Question 1: Briefly explain the goals of Network Security as addressed in the fo

Question

Question 1: Briefly explain the goals of Network Security as addressed in the following diagram ures (organizational nnel security) persasecurity) Communications Confidentiality Integrity Information Availability Hardware Software Question 2: What is a Zero-day vulnerability? Can this be stopped Briefly explain the scenario with an example from the Web which happened recently. Question 3: If your goal is to hack a website such as http://certifiedhacker.com/ list out the various steps of attack and what are the protection measure to be followed from a defensive point of view for each step (logically and wherever applies) Question 4: a. b. c. d. What does zero day vulnerability mean? What is a zero-day exploit and why are they dangerous? List a few zero day vulnerabilities based on Windows and Linux systems. Discuss your points on speed and sophistication of attacks of a specific zero- day exploit (examples can be found online) Question S: List a few ways to achieve Obscurity in a networked system. 1. NOTE: Pictures and relevant diagrams can be used for proof of concept (only if applicable).

Explanation / Answer

1) Goal of network security :

Confidentiality, Integrity and Availability are primary goals of network security.

Confidentiality : To protect business data from unathorized users is the goal of Confidentiality. This is make sure that data is available only persons that are working in bussiness. Access to those only who have permit to get data.

Integrity : To maintain accuracy of data is goal of integrity. This is make sure that data is accurate. Make sure that data or client and server must be same.

Availability : Service, Data, Network are available or not is the goal of availability. if not so, security section have to fix it.

These 3 goal of network security must be handle properly.
Diagram says that to communicate, these three primitive goal are necessary to manage properly.

2) what is a zero day vulnerability :

can vulnerability be stopped ?

Make surt to choose antivirus which is proctects your data. Antivirus cant only protect zero day vulnerability, threats but also attacks that was not known earlier, In sort antivirus must be protects both known and unknown attacks.

company have to fix the issue immediately as possible.

if software update explain critical update then company must have to update the software otherwise patches can be critical for company. New update included a patch to recently discovered.

Choose the browser that push updates automatically like firefox, chrome. update includes patch that has discovered vulnerabilities.Use The Latest, Most Secure Browsers.

In May, Google security engineer Tavis Ormandy announced a zero-day flaw in all currently supported releases of the Windows OS.

4 )

a) what does zero day vulnerability mean :

A zero day vulnerability is unknown softwarre in IT system and that can be exploited by hackers.

b) what is zero day exploit and why are they Dangerous :

A zero day exploit is a cyber attack that occurs when some issue discovered in software.

It can be Dangerous because company not had the chance to patch them.

c ) zero days vulnerabilities in windows and linux:

windows :

CVE-2017-0262 – Type Confusion in EPS

CVE-2017-0261 – EPS “restore” Use-After-Free

CVE-2017-8759 – SOAP WSDL parser code injection

in linux :

CVE-2018-1000004

CVE-2018-12930

d ) Discuss points on attacks of specific zero day exploit

To avoid such kind attack company should update their software whenever bugs or issue found, more i have discribed above.

5) list of how to achieve obscurity in network systems :

Related Questions

Navigate

• Browse (All)
• Browse Q
• Subjects

---

---

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.