Final Exam with Answer Key | Computer Security I | CS 461, Exams of Computer Science

Material Type: Exam; Class: Computer Security I; Subject: Computer Science; University: University of Illinois - Urbana-Champaign; Term: Fall 2006;

Typology: Exams

Pre 2010

Uploaded on 03/16/2009

koofers-user-dmq
koofers-user-dmq ๐Ÿ‡บ๐Ÿ‡ธ

10 documents

1 / 13

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Net ID:
Information Assurance: Final Exam โ€“ Key
December 11, 2006
Multiple Choice โ€“ 2 points each
1. Mechanisms used to access resources should not be shared. This is a definition for
which Salzer and Schroeder's Design Principle.
a. Principle of Least Privilege
b. Principle of Safety
c. Principle of Economy of Mechanism
d. Principle of Least Common Mechanism
2. The Trusted Platform Module (TPM) can create a sealed bound message. What does
this involve?
a. Encrypt the message with a non-migrateable, public key associated with the
target TPM and include PCR values that must be met before the target TPM
will decrypt the message.
b. Encrypt the message with a non-migrateable, private key associated with the
source TPM and include PCR values that must be met before the target TPM
will decrypt the message.
c. Encrypt the message with a symmetric key shared with the target and source
TPM and include PCR values that must be met before the target TPM will
decrypt the message.
d. Encrypt the message with a non-migrateable, public key associated with the
target TPM.
3. Which of the following is the best definition of slack space?
a. The area of MySpace where the slackers hang out.
b. Unused area on the last block of disk assigned to a file.
c. Blank pages within a word document.
d. Associated streams on the NT File System.
4. The Encapsulating Security Payload (ESP) protocol in IPSec allows:
a. Encryption but not integrity checks.
b. Integrity checks but not encryption.
c. Encryption and integrity checks.
d. Compression and encryption.
5. The legal foundation of our privacy protection is:
a. 9th amendment
b. Communications Assurance for Law Enforcement Act (CALEA)
c. 4th amendment
d. PATRIOT Act
Information Assurance
Final Exam Page 1 12/11/2006
pf3
pf4
pf5
pf8
pf9
pfa
pfd

Partial preview of the text

Download Final Exam with Answer Key | Computer Security I | CS 461 and more Exams Computer Science in PDF only on Docsity!

Information Assurance: Final Exam โ€“ Key

December 11, 2006

Multiple Choice โ€“ 2 points each

  1. Mechanisms used to access resources should not be shared. This is a definition for which Salzer and Schroeder's Design Principle. a. Principle of Least Privilege b. Principle of Safety c. Principle of Economy of Mechanism d. Principle of Least Common Mechanism
  2. The Trusted Platform Module (TPM) can create a sealed bound message. What does this involve? a. Encrypt the message with a non-migrateable, public key associated with the target TPM and include PCR values that must be met before the target TPM will decrypt the message. b. Encrypt the message with a non-migrateable, private key associated with the source TPM and include PCR values that must be met before the target TPM will decrypt the message. c. Encrypt the message with a symmetric key shared with the target and source TPM and include PCR values that must be met before the target TPM will decrypt the message. d. Encrypt the message with a non-migrateable, public key associated with the target TPM.
  3. Which of the following is the best definition of slack space? a. The area of MySpace where the slackers hang out. b. Unused area on the last block of disk assigned to a file. c. Blank pages within a word document. d. Associated streams on the NT File System.
  4. The Encapsulating Security Payload (ESP) protocol in IPSec allows: a. Encryption but not integrity checks. b. Integrity checks but not encryption. c. Encryption and integrity checks. d. Compression and encryption.
  5. The legal foundation of our privacy protection is: a. 9 th^ amendment b. Communications Assurance for Law Enforcement Act (CALEA) c. 4 th^ amendment d. PATRIOT Act Information Assurance
  1. Which of the following is the best definition of risk? a. The identification of a weakness in the system. b. Likelihood that an entity will attack the system. c. A board game from Hasbro. d. Probability that a threat will exploit a vulnerability.
  2. A good encryption algorithm results in cipher text that appears random. Changes to the key are not easily correlated to the cipher text. This property is called: a. Avalanche effect b. Feistel Network c. Pigeonhole principle d. Differential Cryptoanalysis
  3. Made an error in writing this question. Meant to ask about Biba's low-water mark policy. In this case the answer is c. Everyone got 2 free points on this one. In Biba's Ring Model, which of the following is true? a. On a read, the subject's level is set to that of the object. b. On a write, the object's level is set to that of the subject. c. On a read, the subject's level is set to the level of the object if the object's level is less than the subject. d. A subject is allowed to read an object only if the object has the same or higher integrity than the subject.
  4. In which of the following situations is it legal to monitor network traffic? a. Dana hacked into Tara's computer, and Dana is watching Tara's instant message traffic. b. Dana hacked into Tara's computer, and Tara is watching Dana's IRC traffic from the hacked machine. c. Tara is at a coffee shop with unencrypted wireless and is sniffing traffic from Dana's machine. d. Dana and Tara are both logging into a common server owned by the University, and Tara has gained access to observe Dana's instant message traffic from that machine.
  5. Which of the following is not a reasonable protection against online brute force password attack? a. Slowing response after each failed attempt. b. Locking out the account after a fixed number of failed attempts. c. Measure key entry speed to determine whether a human is entering the password, and fail the attempt if the key speed does not what is expected from a human. d. Adding salt to the password. Information Assurance

Short answer

  1. (6 points total) Gary's new computer has a CPU with a no-execute bit which is exposed through the Data Execution Prevention (DEP) feature in the Window's operating system. Gary wisely enables DEP. a. Identify one malware exploit that is thwarted. In general the OS will use the DEP bit to turn off execution of the stack segment. This will foil stack smashing attacks. b. Identify one malware exploit that is still possible. Return to libc is not affected. You cannot turn of the executability of the library code segment.
  2. (10 points) Consider the ring memory protection scheme implemented by the Intel architecture. Use action => condition constraints to derive what must be logged during each data segment access so an auditor would have sufficient information to ensure that the ring policy is correctly enforced. Be sure to show the constraints in addition to the required logged values. Ring architecture data access rules.
  • CPL <= DPL
  • RPL <= DPL Current and requested privilege levels are at least as privileged as the data segment privilege level if not more so. Access data segment => CPL <= DPL && RPL <= DPL Therefore, on each data segment access, should log CPL, RPL, and DPL, whether the access succeeded. Should also log the segment ID's in case there is a discrepancy that the auditor must track down. Information Assurance
  1. (9 points) Anwen is shopping for a high assurance network tunnel device for her company. She is considering the following products which have Common Criteria evaluations. Based on the basic Common Criteria information from each product, how would you counsel Anwen on the different products? a. Product A โ€“ Evaluated at EAL 4 based on a specialized security target. Must examine the security target carefully to determine what functionality the product is claiming. Since it is not using a protection profile it is not as easy to compare against other products. The EAL is mid level and is probably satisfactory for most applications. b. Product B โ€“ Evaluated at EAL 6 against a security target based on the Labeled Security Protection Profile (LSPP). While this is evaluated at a high assurance level, the functionality of a trusted operating system (generally what uses the LSPP) may not be appropriate for this network security device. Again will need to carefully consider what functionality the product is claiming. c. Product C โ€“ Evaluated at EAL2 against a security target based on the Configurable Security Guard (CSG) Protection Profile. Anwen notes that highly regarded Product D in this space is evaluated against the same protection profile. Unfortunately for a variety of non-technical reasons, she cannot consider Product D. The use of a common protection profile helps us compare the functionality of this product with other well respected products in the field. The lower EAL 2 assurance level would have me concerned. While it is probably implementing what we need, it may not be sufficiently tested and reviewed to meet our assurance needs. Information Assurance
  1. (10 points) Imagine that Alice, Bob, Carol, and David have just eaten dinner. The waiter informs them that an anonymous party has paid the bill. One of Alice, Bob, Carol, and David did pay the bill but is too modest to admit it. The diners want to know of one of their party paid the bill, or if the shadowy Eve sitting at the bar did, so they engage in the Dining Cryptographer's protocol. The result of the coin flips is shown below. Name Coin Flip Public Answer Observed Neighbor Alice Head Different David Bob Head Same Alice Carol Tail Different Bob David Tail Different Carol a) Given the global view of the coin flips, who paid? David b) Select one of the non-payers, and show that that diner cannot guess the identity of the payer with better than uniform probability. Hint: try constructing a table like the one above. Take Alice's point of view. She knows the value of her flip and Davids. She knows what everyone reported in public. For the two hidden coin flips, there are four possibilities. One of the combinations will only happen if Alice lies. Alice knows that she didn't lie. That leaves three other possibilities, and each one matches a different co-dinner, so Alice doesn't have any information to bias her guess as to which dinner paid. The three tables includes the original table above where David lied. The other two options are below. Assume Bob lies Name Alice's guess of flip Public Answer Observed Neighbor Alice Head Different David Bob Tail Same Alice Carol Head Different Bob David Tail Different Carol Information Assurance

Assume Carol lies Name Alice's guess of flip Public Answer Observed Neighbor Alice Head Different David Bob Head Same Alice Carol Head Different Bob David Tail Different Carol Information Assurance

  1. (3 points) What are the security fundamentals identified by CIA? C โ€“ Confidentiality I โ€“ Integrity A - Availability
  2. (8 points) Identify each security scenario as primarily dealing with C, I, or A. a. TotallyThomas shopping web site crashes during the holiday season due to customer overload or extra traffic from DominantlyDiesel. A b. Customer knows that he is ordering from TotallyThomas. I c. The TotallyThomas web site provides trustworthy information to its customers. I d. TotallyThomas protects its cutting edge research from competitors. C Information Assurance
  1. (8 points) Compare the following labels using the Bell-LaPadula confidentiality policy and indicate what access is allowed: read-only, write-only, both, or none. The levels are: Supreme >= High >= Normal >= Low. a. Subject label = Supreme:{A,B} Object Label = Normal:{A} Read-only b. Subject Label = Normal:{A,C} Object Label = High:{B,C} none c. Subject Label = Normal:{A} Object Label = High:{A,B} Write-only d. Subject Label = High:{A} Object Label = High:{A} Both
  2. (10 points) Consider Alice's RSA key pair where p = 7 and q = 11, e = 17 and d = 53. a. What is n? n = p * g = 77 b. What is ฮฆ(n)? ฮฆ(n) = (p-1)*(g-1) = 60 c. What is the rule that e and d satisfy to be a valid RSA key pair? ed mod ฮฆ(n) = 1 1753 mod 60 = 1 d. What is the equation you would solve to encrypt message, m, to Alice? me^ mod 77 e. What is the equation Alice would solve to sign message, m? md^ mod 77 Information Assurance
  1. (10 points) Bert receives the following PGP certificate from Ernie: Bob(l),Count(h),Maria(l)<> Where Bob(l) means that Bob signed the certificate with low assurance and Count(h) means Count signed with high assurance. Bert gathers the following certificates: Elmo(h),Snuffy(h)<> Oscar(h),Snuffy(l)<> In addition, Bert has signed the following certificates himself: Bert(h)<> Bert(h)< Bert(l)<> (a) What are the signature chains that Bert can use to convince himself that Ernie's certificate is trustworthy? _1. Bert signed Maria with high assurance. Maria signed Ernie with low assurance.
  2. Bert signed Elmo with high assurance. Elmo signed Count with high assurance. Count signed Ernie with high assurance.
  3. Bert signed Oscar with low assurance. Oscar signed Bob with high assurance. Bob signed Ernie with low assurance._ (b) Which chain is the best proof? Why? Chain 2, Bert to Elmo to Count is the best proof. Each signature in the chain is of high assurance not just a casual acquaintance. Information Assurance