CIS-4017-N System Administration and Security

Module Title:   System Administration and SecurityModule Leader:Chunyan Mu
  Module Code:  CIS-4017-N
Assignment Title:   Cryptography basics, security analysis, design and implementationDeadline Date:11 May, 2022
  Deadline Time:  4:00pm
Submission Method:   Online (Blackboard Ultra)

System Administration and Security CIS4017-N SAS

ICA                 2021-22

Introduction

This assessment includes two parts:

  • Part I involves a set of short questions on the topic of cryptography and will consider the correctness and completeness of the solutions and your understanding of the concepts and will assess learning outcomes PTS1, PKCS3, PKCS4.
  • Part II involves written design exercises and will addess learning outcomes PTS1, PTS2, PKCS3, PKCS4, PKCS5, PKCS6, PKCS7. You are required to analyse three scenarios, select and justify appropriate security techniques as part of solving the problem in the scenarios, deign/implement the solution, and communicate that design as a written report, including rationales, comparisons and alternatives. The use of security related terms and the demonstration of relevant legal, social, ethical and professional issues is included where needed.

You must submit original work written by yourself, you must not share your work with your classmates. If you submit multiple attempts, then I will mark the last submission received before the deadline, or if no submissions are received before the deadline, the submission received first after the deadline will be marked. If you hand in late, I will only mark within 7 days and your work will be capped to a pass.

Part I Cryptography questions (25%)

Basic concept

  1. Explain the difference between symmetric and asymmetric encryption. Describe a method of asymmetric encryption, and discuss the vulnerabilities of it.

Simple encryption and decryption

  • Decrypt OHW PHR XWC CC using the Caesar cipher (shift of 3).

[5 marks]

[5 Marks]

RSA

  • Assume a public key for RSA encryption given by the pair (143,11). Find the private key corresponding to this pair.

[5 marks]

  • Using the pair (143, 11), decode the encrypted message (111 4 88 57 116 67) assuming the letters were represented by ASCII values

(recall that the ASCII values are 65->A, 66->B, … and 97->a, 98->b, …)

[5 marks]

Diffie-Hellman protocol

  • Describe in detail the Diffie-Hellman protocol for three parties Alice, Bob and Carol.

[5 Marks]

Part II Security analysis and design (75%)

Scenario I – Security models                                                                                           [20 Marks]

MGB Ltd. is a company providing security solutions to public services. You are asked to help the MGB Ltd to design a security model for the national defence department – a part of an e-government project on secure information control in managing troops. Assume the armed forces be classified as: {army, navy, air force, marines}, the security levels are typed as: {high, low}.

Your tasks: You should produce a short report (around 500 words) to formalise a Bell Lapadula model to address the confidentiality properties for the specified scenario, and to discuss the strength and weakness of your model.

Hint: You need to describe the model (specify subjects, objects, possible operations – which can be flexible, design your own but need to show your understanding of specifying and applying the BLP model in a real case), the security lattice (a graph can be helpful), the policy and the security properties for the given scenario above.

Scenario II – Security Analysis and Solutions to Conference Management Systems                                                                                         [25 Marks]

A conference manage system is a web-based management system which allows researchers submit research papers, the program committee (PC) members (reviewers) to browse papers and contribute reviews, scores and discussion, and release decisions (such as rejection or accept) via the Web. In one arrangement, the conference chair downloads and hosts the appropriate server software. (A good example is easychair: https://easychair.org/conference)

The system allows users to submit papers, enter reviews & scores and access reviews & scores associated with events (conferences or workshops) regarding to the role of the uses. A user is granted access to the system by providing a role (chair, reviewer, or author) along with a user-id and associated password. Permissible roles for each user are specified at the time a new event is added to the management system. Reviews & scores on papers are initially assigned by chairs (chairs assign papers to reviewers for reviewing, one reviewers can be assigned multiple papers, one paper can be allocated to multiple reviewers). Reviewing are done by reviewers. And a chair can perform any and/or all of these actions, but a chair’s updates can only be changed by the chair. An author, in addition to learning about his or her reviews & grades on individual papers, is entitled to learn the acceptance statistics (but not other papers’ reviews), and the conference program.

Threat model: The adversary is a user who desires to learn the reviews & scores, changes reviews & scores, or prevent others from learning or changing reviews & scores. The adversary has access to the management system and also can read, delete, and/or update network messages in transit. The adversary cannot physically access or run programs on a user’s machine that is running a browser to access the management system. And the adversary can not physically access or run programs on the server hosting the management system.

Your tasks: You are asked to produce a report (1500-2000words) to provide contemplate descriptions of the above Web-based Conference Management System. You should address the following issues:

  1. Demonstrate a broad understanding of the professional, ethical and legal compliance considerations around network security.
    1. Analyse a range of security concepts, security models, principles and practice in an appropriate environment.
  • Evaluate potential secure infrastructures to meet an appropriate system requirement.
    • Select and justify appropriate security techniques to meet an appropriate system requirement.
    • Operate ethically in order to implement and test a secure infrastructure to meet an appropriate business requirement.
    • Communicate effectively and professionally in writing.

Hint: Assuming that the manager is not a technical person, craft your explanation in a way that can be explained to a layman and include figures where necessary. You could think about:

  • Assets and security properties: what objects should be protected, what security properties might we expect the system to enforce? For each such security property, label it with one of: confidentiality, integrity, or availability?
  • Vulnerability: explain the vulnerability in the system and use an attack tree/model to describe how an attack could be mounted. Restrict your consideration to the threat model provided.
  • Protection: what cost-effective protections are available against the threats that you identify. Remember the focus is on software vulnerabilities.

Scenario III- Design and Implementation of a Secure Network

[30 marks]

This task involves designing and implementing an Internet-connected secure network for a medium-sized company requiring 500 machines named Smith Logistics, UK. They want to implement a secure network that uses Class C network address with multiple subnets – They have asked you for a price quote as well. But they want to see a packet tracer implementation and simulation results before they commit to purchasing anything.

You can use Packet tracer/Opnet/Omnet++ for the implementation and security measures. The implementation of the network should consist of core, distribution and access layer.

It should use a minimum of two routers at the distribution and a further 2-4 for the core layer. All router interfaces must be tested for the correct subnet operations.

Your tasks: You should write a report with the appropriate design and implementation solution (2500 words max, but flexible) documenting all that you have done, including how the network is set up. Use the tasks below as a guideline to write.

  1. Using a drawing tool of your choice design the network. Draw a simple network diagram of your network.

Hints: Design the logical diagram. You can ignore the device location in a logical design. Use Visio or any drawing tool for the diagram. Don’t forget to label the diagram core, access and distribution layer.

  • Design and Implement an IPv4 subnetting scheme. You can use any address in class c.
  • Hint: Test a small subsection of the network before implementing the full addressing scheme in packet tracer.
  • The report must describe the design and all of the decisions that you have made in the process of developing the design. This will include a discussion of the design model, Security, WAN protocol, Layer 2, 3 and wireless protocols that you have decided to use. Hint: Restrict your discussion to the main layer 1,2 and 3 protocols
  • Show the detailed cost of implementing your solution in a table format. You can try to show two different costs for the company to choose from.

Hints: Research on the costs of servers (hardware and software), switches, workstations, cables, etc.

  • Show all references used in the report, using appropriate referencing.

Hints: Harvard referencing can be used and make sure the format is fully followed.

Deliverable and deadline

You should submit your report as a PDF document via Blackboard by the deadline of 1600hrs 11 May 2021.

Advice and assistance

Consult the module tutors during a scheduled session or email the module tutors.

Learning outcomes to be assessed (details see assessment criteria)

  1. [PTS1] Communicate complex issues in cybersecurity and system administration to both specialist and non-specialist audiences.
  2. [PTS2] Evaluate, select and use effectively appropriate security and system administration tools.
  3. [PKCS3] Demonstrate a comprehensive and critical understanding of concepts, theories and issues relating to cybersecurity and system administration.
  4. [PKCS4] Research, evaluate and implement modern cybersecurity and cryptography techniques.
  5. [PKCS5] Integrate and synthesise diverse knowledge, evidence, concepts, theory and practice in system administration, including security issues, to solve problems.
  6. [PKCS6] Provide detailed arguments and present conclusions about system administration and security issues, including scenarios with limited or inaccurate information.
  7. [PKCS7] Demonstrate an awareness of ethical conduct in systems administration and cybersecurity scenarios.

Assessment criteria

The criteria below is necessarily incomplete as we cannot anticipate every possible ICA submission.

Q1 (5)Understanding of the concepts
Q2 (5)correctness
    Q3 (5)5 marks for correct solutions of the private key and details provided; if correct p is given: 2 marks; if correct q is given: 2 marks.
    Q4 (5)5 marks for correct decrypt message and details provided; 4 marks if understanding shown but final computation is incorrect, 1 mark for one correct part of the message.
Q5 (5)Correctness and completeness
Grade Part II : scenario I (20) Learning Outcomes to be assessed: PTS1, PTS2, PKCS3, PKCS5, PKCS6
State machine (5)Sound description of the model
Security lattice (5)Correct description on the partial ordering of the security labels
Security properties (5)Reasonability and completeness of the description
Strength and weakness (3)Reasonability and completeness of the description
Writing and reference (2) 
Grade Part II: scenario II (25) Learning Outcomes to be assessed: PTS1, PTS2, PKCS3, PKCS5, PKCS6, PKCS7
      70-100%Excellent   [SYNTHESIS] Demonstrate a broad understanding of the professional, ethical and legal compliance considerations around network security, and an excellent understanding of modern information and network security properties and system threat & vulnerabilities is demonstrated with excellent links to the specified scenario. There is clear evidence of work beyond taught material.   [DESIGN] An excellent analysis of security protection techniques and their application is demonstrated in relation to the specified scenario. There is clear evidence of work beyond taught material.   [WRITE] A very clear and readable report, with excellent structuring, good use of grammar and referencing. Document submitted as PDF.
  60-69%Substantially correct/appropriate (based on taught material & module requirements)   [SYNTHESIS] Demonstrate a good understanding of the professional, ethical and legal compliance considerations around network security, a very good understanding of modern information and network security properties and threats is demonstrated with clear linkage to the specified scenario.   [DESIGN] A very good analysis of security protection techniques and their application is demonstrated in relation to the specified scenario.
   [WRITE] A clear and readable report, with appropriate structuring and referencing. Document submitted as PDF.
                50-59%Minor errors/omissions/issues   [SYNTHESIS] Demonstrate a reasonable understanding of the professional, ethical and legal compliance considerations around network security, and a generally/mostly good understanding of modern information and network security properties and threats is demonstrated with clear linkage to the specified scenario.   [DESIGN] A generally/mostly good analysis of security protection techniques and their application is demonstrated in relation to the specified scenario/task.   [WRITE] A clear and readable report, with minor errors in writing, structure or referencing. Document submitted as PDF.
            40-49%Major errors/omissions/issues   [SYNTHESIS] Demonstrate a limited understanding of the professional, ethical and legal compliance considerations around network security, an a limited understanding of modern information and network security properties and threats is demonstrated and/or limited linkage to the specified scenario.   [DESIGN] A limited analysis of security protection techniques and their application is demonstrated in relation to the specified scenario/task.   [WRITE] A report, with major issues of writing, structure or referencing. Document submitted as PDF.
                  30-39%Unsatisfactory   [SYNTHESIS] Demonstrate a vert limited understanding of the professional, ethical and legal compliance considerations around network security, and a very limited understanding of modern information and network security properties and threats is demonstrated.   [DESIGN] A very limited analysis of security protection techniques and their application is demonstrated.   [WRITE] A report that is difficult to read or comprehend but includes some attempt at structure and referencing OR document is not submitted as a PDF.
0-29%Inadequate   [SYNTHESIS] Demonstrate little understanding of the professional, ethical
 and legal compliance considerations around network security, and little to nothing demonstrated in relation to modern information and network security properties and threats.   [DESIGN] Little to no analysis of security protection techniques and their application.   [DESIGN] A report that is very difficult to read and comprehend, and makes no attempt at referencing.
Grade Part II: scenario III (30)
Learning Outcomes to be assessed: PTS2 , PKCS3 and PKCS5
Task 1 (12)Network Design and Implementation (6 marks); IP and subnetting (6 marks);
  Task 2 (8)Discussion of the relevant protocols and hardware used to design this network and How the protocols meet the requirements.
Task 3 (7)Cost of implementation
Task 4 (3)Professional writing and good use of reference.
Order Now

Get expert help for CIS-4017-N System Administration and Security and many more. 24X7 help, plag free solution. Order online now!

Universal Assignment (May 28, 2023) CIS-4017-N System Administration and Security. Retrieved from https://universalassignment.com/cis-4017-n-system-administration-and-security/.
"CIS-4017-N System Administration and Security." Universal Assignment - May 28, 2023, https://universalassignment.com/cis-4017-n-system-administration-and-security/
Universal Assignment August 2, 2022 CIS-4017-N System Administration and Security., viewed May 28, 2023,<https://universalassignment.com/cis-4017-n-system-administration-and-security/>
Universal Assignment - CIS-4017-N System Administration and Security. [Internet]. [Accessed May 28, 2023]. Available from: https://universalassignment.com/cis-4017-n-system-administration-and-security/
"CIS-4017-N System Administration and Security." Universal Assignment - Accessed May 28, 2023. https://universalassignment.com/cis-4017-n-system-administration-and-security/
"CIS-4017-N System Administration and Security." Universal Assignment [Online]. Available: https://universalassignment.com/cis-4017-n-system-administration-and-security/. [Accessed: May 28, 2023]

Please note along with our service, we will provide you with the following deliverables:

Please do not hesitate to put forward any queries regarding the service provision.

We look forward to having you on board with us.

Get 90%* Discount on Assignment Help

Most Frequent Questions & Answers

Universal Assignment Services is the best place to get help in your all kind of assignment help. We have 172+ experts available, who can help you to get HD+ grades. We also provide Free Plag report, Free Revisions,Best Price in the industry guaranteed.

We provide all kinds of assignmednt help, Report writing, Essay Writing, Dissertations, Thesis writing, Research Proposal, Research Report, Home work help, Question Answers help, Case studies, mathematical and Statistical tasks, Website development, Android application, Resume/CV writing, SOP(Statement of Purpose) Writing, Blog/Article, Poster making and so on.

We are available round the clock, 24X7, 365 days. You can appach us to our Whatsapp number +1 (613)778 8542 or email to info@universalassignment.com . We provide Free revision policy, if you need and revisions to be done on the task, we will do the same for you as soon as possible.

We provide services mainly to all major institutes and Universities in Australia, Canada, China, Malaysia, India, South Africa, New Zealand, Singapore, the United Arab Emirates, the United Kingdom, and the United States.

We provide lucrative discounts from 28% to 70% as per the wordcount, Technicality, Deadline and the number of your previous assignments done with us.

After your assignment request our team will check and update you the best suitable service for you alongwith the charges for the task. After confirmation and payment team will start the work and provide the task as per the deadline.

Yes, we will provide Plagirism free task and a free turnitin report along with the task without any extra cost.

No, if the main requirement is same, you don’t have to pay any additional amount. But it there is a additional requirement, then you have to pay the balance amount in order to get the revised solution.

The Fees are as minimum as $10 per page(1 page=250 words) and in case of a big task, we provide huge discounts.

We accept all the major Credit and Debit Cards for the payment. We do accept Paypal also.

Popular Assignments

MQBS7030 Final Assessment Data Analysis and Report

ASSIGNMENT TASK: For this assignment, you need to refer to “Fringe” dataset. Fringe is concerned with the factors that contribute to the fringe benefits of employees. The dataset includes a range of different variables, which allows for a range of different tests to be performed. You should note that our

Read More »

MIS770 Foundation Skills in Business Analysis

MIS770 Foundation Skills in Business Analysis Department of Information Systems and Business Analytics Deakin Business School Faculty of Business and Law, DeakinUniversity Assignment Two Analysis of Click Sales Data Particulars Assurance of Learning This assignment assesses the following Graduate Learning Outcomes and related Unit Learning Outcomes: Graduate Learning Outcome (GLO)

Read More »

ITECH7407 – Real Time Analytics

Assessment Task – Data Analytics Assignment Overview For this assessment task, you will work in a group to analyse a selected data set, and provide recommendations to the leadership of the company based on your findings. Timelines and Expectations Percentage Value of Task: 25% Due: Week 11, Sunday 5pm Minimum

Read More »

BSB123 Data Analysis

BSB123 Data Analysis Research Report Assessment Semester 1, 2021 Due Date: 11:59 30th May The data for the Assignment can be found in the file Research Report Assessment (2021-01).xlsx on Blackboard The Problem FringeTech is an information technology / electrical engineering company that employs thousands of people Australia wide. Recently

Read More »

Final Analysis Assignment Help

Refer to the attached excel file, answer the questions below. Use graph if required. The file that can be accessed through the link below contains data on 100 employees in a particular occupation. Suppose that interest centres on investigating the factors that explain salary differences. The data set contains the following

Read More »

VETS6103 Data Analysis Assignment

Factors influencing milk production in Australian dairy cattle Assignment overview: This assignment involves analysing a dataset, interpreting results, and drawing conclusions based on the analyses. The dataset can be found in the file “practical_assignment_2021.xls” which is on Canvas under the Assignments folder. It is a group task worth 50% of

Read More »

ECON 1030 – BUSINESS STATISTICS

ECON 1030 – BUSINESS STATISTICS 1: Individual Assignment   Instructions: This is an individual assignment with a total of 40 marks. The allocation of marks is as follows: Statistical Analysis     (including excel) 32 Professional Report 8              Total 40 The response to the assignment must be provided in the form

Read More »

Assessment 3: Public Health Data Analysis

Assessment 3: Public Health Data Analysis Weighting: 30 % Details of task: This assignment involves the presentation and interpretation of descriptive statistics and statistical test results. On completion of this assessment task, you will be able to: Word limit: This assessment is 2,500 word equivalent with a focus on calculations

Read More »

Log Book Entry 2: Association and Regression

Submission deadline: 11:59pm, 7th December, 2021. All analytics tasks must be completed using R, and should be reproducible from the R code, which must be submitted as an appendix. This log book entry will focus on using association and regression to examine the relationships between multiple variables. Using the ames_train

Read More »

Assignment 2 (Individual): Data Analysis Project

Assignment 2 (Individual): Data Analysis Project (50%): The retail bank that you work for recently ran a telephone marketing campaign to encourage customers to subscribe to a term deposit. Data was obtained from the marketing campaign, internal systems relating to the characteristics of the customer as well as whether or

Read More »

BI7138: Biodiversity Informatics

Biodiversity Informatics Assessment 1 Biodiversity Informatics Assessment 1 The Red Kite (Milvus milvus) is a scavenging raptor found throughout Europe and native to Britain. Red Kites were once common throughout Britain. During the last century their populations were reduced to just a handful of birds in the Welsh valleys by

Read More »

MGMT Course Assignment Fall 2021

Contents Contents General Information. 2 Rules. 2 Outside sources. 3 Scenario. 3 What you need to do. 4 Part 1 – Exploratory data analysis. 4 Table 1. 4 Part 2 – Training and testing set (sample) 4 Table 2. 5 Part 3 – Simple linear regression. 8 Table 3. 8

Read More »

CM 4223– Company Strategic Planning

SWOT Analysis Project Report Guidelines   Introduction/Overview/Background This section is an introduction of your company. Discuss things such as company history, background, leadership team, and location. Ensure that you mention who you are and what you do. If there are global operations, highlight this as well. Mention any goods and/or

Read More »

Surveying (48320) Final Assignment – Major Project

Surveying (48320)  AUTUMN 2023 Final Assignment – Major Project Weight: 40% Due date: 02/06/2023 Student Name:     ________________   Student Number: ______________ Submission Date: ______________________ Submission Component and Marks Awarded Marks   PLAN:     Find Scale of plan and explain 4   9 Bearing and Distances of three lines 3

Read More »

IAP607BM Independent Critical Analysis Project

ASSESSMENT 2 BRIEF Subject Code and Title IAP607BM Independent Critical Analysis Project Assessment Group Presentation of Preliminary Findings Individual/Group Group Length 10-minute presentation and 10-minute Q&A (+/- 10%) Learning Outcomes This assessment addresses the following Subject Learning Outcomes:   Critically review and synthesise the literature as it applies to the

Read More »

SEO PLAN Assignment Help

SEO PLAN Review the SEO slides, SEO videos, and other SEO resources (word files, examples, templates) before doing the assignment.  Choose a “client”, a small to a medium size company, that does not rank too high on search engines. Follow the step by step process described below and create an

Read More »

CET333 Product Development ePortfolio

UNIVERSITY OF SUNDERLAND SCHOOL OF COMPUTER SCIENCE MODULE CODE: CET333 MODULE TITLE: Product Development MODULE ASSESSOR:   ASSESSMENT: 1 of 1 TITLE OF ASSESSMENT: Product Development ePortfolio ASSESSMENT VALUE: 100% PLEASE READ ALL INSTRUCTIONS AND INFORMATION CAREFULLY. This assignment contributes 100% to your final module mark. Please ensure that you

Read More »

ETF2100/5900 Introductory Econometrics Assignment 2

ETF2100/5900 Introductory Econometrics Assignment 2 — A Case Study on the Birth-weight of Baby Important notes: Notation used in the assignment needs to be typed correctly and properly. Incorrect (or inconsistent) notations are treated as wrong answers. We are interested in studying whether a mother’s smoking affects the birthweight of

Read More »

HA1011 Applied Quantitative Methods Group Assignment

   HOLMES INSTITUTE   FACULTY OF HIGHER EDUCATION Assessment Details and Submission Guidelines Trimester T1 2022 Unit Code HA1011 Unit Title Applied Quantitative Methods Assessment Type Assessment 2 Assessment Title Group Assignment (Min of 2 and maximum of 4 members in a group. Please check the group self-enrollment guide in

Read More »

Practical Assessment 2 Data Wrangling

Practical Assessment 2 Data Wrangling Assessment type: Written report (PDF document) using R Markdown Due date: 26th May 2022, 5 pm Melbourne time Weighting: 30% Word limit: Maximum 25 pages Feedback mode: Feedback will be provided using Canvas marking tool and general text comments. Group assessment You will work on

Read More »

Using aggregation functions for data analysis

Using aggregation functions for data analysis Total Marks 100, Weighting 20% The provided zip file contains the data file [RedWine.txt] and the R code [AggWaFit718.R] to use with the following tasks, include these in your R working directory. You can use the R script [template.R] to organise your code. Clarification

Read More »

EC2509 – Econometrics B

EC2509 – Econometrics B This EC2509 problem set must be handed in via Turnitin by Wednesday 23th February 2022, 23.59 Please submit your answer as a single PDF document. The document should contain the results as well as your written answer to the questions, and an appendix with your full

Read More »

Research Report: Assignment 2

Due Date/Time: 3:00pm (AWST), Friday May 13th, 2022 Marks: This assignment will be marked out of 100 and is worth 40% of your final grade for PSEM. Topic Overview: In this assignment, you will be analysing and interpreting the results of research seeking to investigate whether using diagnostic labels to

Read More »

PSEM: Research Report Data Analysis

PSEM: Research Report Data Analysis The next two weeks of content are essential for your second assessment. You will be analysing and reporting the data collected for your research report assessment (worth 40% of your grade for PSEM). At the end of these two weeks, you should be in a

Read More »

Wage Gaps Major Project

As part of your assessment, you will submit a written project worth 40% of your  final mark. This document sets out the main aspects of this project.  The aim of the project is to integrate the learning from the entire module in the service of  conducting your own exploration of

Read More »

Can't Find Your Assignment?

Open chat
1
Free Assistance
Universal Assignment
Hello 👋
How can we help you?