QuestionQuestion

1. Security and Applications
a) Discuss the problems caused for firewalls by the use of VPNs and IPSec.
b) Security services may be placed within each of the layers of the OSI reference model. List, describe, and discuss the advantages and disadvantages of placement within each layer. Your answer should include examples of security services within at least three differing layers.
c) Both Alice and Bob have public-key capability. They wish to carry out mutual authentication. Let us assume that Alice and Bob already know each other’s public keys. They want to establish a session, and then use symmetric session keys on that session, since it is typically 100 to 1000 times faster than public key cryptography. Write a protocol that enables Alice and Bob to mutually authenticate each other and agree on a shared secret key.

2. TCP
Research and write a short report (two or three pages) on the different versions of TCP – Tahoe (base version), Reno, NewReno, and Vegas. What are the problems that each tries to solve and the features introduced to address those problems?

3. IPv6
a) IPv6 has been standardised for almost 20 years, yet it has not seen widespread deployment. Describe the reasons for the slow adoption of IPv6.
b) What changes are required in regular routing protocols ( that operate with IPv4) in order to prepare them for routing within IP v6 domain?

Solution PreviewSolution Preview

These solutions may offer step-by-step problem-solving explanations or good writing examples that include modern styles of formatting and construction of bibliographies out of text citations and references. Students may use these solutions for personal skill-building and practice. Unethical use is strictly forbidden.

Security and Applications:
(i) Discuss the problems caused for firewalls by the use of VPNs and IPSec
When VPN server is infront of the firewall attached to the internet, there will be need to add the packet filters to the internet interface. This only will allow the VPN traffic from VPN interface address to the internet. This type of configuration will limit the file transfer protocols and other web internet resources with other non-VPN users. Alternatively if the VPN is located behind the firewall, it will be having interface with DMZ as well as with the internet. Such an approach in turn requires configuration of the input and the output filters on its internet interface and this in turn will allow the passing of the tunnel maintenance traffic and will be tunnelled data to the VPN server. Further as the firewall will not be having the encryption keys for each of the VPN connection, it is possible for that to filter only the plain text headers of the tunnelled data....

By purchasing this solution you'll be able to access the following files:
Solution.docx.

50% discount

Hours
Minutes
Seconds
$40.50 $20.25
for this solution

or FREE if you
register a new account!

PayPal, G Pay, ApplePay, Amazon Pay, and all major credit cards accepted.

Find A Tutor

View available Engineering - Other Tutors

Get College Homework Help.

Are you sure you don't want to upload any files?

Fast tutor response requires as much info as possible.

Decision:
Upload a file
Continue without uploading

SUBMIT YOUR HOMEWORK
We couldn't find that subject.
Please select the best match from the list below.

We'll send you an email right away. If it's not in your inbox, check your spam folder.

  • 1
  • 2
  • 3
Live Chats