Assume that you are designing a network architecture for a complex enterprise with a
diverse application, user community, and end-user device mix. This enterprise has
exposure to the Internet in addition to providing remote access for employees to internal
sites via a Virtual Private Network (VPN).
- Choose a specialty topic from Module 7: Week 7 (Cellular Security, Cloud Security,
Optical Wireless Security, RFID Security, Industrial Security, Bluetooth Security, or
Internet of Things (IOT) Security). Sample references are included in Blackboard. Note
that any other topic besides these must be approved in advance by the instructor. - Create a network diagram for the fictitious Liberty Beverages Corporation using any
diagramming tool you wish (e.g., Visio, MS Paint, application at http://www.draw.io) for
the diagram– but be sure to paste a standard image (e.g., JPG, PNG) of it in the final
report. Include at least the following elements:
a. Remote devices used by employees and vendors
b. Demilitarized Zone (DMZ) facing externally
c. Firewall(s)
d. IDS/IPS solution
e. SIEM
f. Components integrated from chosen specialty topic - Describe and define the following security threats with at least a paragraph each. Also
describe what makes each vulnerability a threat and impact to the business.
a. Denial of Service (DOS) and Distributed Denial of Service (DDOS) attacks
b. Worms, virus, Trojan horses, and other malware.
c. Man-in-the-middle (MITM) attacks
d. Rootkit injections
e. Misconfiguration of remote mobile devices - Document how five (5) or more components and measures in the network architecture, as
well as host-based measures, address the security threats from the previous step. The
components could be a combination of software or hardware in nature – such as firewalls,
IDS/IPS, routers, switches, anti-virus/malware software, full-disk encryption (FDE) and
encryption in transit, remote device management software, etc.
- Describe in three (3) or more paragraphs the specific security threats regarding the
specialty topic you chose. These are in addition to those from step 4. - Describe in three (3) or more paragraphs the security controls (and their rationale for
inclusion) that you will implement to mitigate against the security threats of the chosen
specialty. - Beyond the network design, what additional procedural/governance measures do you
recommend to address security concerns (e.g., training, procedures, policies)? Describe in
two (2) or more paragraphs at least one measure. - Describe in one or more paragraphs how biblical principles come to bear with your
proposed design and approach. Include specific scriptural references.
Outputs
Recent Comments