ‘Qua

Write Your Message!

Captcha
Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd