{"id":907,"date":"2016-03-14T19:34:37","date_gmt":"2016-03-14T08:34:37","guid":{"rendered":"http:\/\/casestudyhelp.com\/sample-questions\/?p=907"},"modified":"2018-01-24T18:40:48","modified_gmt":"2018-01-24T07:40:48","slug":"iti-581-security-fundamentals-assignment-help","status":"publish","type":"post","link":"https:\/\/casestudyhelp.com\/sample-questions\/iti-581-security-fundamentals-assignment-help\/","title":{"rendered":"ITI 581 Security Fundamentals Assignment Help"},"content":{"rendered":"

CCA Pty Ltd Case Study<\/span><\/span><\/h2>\n
Your report should detail the following section and points below commensurate with the\u00a0marks\u00a0allocated\u00a0and be addressed primarily to the management of CCA Pty Ltd\u00a0who are not\u00a0security or IT\u00a0experts. Some issues<\/div>\n
may\u00a0require the acquisition of new software and hardware; you\u00a0should identify\u00a0suitable products that could be used to resolve the issues. Your proposal\u00a0should\u00a0adhere to industry\u00a0security\u00a0best practise and produce a secure and functional\u00a0network installation\u00a0for CCA\u00a0Pty Ltd<\/div>\n
\n
Addressing Identified Issues\u00a0(35\u00a0marks)<\/div>\n
\n
\uf0b7\u00a0Vulnerabilities should be ranked based on a simple risk assessment methodology<\/div>\n
\uf0b7\u00a0Consider any\u00a0necessary changes\u00a0you think appropriate\u00a0to\u00a0the\u00a0network design<\/div>\n
\uf0b7\u00a0Consider any\u00a0necessary changes\u00a0you think\u00a0to\u00a0the\u00a0server and client deployment<\/div>\n
\uf0b7\u00a0Identify appropriate remediation for each identified issue and explain fully in language\u00a0appropriate for the customer<\/div>\n
\n
Implicit\/Unidentified Issues\u00a0(20marks)<\/div>\n
\uf0b7Vulnerabilities should be ranked based on a simple risk\u00a0assessment methodology<\/div>\n
\uf0b7Consider any\u00a0necessary changes\u00a0you think appropriate\u00a0to\u00a0the\u00a0network design<\/div>\n
\uf0b7Consider any\u00a0necessary changes\u00a0you think\u00a0to\u00a0the\u00a0server and client deployment<\/div>\n
\uf0b7Identify appropriate remediation for each identified issue and explain fully in language\u00a0appropriate for the customer<\/div>\n
\n
Policy Development\u00a0(25marks)<\/div>\n
Develop basic polices need to better secure the network; as a minimum the following should be<\/div>\n
considered:<\/div>\n
\uf0b7Password\u00a0Policy<\/div>\n
\uf0b7Acceptable Network Usage\u00a0Policy<\/div>\n
\uf0b7Acceptable Internet Usage\u00a0Policy<\/div>\n
\uf0b7Acceptable Email Usage\u00a0Policy<\/div>\n
\n
Network Design\u00a0(10\u00a0marks)<\/div>\n
\uf0b7\u00a0Provide a detailed network diagram showing your proposal<\/div>\n
\uf0b7You\u00a0may\u00a0want to consider multiple diagrams to separate physical & logical components<\/div>\n
Presentation(10Marks)<\/div>\n
\uf0b7Grammar & spelling<\/div>\n
\uf0b7Report format<\/div>\n
\uf0b7Overall presentation<\/div>\n
\uf0b7Appropriate referencing for a customer report\u00a0This assessment will be worth 40% of your final assessment<\/div>\n
\n
CCA Pty Ltd Case Study Information<\/div>\n
CCA Pty Ltd\u00a0are suppliers and publishers of printed media primarily for the enterprise IT training<\/div>\n
industry. Products include course manuals, test booklets and IT technology reference books.<\/div>\n
All of their sales are currently done via e-mail or direct contact with customers.\u00a0CCA Pty Ltd\u00a0has\u00a0recently upgraded<\/div>\n
their Internet connect\u00a0ion to\u00a0ADSL2+on a 250GB pcm plan in\u00a0order to cater for the future possibility of having an online store.\u00a0You have been hired as a network security consultant to advise on security issues as a result<\/div>\n
of the\u00a0recent re-structuring of the network.\u00a0The\u00a0customer\u00a0would\u00a0also\u00a0like to investigate the option of\u00a0publishing their product online and be able to receive orders via a web application. They don\u2019t need\u00a0specific recommendations with respect to products but they would like some generic ideas on how\u00a0to accomplish these goals.\u00a0The following is a set of notes that have been\u00a0gathered by the lead consultant and you, as a junior\u00a0consultant\u00a0,\u00a0must now analyse these and<\/div>\n
complete a report to be presented by the Lead Consultant\u00a0to the customer:<\/div>\n
Network Details :<\/div>\n
\n
The following are the network details as reported by the lead consultant.\u00a0Broadband Router<\/div>\n
\uf0b7Billion BiPAC 7700N R2<\/div>\n
\uf0b7Out of the box installation with only authentication details configured\u00a0Gateway Server\u00a0This machine has been deployed as\u00a0the egress point of the network to the Internet.\u00a0It was installed\u00a0by the CEOs 20 year old\u00a0son who is studying his third\u00a0year of a computer science degree.\u00a0The\u00a0server\u00a0is running\u00a0pfSense 2.0.3\u00a0as its operating system and has been installed using default options in the\u00a0main.\u00a0No\u00a0further hardening on the O\/S has been performed.<\/div>\n
Configuration Information<\/strong><\/div>\n
\n
ntel Core i5-4440 processor<\/div>\n
\n
\n
\uf0b74GBRAM<\/div>\n
\uf0b7250GB Serial ATA HDD<\/div>\n
\uf0b72 x10\/100\/1000Intel Network CardoExternal IP Address: 244.100.100.22(ISP Provided)oInternal IP address:<\/div>\n
10.10.40.1<\/div>\n
\uf0b7Services Installed<\/div>\n
oNAT Overload<\/div>\n
oDNS Forwarder<\/div>\n
oProxy Server<\/div>\n
oSPI Firewall<\/div>\n
oSupport for only IPv4<\/div>\n
oDHCP Server<\/div>\n
\uf0a7DHCP Scope range:<\/div>\n
10.10.40.0\/24<\/div>\n
\n
Windows 2012<\/div>\n
Database Server\u00a0This\u00a0server\u00a0is maintained currently by\u00a0an external database contractor<\/div>\n
.\u00a0The contractor has asked for\u00a0remote access to manage the server remotely instead of attending site.<\/div>\n
Configuration Information<\/div>\n
\uf0b7Intel Core i7<\/div>\n
\uf0b78GB\u00a0RAM<\/div>\n
\uf0b72×500\u00a0GB Serial ATA HDD<\/div>\n
oConfigured RAID 1<\/div>\n
\uf0b710\/100\/1000Intel Network Card<\/div>\n
oInternal IP address:\u00a010.10.40.20\/24<\/div>\n
\uf0b73TB External\u00a0drive used for backups<\/div>\n
\uf0b7Softwareo\u00a0Windows 2012 Server R2Standard 64-bit\u00a0(patch level unknown)<\/div>\n
oMicrosoft SQL Server Standard 2014(patch level unknown)<\/div>\n
oIIS Installed for internal intranet<\/div>\n
\n
Windows 2012\u00a0File Server\u00a0The\u00a0file\u00a0server was installed\u00a0about 2\u00a0years ago and has never been rebooted. Its primary role is the\u00a0sharing\u00a0of internal\u00a0documents and printer sharing. The IT provider that installed the system has<\/div>\n
since gone out of business and the server has not been\u00a0actively supported for nearly 12 months\u00a0.<\/div>\n
Configuration Information<\/div>\n
\uf0b7Intel Core i7<\/div>\n
\uf0b716GBRAM<\/div>\n
\uf0b74x250GB Serial ATA HDD<\/div>\n
oConfigured hardware RAID 5<\/div>\n
\uf0b710\/100\/1000Intel Network Cardo<\/div>\n
Internal IP address: 10.10.40.21\/24<\/div>\n
\uf0b72x3TB external drives used for backups<\/div>\n
\uf0b7Software\u00a0oWindows 2012ServerR2 Standard 64-bit(patch level unknown)<\/div>\n
\uf0b7Provides AD services through the domain \u201cCCA\u201dClient PC Details<\/div>\n
\n
There are 25\u00a0computers\u00a0in the organisation that are relatively new<\/div>\n
. They are all identical with\u00a0respect to hardware and\u00a0installed\u00a0software.<\/div>\n
\n
Configuration Information<\/div>\n
\uf0b7Intel Celeron J1800 2.58GHz<\/div>\n
\uf0b72GBRAM<\/div>\n
\uf0b7128Gb SSD<\/div>\n
\uf0b710\/100\/1000Intel Network Card<\/div>\n
\uf0b7Windows8.1 64-bit(patch level unknown)<\/div>\n
\uf0b7Office 2010\u00a0Professional<\/div>\n
\u2013standard installation<\/div>\n
\uf0b7All applications are run locally<\/div>\n
\uf0b7Various browsers are used for web access<\/div>\n
oIE<\/div>\n
oFirefox<\/div>\n
oOpera<\/div>\n
\uf0b7All PCs\u00a0can access the Internet unrestricted.<\/div>\n
\uf0b7The machines have varying desktop configurations.<\/div>\n
\uf0b7Level of maintenance\u00a0is poor<\/div>\n
.<\/div>\n
\uf0b7Patch levels unknown but likely never been patched.<\/div>\n
\uf0b7No AV software installed<\/div>\n
\n
Network<\/div>\n
\uf0b7All of the Servers, PCs and the ADSL modem connect to a single<\/div>\n
48portCisco 2960 switch.<\/div>\n
oNo configuration done on the device out of the box.<\/div>\n
\uf0b7IP addresses are received from the pfSense server using the range detailed earlier under the<\/div>\n
pfSense configuration.<\/div>\n
\uf0b7Cabling is UTP Cat5 withdual24 port patch panels\u00a0located in the server room<\/div>\n
\n
\n
\n
Other\u00a0Details<\/div>\n
\uf0b7Servers are all located in a small (3m x 3m) server room located in the back corner of the\u00a0open place office space.<\/div>\n
oThis room is generally locked. There are 5\u00a0known keys for the door but not all keys\u00a0are accounted for. Known key holders are the CEO, the CEOs son and the HR\u00a0Manager.<\/div>\n
oThere is a small A\/C unit that provides cooling to this room with temperatures<\/div>\n
generally between 26-27 degrees celcius.<\/div>\n
oThere is currently no working UPS power.<\/div>\n
oThe switch, patch panels and DSL router are also all in this room.<\/div>\n
oThere is a 10RU communications rack on the wall of the server room that houses the<\/div>\n
switch, patch panels and DSL router.<\/div>\n
oThe servers are located free standing\u00a0on a large cupboard on the opposite side of\u00a0the server room from the communications rack.<\/div>\n
oCables cross the carpet between the servers and the communications rack and are\u00a0taped using heavy tape to the floor.<\/div>\n
oA single monitor, keyboard and mouse is shared\u00a0between all of the servers but no\u00a0KVM is used.<\/div>\n
\uf0b7Backups are\u00a0performed\u00a0daily\u00a0on the file and SQL servers using an automated copy process\u00a0that copies everything to the external hard drives.<\/div>\n
oNo verification of backup is done.<\/div>\n
\uf0b7All users have administrator access to their PCs.<\/div>\n
\uf0b7Users have full admin rights to the database server.<\/div>\n
\uf0b7The admin credentials for the pfSense server are currently unknown.<\/div>\n
\uf0b7There is no administrator access to the file server as the password has been lost and the IT<\/div>\n
contractor who installed it is now out of business.<\/div>\n<\/div>\n<\/div>\n
\uf0b7All staff share a single domain account\u00a0to simplify access rights to files.<\/div>\n
o\u201cCCA_User\u201d<\/div>\n
oPassword: P@ssw0rd1<\/div>\n
\uf0b7The external domain cca.com.au is hosted by the ISP.<\/div>\n
\uf0b7Only reception staff have access to e-mail accounts which are hosted by the ISP.<\/div>\n
\uf0b7Since installing ADSL2+they have been receiving up to 150\u00a0spam messages a day\u00a0each.<\/div>\n
\uf0b7No documentation of systems or configurations available on demand.<\/div>\n
\uf0b7No visible policy documentation,upon query-none developed.<\/div>\n
\uf0b7Firewall rules are unknown and\u00a0should be created from scratch.<\/div>\n
\uf0b7No IDS or VPN capability installed.<\/div>\n
\uf0b7Database server access is performed across plaintext tunnels.<\/div>\n
\uf0b7Web Services do not provide SSL<\/div>\n
\uf0b7AV software on servers is\u00a0also\u00a0unknown.<\/div>\n
\uf0b7There 6 various laser printers dotted around the\u00a0office.<\/div>\n
oThey are all network capable.<\/div>\n
o2 are currently attached to the network, 4 are connected directly to PCs<\/div>\n
\uf0b7The customer would like to investigate deploying a web server on their own network in\u00a0order to service customer orders directly but would like so\u00a0me advice and suggestions on\u00a0how to do this.<\/div>\n
\uf0b7The customer would also like to implement wireless access to the network for\u00a0visitors and\u00a0staff alike but have no idea how to do this. You will need to provide some basic\u00a0recommendations on how to do this and include it in your overall design.<\/div>\n
\n

Please CHAT WITH LIVE Assignment Advisor to\u00a0get assignment help at low price<\/strong><\/em><\/p>\n

\"Hire<\/a><\/p>\n

Chat with our 24 x 7 Online Agents CLICK CHAT NOW<\/strong><\/p>\n

Ask Your\u00a0IT Management Assignment Question<\/a><\/strong>?<\/strong><\/strong>
\nCheck out our\u00a0Fundamentals Assignment Help Services<\/a><\/strong>
\nFind Your\u00a0MBA Assignment Experts<\/a><\/strong><\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n