Question

Attacks:

Passive – attempt to learn or make use of information from the system that does not affect

system resources

• Active – attempt to alter system resources or affect their operation • Insider – initiated by an entity inside the security parameter

• Outsider – initiated from outside the perimeter

Threat Consequences

Unauthorized disclosure is a threat to confidentiality

•Exposure: This can be deliberate or be the result of a human, hardware, or software error

•Interception: unauthorized access to data •Inference: e.g., traffic analysis or use of limited

access to get detailed information

•Intrusion: unauthorized access to sensitive data

Deception is a threat to either system or data integrity

• Masquerade: an attempt by an unauthorized user to gain access to a system by posing as an authorized user

• Falsification: altering or replacing of valid data or the introduction of false data into a file or database. For example, a student may alter his or her grades on a school database.

• Repudiation: denial of sending, receiving or possessing the data.

Usurpation is a threat to system integrity.

• Misappropriation: e.g., theft of service, distributed denial of service attack

• Misuse: security functions can be disabled or thwarted

Disruption is a threat to availability or system

integrity

•Incapacitation: a result of physical destruction of or damage to system hardware

•Corruption: system resources or services function in an unintended manner; unauthorized modification

•Obstruction: e.g. overload the system or interfere with communications

""""""The question is inside the image"""""""

We assume that there are multiple users communicate with each other. However, their communication for data exchange require to be secured and protected against several potential attacks targeting messages exchange. Based on your own understanding of what you have studied during this course address the following: 1. Explain in detail the possible attacks that may exist to target communication. 2. What security mechanisms must be taken into consideration and deployed to deal with the existing threats for either prevention or mitigation. 3. How these attacks can be addressed, you should provide in detail the possible solutions that can be applied to meet the security services.

Answer 1

1. different types of attacks can be done which includes

1. Denial-of-service (DoS) and distributed denial-of-service (DDoS) attacks - these occur when an enormous amount of data reception and data service request is done to stop and make errors in the execution by overloading the systems and thus by doing si denying the real users request.

2. Man-in-the-middle attack - in this mode the attacks stays in between the actual sender and receiver to catch and retransmit data the connection will seem to be normal but the third person is interfering in the middle and the adat integrity is lost
3. Phishing and spear-phishing attacks - The phishing attack is a method of sending emails that appear to be from trusted sources prompting users to do something. Spear phishing is a very targeted type of phishing attack where they and create messages that are personal and relevant.

other common includes:

1. Drive-by attack
2. Password attack
3. SQL injection attack
4. Cross-site scripting (XSS) attack
5. Eavesdropping attack
6. Birthday attack
7. Malware attack

2. These mechanishms can be take into consideration for possible securituy

1. Create a strong password and change regularly

2. Delete the suspicious email and

3. Use antivirus software

4. Use data encryption

5. SSL certificate

6. Use a firewall on your network

7. Use a web application firewall

8. Use virtual private network (VPN)

3. Using the above methods discussed which will be sufficient enough to have a proper defense against most of the common attacks and some targeted attacks such as ransomware may require speific program to detect and correct it.

hope it helps, give a thumbs up