Web Server Application Attacks

migzs
Home>Homework Answsers>Information Systems homework help

It is common knowledge that Web server application attacks have become common in today’s digital information sharing age. Understanding the implications and vulnerabilities of such attacks, as well as the manner in which we may safeguard against them is paramount, because our demands on e-Commerce and the Internet have increased exponentially. In this assignment, you will examine the response of both the U.S. government and non-government entities to such attacks.

To complete this assignment, use the document titled “Guidelines on Securing Public Web Servers”, located at http://csrc.nist.gov/publications/nistpubs/800-44-ver2/SP800-44v2.pdf, to complete the assignment. Read the Network World article, “40% of U.S. government Web sites fail security test” also, located at http://www.networkworld.com/news/2012/031512-dnssec-survey-2012-257326.html.

Write a three to five (3-5) page paper in which you:

  1. Examine three (3) common Web application vulnerabilities and attacks, and recommend corresponding mitigation strategies for each. Provide a rationale for your response.
  2. Using Microsoft Visio or an open source alternative such as Dia, outline an architectural design geared toward protecting Web servers from a commonly known Denial of Service (DOS) attack. Note: The graphically depicted solution is not included in the required page length. 
  3. Based on your research from the Network World article, examine the potential reasons why the security risks facing U.S. government Websites were not always dealt with once they were identified and recognized as such.
  4. Suggest what you believe to be the best mitigation or defense mechanisms that would help to combat the Domain Name System Security Extensions (DNSSEC) concerns to which the article refers. Propose a plan that the U.S. government could use in order to ensure that such mitigation takes place. The plan should include, at a minimum, two (2) mitigation or defense mechanisms.
  5. Use at least three (3) quality resources outside of the suggested resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.

Your assignment must follow these formatting requirements:

  • Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions.
  • Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.
  • Include charts or diagrams created in Visio or an open source alternative such as Dia. The completed diagrams / charts must be imported into the Word document before the paper is submitted.

The specific course learning outcomes associated with this assignment are:

  • Define common and emerging security issues and management responsibilities. 
  • Evaluate an organization’s security policies and risk management procedures, and its ability to provide security countermeasures.
  • Use technology and information resources to research issues in security management.
  • Write clearly and concisely about the theories of security management using prop

Points: 110

Assignment 1: Web Server Application Attacks

Criteria

Unacceptable

Below 70% F

Fair

70-79% C

Proficient

80-89% B

Exemplary

90-100% A

1. Examine three (3) common Web application vulnerabilities and attacks, and recommend corresponding mitigation strategies for each. Provide a rationale for your response.

Weight: 20%

Did not submit or incompletely examinedthree (3) common Web application vulnerabilities and attacks; did not submit or incompletely recommended mitigation strategies for each. Did not submit or incompletely provided a rationale for your response.

Partially examined three (3) common Web application vulnerabilities and attacks; partially recommended mitigation strategies for each. Partially provided a rationale for your response.

Satisfactorily examined three (3) common Web application vulnerabilities and attacks; satisfactorily recommended mitigation strategies for each. Satisfactorily provided a rationale for your response.

Thoroughly examined three (3) common Web application vulnerabilities and attacks; thoroughly recommended mitigation strategies for each. Thoroughly provided a rationale for your response.

2. Using Microsoft Visio or an open source alternative such as Dia, outline an architectural design geared toward protecting Web servers from a commonly known Denial of Service (DOS) attack.
Weight: 25%

Did not submit or incompletely outlined an architectural design geared toward protecting Web servers from a commonly known Denial of Service (DOS) attack, using Microsoft Visio or an open source alternative such as Dia.

Partially outlined an architectural design geared toward protecting Web servers from a commonly known Denial of Service (DOS) attack, using Microsoft Visio or an open source alternative such as Dia.

Satisfactorily outlined an architectural design geared toward protecting Web servers from a commonly known Denial of Service (DOS) attack, using Microsoft Visio or an open source alternative such as Dia.

Thoroughly outlined an architectural design geared toward protecting Web servers from a commonly known Denial of Service (DOS) attack, using Microsoft Visio or an open source alternative such as Dia.

3. Based on your research from the Network World article, examine the potential reasons why the security risks facing U.S. government Websites were not always dealt with once they were identified and recognized as such.

Weight: 20%

Did not submit or incompletely examined the potential reasons why the security risks facing U.S. government Websites were not always dealt with once they were identified and recognized as such, based on your research from the Network World article.

Partially examined the potential reasons why the security risks facing U.S. government Websites were not always dealt with once they were identified and recognized as such, based on your research from the Network World article.

Satisfactorily examined the potential reasons why the security risks facing U.S. government Websites were not always dealt with once they were identified and recognized as such, based on your research from the Network World article.

Thoroughly examined the potential reasons why the security risks facing U.S. government Websites were not always dealt with once they were identified and recognized as such, based on your research from the Network World article.

4. Suggest what you believe to be the best mitigation or defense mechanisms that would help to combat the Domain Name System Security Extensions (DNSSEC) concerns to which the article refers. Propose a plan that the U.S. government could use in order to ensure that such mitigation takes place. The plan should include, at a minimum, two (2) mitigation or defense mechanisms.

Weight: 20%

Did not submit or incompletely suggestedwhat you believe to be the best mitigation or defense mechanisms that would help to combat the Domain Name System Security Extensions (DNSSEC) concerns to which the article refers. Did not submit or incompletely proposed a plan that the U.S. government could use in order to ensure that such mitigation takes place. Did not submit or incompletely included, at a minimum, two (2) mitigation or defense mechanisms.

Partially suggested what you believe to be the best mitigation or defense mechanisms that would help to combat the Domain Name System Security Extensions (DNSSEC) concerns to which the article refers.Partially proposed a plan that the U.S. government could use in order to ensure that such mitigation takes place. Partially included, at a minimum, two (2) mitigation or defense mechanisms.

Satisfactorily suggested what you believe to be the best mitigation or defense mechanisms that would help to combat the Domain Name System Security Extensions (DNSSEC) concerns to which the article refers.Satisfactorily proposed a plan that the U.S. government could use in order to ensure that such mitigation takes place.Satisfactorily included, at a minimum, two (2) mitigation or defense mechanisms.

Thoroughly suggested what you believe to be the best mitigation or defense mechanisms that would help to combat the Domain Name System Security Extensions (DNSSEC) concerns to which the article refers. Thoroughlyproposed a plan that the U.S. government could use in order to ensure that such mitigation takes place.Thoroughly included, at a minimum, two (2) mitigation or defense mechanisms.

5. 3 references 

Weight: 5%

No references provided

Does not meet the required number of references; some or all references poor quality choices.

Meets number of required references; all references high quality choices.

Exceeds number of required references; all references high quality choices.

6. Clarity, writing mechanics, and formatting requirements

Weight: 10%

More than 6 errors present

5-6 errors present

3-4 errors present

0-2 errors present

    • 10 years ago
    • 15
    Report issue
    Answer(5)
    computerscience
    4.6 (1k+)
    4.7 (722)
    Chat

    Purchase the answer to view it

    NOT RATED
    • assignment_1_web_server_application_attacks.docx
    Smart Study
    3.4 (425)
    2.9 (25)
    Chat

    Purchase the answer to view it

    NOT RATED
    • collaborative_committee_meeting_verification_form.docx
    Google
    4.2 (790)
    2.3 (34)
    Chat

    Purchase the answer to view it

    NOT RATED
    • cis_502_week_2_assignment_1_web_server_application_attacks.docx
    phyllis young
    4.3 (11k+)
    4.5 (622)
    Chat

    Purchase the answer to view it

    NOT RATED
    • order_17185_33291.doc
    Engineer Maxwell
    3.8 (228)
    3.0 (12)
    Chat

    Purchase the answer to view it

    NOT RATED
    • web_server_application_attacks.docx
    • web__attacks_paper.doc