Information Assurance Capstone

You will not have to submit your paper through Turnitin. However, each problem must have reference(s) and if you decide to use the Bishop textbook as one (1) of your reference: you must identify the Chapter and page # of your reference. You will not be allowed to reference Chapter 24 for example without a page # associated with it. When I am grading your paper, I plan on checking out all your references since we will not be using Turnitin for this specific case. Lack of references or incorrect references/problem will result in a failure in your paper.

Answer the following questions.
1)(12 pts.) Chapter 18 (pgs. 494-495) –Problem#7

Question: A company develops a new security product using the extreme programming software development methodology. Programmers code, then test, then added more code, then test, and continue this iteration. Every day, they test the code base as a whole. The programmers work in pairs when writing code base as a whole. The programmers work in pairs when writing code to ensure that at least two people review the code. The company does not adduce any additional evidence of assurance. How would you explain to the management of this company why their software is in fact not “high-assurance” software?

2) (15 pts.) Chapter 22 (pgs. 642-643) –Problem#2

Question: Consider how a system with capabilities as its access control mechanism could deal with Trojan horses.

a. In general, do capabilities offer more or less protection against Trojan horses than do access control lists? Justify your answer in light of the theoretical equivalence of ACLs and C-lists.
b. Consider now the inheritance properties of new processes. If the creator controls which capabilities the created process is given initially, how could the creator limit the damage that a Trojan horse could do?
c. Can capabilities protect against all Trojan horses? Either show that they can or describe a Trojan horse process that C-Lists cannot protect against.

3) (18 pts.) Chapter 22 (pgs. 642-643) –Problem#12

Question: Assume that the Clark-Wilson model is implemented on a computer system. Could a computer virus that scrambled constrained data items be introduced into the system? Why or why not? Specifically, if not, identify the precise control that would prevent the virus from being introduced, and explain why it would prevent the virus from being introduced; if yes, identify the specific control or controls that would allow the virus to be introduced and explain why they fail to keep it up

4) (20 pts.) Chapter 23 (pgs. 685-687) –Problem#1

Question: Classify the following vulnerabilities using the RISOS model. Assume that the classification is for the implementation level. Justify your answer:

a. The presence of the “wiz” command in the sendmail program (Section 23.2.8).
b. The failure to handle the IFS shell variable by loadmodule (see Section 23.2.8)
c. The failure to select an Administrator password that was difficult to guess (see Section 23.2.9)
d. The failure of the Burroughs system to detect offline changes to files (see Section 23.2.6)

5) (15 pts.) Chapter 23 (pgs. 685-687) –Problem#4

Question: A common error on UNIX systems occurs during the configuration of bind, a directory name server. The time-to-expire field is set at 0.5 because the administrator believes that this field’s unit is minutes (and wishes to set the time to 30 seconds). However, bind expects the field to be in seconds and reads the value as 0—–meaning that no that is ever expired.

a. Classify this vulnerability using the RISOS model, and justify your answer.
b. Classify this vulnerability using the PA model, and justify your answer.
c. Classify this vulnerability using Aslam’s model, and justify your answer.

6) (20 pts.) Essay Question: Secure software certification. Your present company (fictional company-make-up one) is at EAL4. You are the new program manager on this effort and your job is to bring your present software secure package to EAL7. Explain to me your management plan on upgrading your present software package from EAL4 to EAL7. Your management plan should include discussing your past documentation (how did you get to EAL4), the difference between EAL4 and EAL7, what additional paperwork will be needed to reach EAL7 certification, and finally, define your risk based on reusing software code for this migration from EAL4 to EAL7 certification.

Leave a Reply