Project Management64000

The differences between a traditional network and an SDN are that, in most cases, traditional networks are static and considered inflexible, while SDNs are malleable, programmable networks; traditional networks often depend on hardware to function, while SDNs are configured to use open-source software, which makes SDNs more suitable for starting up a business venture; traditional networks are not on a centralized control plane format as SDNs are built from, and; traditional networks use protocols, while SDNs use APIs to configure on an as-needed basis.

3) Describe Fog Computing.

a) Explain the differences between Fog Computing and Cloud Computing

Fog Computing is generally understood as the ability to distribute data in a way that makes it closer to the end-user. This method is delivered by extending Cloud Computing to the “edge of the network”, which creates opportunity for new and emerging applications and services, as a result of that delivery. The goal of “Fog Computing” is to provide core data, provide computation, storage, and application services on a distributed level in a way that is closer to the end-user, which would eliminate latency. Mobile streaming and data streaming are both supported by “Fog” while creating a dense distribution and extension of cloud services to users. Big data distribution and analytics can be achieved faster yielding better results in real-time and mobile environments. New aggregated applications and services are enabled through “Fog Computing”. An example of a company that is currently leveraging “Fog Computing” would be Netflix, the online video streaming company originally known for mailing DVD’s directly to its customers. Now entirely online, Netflix uses “Fog Computing” to deliver large amounts of streamed services by placing the data at the “edge of the network” closer to the end-user.

“Fog Computing” is closer to the ground or end-user, while “Cloud Computing” is not within arm’s reach of the end-user and serves more for the provider and business as the data is leveraged. Cloud Computing frees the enterprise and the end users, but for applications specific to “latency”, “Fog Computing” serves as an extension of the “Cloud”. With the emergence of Internet of Things (IoT), a new wave of Internet deployments, the need for mobility support and geo-distribution along with location awareness is important.

4) List and explain the basic network management functions (OAMP).

There are four major aspects of the OAMP network functional model (Operations, Administration, Maintenance, Provisioning):

Operations: the regulation of the network with the concept of the network running smoothly, without any errors to slow down the system. This can include fault tolerance, traffic engineering and care, fault tolerance, avoiding any traffic congestion and dealing with overload control, and survivability, including handling any mean-time between failure (MTBF) issues.

Administration: this includes any record-keeping within network management functions, including access control, account controls, monitoring and notifications of access points. Also, setting up any billing needs.

Maintenance: ensuring all hardware and software is updated and functional, including access points, regular update protocol, and remote access troubleshooting.

Provisioning: configuration of network resources that are geared toward interaction and performance.

5) Describe SNMPv3.

a) How does it differ from SNMPv1 and SNMPv2?

SNMP Version 3 (SNMPv3) provides security for devices by utilizing encryption and authenticating data packets exchanged over the network. SNMPv3 provides three security components: message integrity, authentication, and encryption. The message integrity component ensures the packet being sent wasn’t altered. The authentication component validates the source sending the packet. The encryption component disguises the message being sent to prevent unauthorized sources from learning its information.  Unlike SNMPv2 and SNMPv1, SNMPv3 provides a security layer. SNMPv2 is an improvement of SNMPv1 in which it provides error handling and SET commands it lacks its ability to encrypt messages.

6) Describe the major features of 4G LTE. 

4G LTE is a wireless broadband technology that uses a wide array of channels to achieve high data rates that can be used by numerous users.  The bandwidths available include 1.4, 3, 5, 10, 15 and 20 MHz.  The bands are set up for frequency division duplexing that consists of two separate bands for uplink and downlink. 

LTE takes advantage of orthogonal frequency division multiplexing to accomplish high data rates while allow multiple users to access the same channel.  Using an orthogonal design, the channels are divided up into subchannels.  Users will not interfere with each other. 

4G LTE uses multiple transmission and receiver antennas to achieve faster speeds.  Standard LTE devices use 2x2 antennas, however 4x4 can be supported.  LTE Advanced can reach up to 8x8.

Relay nodes are used to provide better coverage at cell edges.  They enhance signal quality as repeaters to rebroadcast the signal.

LTE networks rely on coordinated multipoint transmission to avoid interference between transmission signals.  The nodes in the network work with each other to prevent signals from disrupting each other, resulting in an enhancement in the network coverage for users on the edge.

7) Describe the major functions needed for mobile network and device management.

Mobile networks enable wireless communications using mobile devices, usually smartphones and tablets. A mobile phone network consists of the following:

· A network of radio base stations

· A circuit-switched network for voice calls and texts

· A packet-switched network for mobile data

· The public-switched telephone network to connect the wider telephone network

Mobile device management is the administrative method of deploying, securing, monitoring and managing mobile devices being used in a workplace. Mobile device management software allows for the distribution of applications, data, setting and patches to these network devices. Mobile device management facilitates Bring Your Own Device (BYOD) policies that allow users to select personal device to use for network access.

8) Which layer(s) carry out QoS execution?

a) What are the Key Performance Indicators (KPIs) related to QoS?

b) What is a DiffServ Code Point (DSCP)?

QoS, or Quality of Service, in the modern context of IT relates to the overall performance of voice, video, and data services and the methodologies intended to provide improved performance levels depending on priority or the general need for real time transmission for voice and video. Among various other methods, protocols, and standards, QoS uses traffic prioritization and resource reservation as a means to achieve service quality.

Standard Key Performance Indicators, or KPIs, that are often measured and tracked to determine and assure QoS levels are "error rates, bit rate, throughput, transmission delay, availability, jitter" (Wikipedia), and others as needed.  According to the course lecture notes, there are a number of standards for measuring: Network performance such as One-way IP Packet Transfer Delay (IPTD), One-Way IP Packet Delay Variation (IPDV), and One-Way IP Packet Loss Ratio.  Standards for measuring voice quality include Perceptual Speech Quality Management (PSQM), Perceptual Evaluation of Speech Quality (PESQ) and the E-model R factor.  Video quality measurement methodologies include the Moving Picture Quality Metric (MPQM), Noise Quality Measurement (NQM), Peak Signal to Noise Ratio (PSNR), Structural Similarity Index (SSIM), and Video Quality Metric (VQM).

QoS uses a DiffServ Code Point (DSCP). The DSCP is the 6-bit value included in the 8-bit Differentiated Services, formerly Type of Services (TOS), field of the IP Packet header.  The VLAN IEEE 802.1Q and IEEE 802.1p standards allow the MAC layer to incorporate essentially the same information in the frame header.  The DSCP information in the IP packets and MAC layer frames basically establish how the network devices should manage their queuing strategies to accommodate different traffic needs and network conditions.

9) Describe the different types of security threats facing an information system.

Describe the mitigation methods for those security threats.

· Computer virus - is a malicious program where it replicates itself and aim to only destroy a computer.

· Trojan horses - has the ability to hide itself from antivirus detection and steal important data that can be used for malicious intents. 

· Rootkits - A rootkit is a clandestine computer program designed to provide continued privileged access to a computer while actively hiding its presence.

· Spam- looks like very genuine and if users are not careful, they fall for what is being offered.

· Spyware - Is a Malware which is designed to spy on the victim’s computer.

· Crimeware - is a form of malware that takes control of your computer to commit a computer crime.

· Botnets - Botnet is something which is installed by a BotMaster to take control of all the computer bots via the Botnet infection.

· Other malicious and unwanted software – this includes adware, cookies, exploits, scareware, keyloggers, etc.

Mitigation methods and best practices:

· Install antivirus/malware software

· Keep antivirus/malware software up-to-date

· Run regularly scheduled scan with your anti-virus software

· Keep you operating system current

· Secure your network

· Think before you click

· Keep your personal information safe

· Don’t use open Wi-Fi

· Back up your files

· Use strong password and multiple authentication (if available)

10) Why is Cloud security really challenging?

One of the most obvious reasons why cloud security is challenging, especially to businesses, is control. Although utilizing cloud services are cost effective and convenient, control over security is shared with the provider. Depending on the type of cloud service is required, security controlling is varied. For example, utilizing SaaS allows less control over security than PaaS would because you're only concern is using a program. The third party provider has complete control over security when utilizing SaaS. To gain some control of security, service users could encrypt data as often as possible and secure the encryption keys. The fact that data is shared over the internet is a high risk for vulnerability and any cyber-attack. Data in the cloud could be obtained through any platform that supports the service, if it is authorized by the person in charge. That in itself is a security issue because of the lack of knowledge of how secure a platform may be.

There are many reasons why security is an issue, but it all leads back to a lack of control and lack of trust. Users tend to utilize cloud programs to cut general costs and costs to build an entire infrastructure. Using any program comes with risks, especially when used over the internet. Responsibility over data being shared through the cloud is hard to pinpoint because of the number of users accessible to any data on the cloud. It is up to the clients to clearly choose accessibility to important data and even more important to create a contingency plan in case of any emergency.