Homework Help is Here – Start Your Trial Now!
Engineering
Computer Science
1. Let us consider an application where we need to run a secure Information Management System. We are to receive very confidential information from our customers and keep them save in our system. These information are sent to us in the softcopy forms. We are to protect our customers’ confidentiality even from ourselves, we are not to see the information they bring to us, or else the confidentiality is compromised. Your job as computer security officer is to verify the authenticity of the important document received in order to save them under the appropriate users. Mind you; you have no access to the users’ usernames and passwords, you can store but cannot retrieve except the user himself. Secondly, you are to protect the passwords and usernames to make impossible for everyone (including the system administrators) except the users themselves to access even if the whole database is hacked or stolen. i. Based on your knowledge in computer security, which cryptographic mechanisms would you implement in order to run the system as required and why? Explain how the chosen mechanism can be used. ii. Which cryptographic mechanisms would you implement in order to protect the usernames and passwords and why?

1. Let us consider an application where we need to run a secure Information Management System. We are to receive very confidential information from our customers and keep them save in our system. These information are sent to us in the softcopy forms. We are to protect our customers’ confidentiality even from ourselves, we are not to see the information they bring to us, or else the confidentiality is compromised. Your job as computer security officer is to verify the authenticity of the important document received in order to save them under the appropriate users. Mind you; you have no access to the users’ usernames and passwords, you can store but cannot retrieve except the user himself. Secondly, you are to protect the passwords and usernames to make impossible for everyone (including the system administrators) except the users themselves to access even if the whole database is hacked or stolen. i. Based on your knowledge in computer security, which cryptographic mechanisms would you implement in order to run the system as required and why? Explain how the chosen mechanism can be used. ii. Which cryptographic mechanisms would you implement in order to protect the usernames and passwords and why?

Management Of Information Security
Management Of Information Security
6th Edition
ISBN:9781337405713
Author:WHITMAN, Michael.
Publisher:WHITMAN, Michael.
Chapter12: Protection Mechanisms
Section: Chapter Questions
Problem 1RQ
See similar textbooks
icon
Related questions
Question

1. Let us consider an application where we need to run a secure Information Management System.

We are to receive very confidential information from our customers and keep them save in our system. These information are sent to us in the softcopy forms. We are to protect our customers’ confidentiality even from ourselves, we are not to see the information they bring to us, or else the confidentiality is compromised.

Your job as computer security officer is to verify the authenticity of the important document received in order to save them under the appropriate users. Mind you; you have no access to the users’ usernames and passwords, you can store but cannot retrieve except the user himself.

Secondly, you are to protect the passwords and usernames to make impossible for everyone (including the system administrators) except the users themselves to access even if the whole database is hacked or stolen.

i. Based on your knowledge in computer security, which cryptographic mechanisms would you implement in order to run the system as required and why? Explain how the chosen mechanism can be used.

ii. Which cryptographic mechanisms would you implement in order to protect the usernames and passwords and why?

Expert Solution
steps

Step by step

Solved in 2 steps

SEE SOLUTIONCheck out a sample Q&A here
Blurred answer
Knowledge Booster
Public key encryption
Learn more about
Need a deep-dive on the concept behind this application? Look no further. Learn more about this topic, computer-science and related others by exploring similar questions and additional content below.
Similar questions
  • SEE MORE QUESTIONS
Recommended textbooks for you
Management Of Information Security
Management Of Information Security
Computer Science
ISBN:
9781337405713
Author:
WHITMAN, Michael.
Publisher:
Cengage Learning,
SEE MORE TEXTBOOKS