Answer the following questions :
1. Reports of computer security failures appear frequently in the daily news. Research and summarise the article that exemplifies one (or more) of the principles: easiest penetration, adequate protection, effectiveness, weakest link. Ensure the link and full reference is included.
2. Explain why asynchronous I/O activity is a problem with many memory protection schemes, including base/bounds and paging. Suggest a solution to the problem.
3. An electronic mail system could be used to leak information. First, explain how the leakage could occur. Then, identify controls that could be applied to detect or prevent the leakage. Justify your answer based on literature.
4. A computer system provides protection using the Bell-La Padula policy. How would a virus spread if:
• the virus were placed on the system at system low (the compartment that all other compartments dominate)?
• the virus were placed on the system at system high (the compartment that dominates all other compartments)?
a. How do you know that the information you type in is secure from phishing?
b. What sorts of protection is provided by the bank to ensure secure online banking? Justify why the bank would use these security measures.
As a security expert, you need to describe a scheme that allows Mr. Bob to type his userID and Password that the malware (i.e. keylogger), used in isolation of any screen captures or mouse event captures, would not be able to discover Mr. Bob’s userID and password.