Week 5 assignments

profileMask20
SafeAssignOriginalityReport_NetworkSecurity.pdf

6/15/2019 SafeAssign Originality Report

https://blackboard.nec.edu/webapps/mdb-sa-BB5b75a0e7334a9/originalityReportPrint?course_id=_44079_1&paperId=1905311040&&attemptId=678… 1/6

ECS6300_201931_CRN185 - NETWORK SECURITY - 201931 - CRN185 - KOTAPROLU

Week 5 Assignment Submission Thakur Prabhakar Jilludimudi on Sat, Jun 15 2019, 10:41 PM

36% highest match Submission ID: 678d14a2-8906-4ba3-84f8-ae03c6756ab6

Attachments (1)

Assignment_5.docx

1 5.1) NETWORK ACCESS CONTROL: is a term that is used collectively to mean the

management of how to access and use a network, more so the company network. 2 THE TERM

COVERS ON THE THREE KEY COMPONENTS WHICH ARE ACCESS REQUESTER

(AR), NETWORK ACCESS SERVER (NAS), AND POLICY SERVER.

5.2) EAP: Extensible Authentication Protocol is a type of authentication protocol which is used as

a 802.11 connections standard that helps in supporting numerous authentication mechanisms. EAP

Architecture has three main components which helps in authentication conversation and they are

authenticator (access point), supplicant (client software), and authentication server (RADIUS) 5.3)

Four EAP authentication methods:

i. 3 EAP-TLS WHICH IS USED WHEN DEFINING WAYS THAT TLS PROTOCOL IS

GOING TO BE ENCAPSULATED WITHIN EAP MESSAGES.

ii. 4 EAP-TTLS IS SIMILAR TO EAP-TLS EXCEPT THAT THE EAP-TTLS ITS SERVER

HAS THE CAPABILITY OF USING ITS CERTIFICATE IN SELF-AUTHENTICATION

(http://safeassign.blackboard.com/)

Assignment_5.docx Word Count: 737 Attachment ID: 1905311040

36%

6/15/2019 SafeAssign Originality Report

https://blackboard.nec.edu/webapps/mdb-sa-BB5b75a0e7334a9/originalityReportPrint?course_id=_44079_1&paperId=1905311040&&attemptId=678… 2/6

WHEN UNDERGOING CLIENT FIRST.

iii. 3 EAP-GPSK IS AN EAP METHODOLOGY THAT WORKS IN ACHIEVING

MUTUAL AUTHENTICATION AS WELL AS IN DERIVATION OF SESSION KEY BY

USE OF PRE-SHARD KEY. 4 THE EAP-GPSK SPECIFIES THE METHOD OF EAP

CRYPTOGRAPH ALGORITHMS THAT WILL BE USED FOR PRE-SHARED KEYS AS

WELL AS SECRET KEY.

iv. ESP-IKEv2 uses the protocol version 2 of Internet Key Exchange in supporting mutual

authentication as well as in establishment of session key.

5 5.4) EAPOL (EXTENSIBLE AUTHENTICATION PROTOCOL OVER LAN): network

port authentication protocol that is commonly used in IEEE 802.1X which is a Port-Based Network

Access Control and helps in developing generic network mechanism of sign-on that allows for

accessing network resources.

2 5.5) IEEE 802.1X: 4 IS A LINK LAYER PROTOCOL WHICH ESTABLISHES AND

ASCERTAINS AUTHORIZATION PRIOR TO THE ASSIGNMENT OF IP ADDRESS TO

A PORT. THE IEEE 802.1X UTILIZES EXTENSIBLE AUTHENTICATION PROTOCOL

IN THE COURSE OF ITS AUTHENTICATION PROCESS.

2 5.6) CLOUD COMPUTING: this is an information technology that allows for convenient,

ubiquitous, and on-demand network access which allows for the sharing of a configurable

computing resources in its large numbers to help in increasing rapidly provisioned. The concept

also allows for minimal management effort as well as in service provider interactions.

6 5.7) CLOUD SERVICE MODELS.

Software as a Service (SaaS) is a software distribution model that allows the hosting of numerous

applications by service providers or vendors which is made available for use by customers within

the Internet.

Platform as a Service (PaaS) is a paradigm which offers the delivery of operating systems as well as

associated services which is possible over the Internet without and allows the user to use them

6/15/2019 SafeAssign Originality Report

https://blackboard.nec.edu/webapps/mdb-sa-BB5b75a0e7334a9/originalityReportPrint?course_id=_44079_1&paperId=1905311040&&attemptId=678… 3/6

without any installations or downloads.

Infrastructure as a Service (IaaS) is a model that allows for the outsourcing of equipment that are

used in supporting components such as servers, storage, hardware, and even networking

components

2 5.8) CLOUD COMPUTING REFERENCE ARCHITECTURE (CCRA): is a standard

measure used as a architecting cloud implementations blueprint which is driven by both functional

as well as non-functional requirements in respect to cloud implementation. It gives the definition of

basic building blocks which are the architectural elements and its underlying relationships.

5.9) Cloud-specific security threats

Abusing and misusing cloud computing: given that most service providers do give easier and formal

way of registration when beginning cloud services, most users easily create accounts. The fact even

that most offers free limited trial periods gives more chances for attackers to intrude into cloud

infrastructure and conduct activities such as malicious code attacks, denial of service and even

spamming. To counter this situations, there is need for using verified credit card as well as fraud

monitoring systems. The platform should aso monitor closely customer network traffic in terms of

their behavior and their activities.

Insecure interfaces as well as APIs. Most service providers expose their software interfaces and

even APIs which are used by their customers in managing and in interacting in the platform. To

countermeasure such threats, there is need for analysis on the security model as well as the API of

the cloud platform interfaces.

Malicious insiders. Most customers have full access and least monitoring from the platform hence

there is possibility of having malicious intruders who register purposely to execute their activities.

The countermeasure for such threat is to have strict enforcement on the supply chain management.

The cloud platform should also conduct a thorough and comprehensive supplier assessment.

Citations (6/6) 1 Another student's paper

6/15/2019 SafeAssign Originality Report

https://blackboard.nec.edu/webapps/mdb-sa-BB5b75a0e7334a9/originalityReportPrint?course_id=_44079_1&paperId=1905311040&&attemptId=678… 4/6

Matched Text

2 Another student's paper

3 Another student's paper

4 http://slideplayer.com/slide/5768868/

5 https://fr.wikipedia.org/wiki?curid=775782

6 Another student's paper

Suspected Entry: 72% match

Uploaded - Assignment_5.docx 5.1) NETWORK ACCESS CONTROL

Source - Another student's paper 5.1 Provide a brief definition of network access control

Suspected Entry: 67% match

Uploaded - Assignment_5.docx THE TERM COVERS ON THE THREE KEY COMPONENTS WHICH ARE ACCESS REQUESTER (AR), NETWORK ACCESS SERVER (NAS), AND POLICY SERVER

Source - Another student's paper 1) Access Requester (AR), 2) Policy Server, and 3) Network Access Server (NAS)

Suspected Entry: 78% match

Uploaded - Assignment_5.docx 5.2) EAP

Source - Another student's paper · 5.2 What is an EAP

Suspected Entry: 83% match

Uploaded - Assignment_5.docx 5.5) IEEE 802.1X

Source - Another student's paper · 5.5 What is the function of IEEE 802.1X

6/15/2019 SafeAssign Originality Report

https://blackboard.nec.edu/webapps/mdb-sa-BB5b75a0e7334a9/originalityReportPrint?course_id=_44079_1&paperId=1905311040&&attemptId=678… 5/6

Suspected Entry: 87% match

Uploaded - Assignment_5.docx 5.6) CLOUD COMPUTING

Source - Another student's paper · 5.6 Define cloud computing

Suspected Entry: 85% match

Uploaded - Assignment_5.docx 5.8) CLOUD COMPUTING REFERENCE ARCHITECTURE (CCRA)

Source - Another student's paper · 5.8 What is the cloud computing reference architecture

Suspected Entry: 62% match

Uploaded - Assignment_5.docx EAP-TLS WHICH IS USED WHEN DEFINING WAYS THAT TLS PROTOCOL IS GOING TO BE ENCAPSULATED WITHIN EAP MESSAGES

Source - Another student's paper 3.EAP-TLS – defines how the TLS protocol can be encapsulated in EAP messages

Suspected Entry: 72% match

Uploaded - Assignment_5.docx EAP-GPSK IS AN EAP METHODOLOGY THAT WORKS IN ACHIEVING MUTUAL AUTHENTICATION AS WELL AS IN DERIVATION OF SESSION KEY BY USE OF PRE-SHARD KEY

Source - Another student's paper EAP-GPSK – an EAP method for mutual authentication and session key derivation using a Pre-Shard Key

Suspected Entry: 62% match

Uploaded - Assignment_5.docx EAP-TTLS IS SIMILAR TO EAP-TLS EXCEPT THAT THE EAP-TTLS ITS SERVER HAS THE CAPABILITY OF USING ITS CERTIFICATE IN SELF- AUTHENTICATION WHEN UNDERGOING CLIENT FIRST

Source - http://slideplayer.com/slide/5768868/ EAP-TTLS is like EAP-TLS, except only the server has a certificate to authenticate itself to the client first

6/15/2019 SafeAssign Originality Report

https://blackboard.nec.edu/webapps/mdb-sa-BB5b75a0e7334a9/originalityReportPrint?course_id=_44079_1&paperId=1905311040&&attemptId=678… 6/6

Suspected Entry: 69% match

Uploaded - Assignment_5.docx THE EAP-GPSK SPECIFIES THE METHOD OF EAP CRYPTOGRAPH ALGORITHMS THAT WILL BE USED FOR PRE-SHARED KEYS AS WELL AS SECRET KEY

Source - http://slideplayer.com/slide/5768868/ EAP-GPSK specifies an EAP method based on pre- shared keys and employs secret key-based cryptographic algorithms

Suspected Entry: 63% match

Uploaded - Assignment_5.docx IS A LINK LAYER PROTOCOL WHICH ESTABLISHES AND ASCERTAINS AUTHORIZATION PRIOR TO THE ASSIGNMENT OF IP ADDRESS TO A PORT

Source - http://slideplayer.com/slide/5768868/ This is a link layer protocol that enforces authorization before a port is assigned an IP address

Suspected Entry: 78% match

Uploaded - Assignment_5.docx THE IEEE 802.1X UTILIZES EXTENSIBLE AUTHENTICATION PROTOCOL IN THE COURSE OF ITS AUTHENTICATION PROCESS

Source - http://slideplayer.com/slide/5768868/ IEEE 802.1X makes use of the Extensible Authentication Protocol for the authentication process

Suspected Entry: 74% match

Uploaded - Assignment_5.docx 5.4) EAPOL (EXTENSIBLE AUTHENTICATION PROTOCOL OVER LAN)

Source - https://fr.wikipedia.org/wiki?curid=775782 ↑ Extensible Authentication Protocol Over LAN

Suspected Entry: 76% match

Uploaded - Assignment_5.docx 5.7) CLOUD SERVICE MODELS

Source - Another student's paper CLOUD COMPUTING SERVICE MODELS 5