COIT12202 -Network Security Concepts Assignment
Short-answer questions
Question 1: Information security is used to describe the tasks of protecting information in a digital form.
(1) List and explain three key objectives of information security.
(2) Also list and explain at least two additional protections (concepts)to present a complete view of information security.
Question 2: ARP (Address Resolution Protocol) Poisoning is a form of attack in which an attacker sends falsified ARP messages over a local area network. This results in the linking of an attacker’s MAC address with the IP address of a legitimate computer or server on the network.
(1) Use an example to illustrate (diagrams or written explanation) the ARP Poising attack process and
(2) Explain at least two strategies to prevent such kind of ARP spoofing.
Question 3: Integrity protection is used to guard against improper information modification or destruction, including ensuring information nonrepudiation and authenticity.
(1) Explain the kinds of technologies (algorithms) that can be used to guarantee data integrity.
(2) Provide two examplesof data integrity and
(3) Explain how DLP (Data loss prevention) can be used to prevent data leakage.
Question 4: The earliest and the simplest use of a substitution cipher was by Julius Caesar.
Assume that Alice received the following message “skkzskglzkxznkzumgvgxze” from Bob, who used Caesar Cipher to let Alice know “meet me after the toga party”.
Please complete the following tasks:
(1) Explain the cryptographic algorithm of Caesar Cipher.
(2) Explain what the plaintext is, what the ciphertext is and what the possible key value is.
(3) Explain an approach that can be used to attack Caesar Cipher. Is it possible to improve the cryptographic algorithm?
Question 5: RSA is an algorithm to encrypt and decrypt messages. RSA stands for Ron Rivest, Adi Shamir and Leonard Adleman, who first publicly described RSA in 1978. A user of RSA creates and then publishes the product of two large prime numbers along with an auxiliary value as their public key. The prime factors must be kept secret. Anyone can use the public key to encrypt a message. However, with currently published methods, if the public key is large enough, only someone with knowledge of the prime factors can feasibly decode the message.
Answer the following questions:
(1) Explain whatcategory of cryptographic algorithms RSA belongs to.
(2) Explain how RSA is used to achieve thecryptography (encryption and decryption) and digital signatures.
(3) Explain the main weakness of digital signatures and how this weakness can be compensated for.
