CP2414 Assignment 2
Cryptography and Network Security Applications
Introduction:
This assignment has been divided into four (4) parts. You are to prepare a report for the CEO ofa mattress in a box company with regards to:
1. User authentication
2. Cloud Computing and blockchain for handling the Company's data
3. Network diagram
4. Citation and Referencing
Deliverables:
1.A single Word document (.docx) – containing all parts.
2.Font - Calibri 11, Line Spacing 1.5
3.Use IEEE referencing, see https://libguides.jcu.edu.au/IEEE
NOTE: The assignment template can be found at the end of this assignment sheets.
Scenario:
Your client, TheSleepyheads, was satisfied with the advice you provided them with last time. They have decided to hire you again. Having accrued a vast amount ofvaluable data, and with intent to licence the company’s data to others, the CEO, Ms Jessica Raye, has begun to take security more seriously.
Note: You may only use information concerning TheSleepyheads in this assignment if it has been provided within this document. Company information must not be carried over from the previous assignment.
About the company:
TheSleepyheads is a growing mattress in a box company with, now, 3 branches. Some changes have been made to the company networks to accommodate this growth. The Perth branch is still the main branch for the company; however, there are smaller branches in Melbourne, and Christchurch. Each branch now has 5 departments with approximately 50 employees working in each department. The Perth branch now has a mail server, 2 file servers, 2 web servers, a DNS server, and 4 database servers. The smaller branches each now have a mail server, 2 database servers, and two file servers.
To the best of Jessica’s knowledge, all of the company data, including all employees’ usernames and passwords for all branches, are being stored in plaintext form. Jessica is concerned that employees’ credentials may be accessed from someone outside of the company and be used to obtain company data.
PartI Kerberos and User Authentication
As the company grows, Jessica fears legitimate users may be impersonated to access company network resources. You, as a consultant, know that Kerberos would be the answer to Jessica’s requirement regarding user authentication.
Your task for this part is to explain how Kerberos cryptography can be used for the user authentication purpose. The following aspects may be explained:
• Why Kerberos should be chosen for this purpose?
• Does Kerberos use symmetric or asymmetric cryptography? Explain.
• How does Kerberos authenticate each client? You may discuss Kerberos Ticket-Granting Server (TGS) and Ticket Granting Ticket (TGT).
• How does Kerberos tackle the problem of replay attacks?
You must also:
• Recommend a commercial software program for user authentication; and
• Explain and justify your recommendation clearly.
Part II Cloud Computing and Blockchain for Handling the Company's Data
As you were already informed, Jessica wants to keep her company’s valuable data secure. She told you that she has heard about Cloud Computing and blockchain, as a result, she wants to know if they could be used to keep the company’s data secure. For this part, you are required to:
• Explain the possibility of employing Cloud Computing (CC) for the company to protect valuable data.
• You have to recommend a kind/s of CC service/s to be used for the company’s data as well as how data may be sent to an authorised partner securely using the Cloud. You will have to justify why you recommend such CC service/s over the other services.
• Explain blockchain in detail to Jessica. Furthermore, list and describe any drawbacks and advantages of employing blockchain in general.
• You are to advise the possibility of using Blockchain to keep the company’s data secure and whether blockchain is suitable for this purpose. Explain any drawbacks and advantages of employing blockchain within the company.
• You will have to explicitly make a recommendation and justification on employing blockchain for storing the company’s data.
Part III Network Diagram employing Kerberos and Cloud Computing for Perth Branch
Employing Kerberos for user authentication and Cloud Computing can be an effective means of protecting the company’s valuable data. As such, you are required to design a network diagram for the Perth branch of the company. To do this, you will need to consider the existing devices (see “About the company” – Perth branch ONLY), user authentication software you recommended in Part I, and Cloud Computing service/s you recommended in Part II.
You are required to:
1. Draw your proposed network diagram, including:
a. User authentication software
b. Cloud Computing service integrated to the Perth branch network
c. Existing devices (e.g. servers, workstations, router, switches)
2. Explain and justify the proposed network diagram with respect to the placement and
purpose of each piece of hardware/software, user authentication software and CC service.
Part IV. References
• Use correct IEEE referencing style, see https://libguides.jcu.edu.au/IEEE
Assignment Guide/Template:
To get the highest marks possible, you should READ THE RUBRIC and follow the template below:
Part I User authentication
• Make a recommendation on Kerberos cryptography
o Explain all aspects asked about Kerberos.
o Recommendation and justification on a software off the shelf for user authentication.
Part II Cloud Computing and Blockchain for Handling the Company's Data
• Explain the possibility of employing CC for the company’s valuable data.
o Provide recommendation and justification on employing CC (which model you’ve recommended and why).
• Explain the possibility of employing Blockchain for the company’s valuable data.
o Explain blockchain, list and describe any advantages and disadvantages using blockchain in general (with any other applications).
o Explain any drawbacks and advantages of employing Blockchain within the company
o Provide recommendation and justification on employing blockchain for storing the company’s data.
Part III Network Diagram employing Kerberos and Cloud Computing for Perth Branch
• Diagram
• Explanation and justification of the proposed configuration.
Part IV Use Correct IEEE Referencing Style
• includes in-text citation
• References at the end of the document using IEEE referencing Style.