Week 5 assignments
6/15/2019 SafeAssign Originality Report
https://blackboard.nec.edu/webapps/mdb-sa-BB5b75a0e7334a9/originalityReportPrint?course_id=_44079_1&paperId=1905311040&&attemptId=678… 1/6
ECS6300_201931_CRN185 - NETWORK SECURITY - 201931 - CRN185 - KOTAPROLU
Week 5 Assignment Submission Thakur Prabhakar Jilludimudi on Sat, Jun 15 2019, 10:41 PM
36% highest match Submission ID: 678d14a2-8906-4ba3-84f8-ae03c6756ab6
Attachments (1)
Assignment_5.docx
1 5.1) NETWORK ACCESS CONTROL: is a term that is used collectively to mean the
management of how to access and use a network, more so the company network. 2 THE TERM
COVERS ON THE THREE KEY COMPONENTS WHICH ARE ACCESS REQUESTER
(AR), NETWORK ACCESS SERVER (NAS), AND POLICY SERVER.
5.2) EAP: Extensible Authentication Protocol is a type of authentication protocol which is used as
a 802.11 connections standard that helps in supporting numerous authentication mechanisms. EAP
Architecture has three main components which helps in authentication conversation and they are
authenticator (access point), supplicant (client software), and authentication server (RADIUS) 5.3)
Four EAP authentication methods:
i. 3 EAP-TLS WHICH IS USED WHEN DEFINING WAYS THAT TLS PROTOCOL IS
GOING TO BE ENCAPSULATED WITHIN EAP MESSAGES.
ii. 4 EAP-TTLS IS SIMILAR TO EAP-TLS EXCEPT THAT THE EAP-TTLS ITS SERVER
HAS THE CAPABILITY OF USING ITS CERTIFICATE IN SELF-AUTHENTICATION
(http://safeassign.blackboard.com/)
Assignment_5.docx Word Count: 737 Attachment ID: 1905311040
36%
6/15/2019 SafeAssign Originality Report
https://blackboard.nec.edu/webapps/mdb-sa-BB5b75a0e7334a9/originalityReportPrint?course_id=_44079_1&paperId=1905311040&&attemptId=678… 2/6
WHEN UNDERGOING CLIENT FIRST.
iii. 3 EAP-GPSK IS AN EAP METHODOLOGY THAT WORKS IN ACHIEVING
MUTUAL AUTHENTICATION AS WELL AS IN DERIVATION OF SESSION KEY BY
USE OF PRE-SHARD KEY. 4 THE EAP-GPSK SPECIFIES THE METHOD OF EAP
CRYPTOGRAPH ALGORITHMS THAT WILL BE USED FOR PRE-SHARED KEYS AS
WELL AS SECRET KEY.
iv. ESP-IKEv2 uses the protocol version 2 of Internet Key Exchange in supporting mutual
authentication as well as in establishment of session key.
5 5.4) EAPOL (EXTENSIBLE AUTHENTICATION PROTOCOL OVER LAN): network
port authentication protocol that is commonly used in IEEE 802.1X which is a Port-Based Network
Access Control and helps in developing generic network mechanism of sign-on that allows for
accessing network resources.
2 5.5) IEEE 802.1X: 4 IS A LINK LAYER PROTOCOL WHICH ESTABLISHES AND
ASCERTAINS AUTHORIZATION PRIOR TO THE ASSIGNMENT OF IP ADDRESS TO
A PORT. THE IEEE 802.1X UTILIZES EXTENSIBLE AUTHENTICATION PROTOCOL
IN THE COURSE OF ITS AUTHENTICATION PROCESS.
2 5.6) CLOUD COMPUTING: this is an information technology that allows for convenient,
ubiquitous, and on-demand network access which allows for the sharing of a configurable
computing resources in its large numbers to help in increasing rapidly provisioned. The concept
also allows for minimal management effort as well as in service provider interactions.
6 5.7) CLOUD SERVICE MODELS.
Software as a Service (SaaS) is a software distribution model that allows the hosting of numerous
applications by service providers or vendors which is made available for use by customers within
the Internet.
Platform as a Service (PaaS) is a paradigm which offers the delivery of operating systems as well as
associated services which is possible over the Internet without and allows the user to use them
6/15/2019 SafeAssign Originality Report
https://blackboard.nec.edu/webapps/mdb-sa-BB5b75a0e7334a9/originalityReportPrint?course_id=_44079_1&paperId=1905311040&&attemptId=678… 3/6
without any installations or downloads.
Infrastructure as a Service (IaaS) is a model that allows for the outsourcing of equipment that are
used in supporting components such as servers, storage, hardware, and even networking
components
2 5.8) CLOUD COMPUTING REFERENCE ARCHITECTURE (CCRA): is a standard
measure used as a architecting cloud implementations blueprint which is driven by both functional
as well as non-functional requirements in respect to cloud implementation. It gives the definition of
basic building blocks which are the architectural elements and its underlying relationships.
5.9) Cloud-specific security threats
Abusing and misusing cloud computing: given that most service providers do give easier and formal
way of registration when beginning cloud services, most users easily create accounts. The fact even
that most offers free limited trial periods gives more chances for attackers to intrude into cloud
infrastructure and conduct activities such as malicious code attacks, denial of service and even
spamming. To counter this situations, there is need for using verified credit card as well as fraud
monitoring systems. The platform should aso monitor closely customer network traffic in terms of
their behavior and their activities.
Insecure interfaces as well as APIs. Most service providers expose their software interfaces and
even APIs which are used by their customers in managing and in interacting in the platform. To
countermeasure such threats, there is need for analysis on the security model as well as the API of
the cloud platform interfaces.
Malicious insiders. Most customers have full access and least monitoring from the platform hence
there is possibility of having malicious intruders who register purposely to execute their activities.
The countermeasure for such threat is to have strict enforcement on the supply chain management.
The cloud platform should also conduct a thorough and comprehensive supplier assessment.
Citations (6/6) 1 Another student's paper
6/15/2019 SafeAssign Originality Report
https://blackboard.nec.edu/webapps/mdb-sa-BB5b75a0e7334a9/originalityReportPrint?course_id=_44079_1&paperId=1905311040&&attemptId=678… 4/6
Matched Text
2 Another student's paper
3 Another student's paper
4 http://slideplayer.com/slide/5768868/
5 https://fr.wikipedia.org/wiki?curid=775782
6 Another student's paper
Suspected Entry: 72% match
Uploaded - Assignment_5.docx 5.1) NETWORK ACCESS CONTROL
Source - Another student's paper 5.1 Provide a brief definition of network access control
Suspected Entry: 67% match
Uploaded - Assignment_5.docx THE TERM COVERS ON THE THREE KEY COMPONENTS WHICH ARE ACCESS REQUESTER (AR), NETWORK ACCESS SERVER (NAS), AND POLICY SERVER
Source - Another student's paper 1) Access Requester (AR), 2) Policy Server, and 3) Network Access Server (NAS)
Suspected Entry: 78% match
Uploaded - Assignment_5.docx 5.2) EAP
Source - Another student's paper · 5.2 What is an EAP
Suspected Entry: 83% match
Uploaded - Assignment_5.docx 5.5) IEEE 802.1X
Source - Another student's paper · 5.5 What is the function of IEEE 802.1X
6/15/2019 SafeAssign Originality Report
https://blackboard.nec.edu/webapps/mdb-sa-BB5b75a0e7334a9/originalityReportPrint?course_id=_44079_1&paperId=1905311040&&attemptId=678… 5/6
Suspected Entry: 87% match
Uploaded - Assignment_5.docx 5.6) CLOUD COMPUTING
Source - Another student's paper · 5.6 Define cloud computing
Suspected Entry: 85% match
Uploaded - Assignment_5.docx 5.8) CLOUD COMPUTING REFERENCE ARCHITECTURE (CCRA)
Source - Another student's paper · 5.8 What is the cloud computing reference architecture
Suspected Entry: 62% match
Uploaded - Assignment_5.docx EAP-TLS WHICH IS USED WHEN DEFINING WAYS THAT TLS PROTOCOL IS GOING TO BE ENCAPSULATED WITHIN EAP MESSAGES
Source - Another student's paper 3.EAP-TLS – defines how the TLS protocol can be encapsulated in EAP messages
Suspected Entry: 72% match
Uploaded - Assignment_5.docx EAP-GPSK IS AN EAP METHODOLOGY THAT WORKS IN ACHIEVING MUTUAL AUTHENTICATION AS WELL AS IN DERIVATION OF SESSION KEY BY USE OF PRE-SHARD KEY
Source - Another student's paper EAP-GPSK – an EAP method for mutual authentication and session key derivation using a Pre-Shard Key
Suspected Entry: 62% match
Uploaded - Assignment_5.docx EAP-TTLS IS SIMILAR TO EAP-TLS EXCEPT THAT THE EAP-TTLS ITS SERVER HAS THE CAPABILITY OF USING ITS CERTIFICATE IN SELF- AUTHENTICATION WHEN UNDERGOING CLIENT FIRST
Source - http://slideplayer.com/slide/5768868/ EAP-TTLS is like EAP-TLS, except only the server has a certificate to authenticate itself to the client first
6/15/2019 SafeAssign Originality Report
https://blackboard.nec.edu/webapps/mdb-sa-BB5b75a0e7334a9/originalityReportPrint?course_id=_44079_1&paperId=1905311040&&attemptId=678… 6/6
Suspected Entry: 69% match
Uploaded - Assignment_5.docx THE EAP-GPSK SPECIFIES THE METHOD OF EAP CRYPTOGRAPH ALGORITHMS THAT WILL BE USED FOR PRE-SHARED KEYS AS WELL AS SECRET KEY
Source - http://slideplayer.com/slide/5768868/ EAP-GPSK specifies an EAP method based on pre- shared keys and employs secret key-based cryptographic algorithms
Suspected Entry: 63% match
Uploaded - Assignment_5.docx IS A LINK LAYER PROTOCOL WHICH ESTABLISHES AND ASCERTAINS AUTHORIZATION PRIOR TO THE ASSIGNMENT OF IP ADDRESS TO A PORT
Source - http://slideplayer.com/slide/5768868/ This is a link layer protocol that enforces authorization before a port is assigned an IP address
Suspected Entry: 78% match
Uploaded - Assignment_5.docx THE IEEE 802.1X UTILIZES EXTENSIBLE AUTHENTICATION PROTOCOL IN THE COURSE OF ITS AUTHENTICATION PROCESS
Source - http://slideplayer.com/slide/5768868/ IEEE 802.1X makes use of the Extensible Authentication Protocol for the authentication process
Suspected Entry: 74% match
Uploaded - Assignment_5.docx 5.4) EAPOL (EXTENSIBLE AUTHENTICATION PROTOCOL OVER LAN)
Source - https://fr.wikipedia.org/wiki?curid=775782 ↑ Extensible Authentication Protocol Over LAN
Suspected Entry: 76% match
Uploaded - Assignment_5.docx 5.7) CLOUD SERVICE MODELS
Source - Another student's paper CLOUD COMPUTING SERVICE MODELS 5