1answer.
Ask question
Login Signup
Ask question
All categories
  • English
  • Mathematics
  • Social Studies
  • Business
  • History
  • Health
  • Geography
  • Biology
  • Physics
  • Chemistry
  • Computers and Technology
  • Arts
  • World Languages
  • Spanish
  • French
  • German
  • Advanced Placement (AP)
  • SAT
  • Medicine
  • Law
  • Engineering
saul85 [17]
3 years ago
14

Information flow is a useful mechanism that can enforce a variety of security policies that are hard to describe in simple acces

s control lists. Describe how you can use information flow as a building block to catch the following attacks or vulnerabilities. Please specify the information sources and sinks that one should track (1 point * 3): 1. A buffer overflow attack that overwrites a function pointer. 2. Link following attack where a victim process reads a file from an attacker-controlled directory. 3. Skype app on Android accidentally stores the password in plaintext in a file that's accessible to everyone.
English
1 answer:
I am Lyosha [343]3 years ago
3 0

Answer / Explanation

For proper clarity, we redefine information flow as the navigation of data between humans and systems.

A proper and well secured mode of movement of information or data flow information flow is a critical factor when considering the performance of a process, decision making and in communications. The following are common types of information flow.

It should also be noted that the advantages of an information flow process can not be over emphasized.

Referring back to the question where we are being asked to describe how information flow serve as a building block to curb attacks can also point back to some of its advantages.

(1) Buffer Overflow attack: This can be described as an abnormal behaviour where a program while writing data or transferring data to a buffer exceeds the buffer's boundary and overwrites to adjacent memory locations which may result in abnormal program behavior including memory access errors, incorrect results, and crashes.  We should also understand that buffers are allotted areas of memory set aside to hold data, often while moving it from one section of a program to another, or between programs. Thus, information flow helps to curb the buffer overflow attach by setting a boundary limit in the process of transfer of communication between the program and the buffer therefor casing a stoppage in the overwrite process of a buffer overflow.

(2)  This can be likened to the page catch attack or Directory Traversal Attacks  where an attacker is are able to traverse out of the current directory into parent directories usually by supplying a series of “../” (dot dot slashes). Sometimes it is possible to back out of the root directory of the Web server and traverse into other directories on the file system. Typically, directory traversal attacks allow the attacker to access or overwrite files that are not intended to be accessible. Now to link the attack, it should be noted that the attacker tries to overwrite the buffer therefore intentionally creating a loophole in the program. Thus, by implementing the information flow, we can also curb this.

(3) This can be likened to the aforementioned process. If passwords are accidentally stored in a location where it is accessible to everyone, then it posses a risk of it being hacked or the password being changed. However, to prevent this, we can simply make use of the clear catch or clear buffer catch process, this way, we are sure of the security of the transfer of data which also streamlines it down to one of the functionality of the information flow process.

You might be interested in
What does Odysseus tell Telemachus to hide from the suitors
DochEvi [55]
Odysseus tells Telemachus to hide all the weapons from the suitors.
3 0
3 years ago
You are driving environment change each time you get behind the wheel weather Road conditions your vehicle and other drivers are
Sonbull [250]

Answer: unpredictable

Explanation:

One's driving environment changes anytime an individual is driving. It should be noted that the weather conditions, other drivers and ones vehicle can be very unpredictable.

Therefore, in order for drivers to be able to manage risk, it is vital that the person remain alert to the conditions that can leaf to an in the risk level.

6 0
3 years ago
Read this line from the poem:
Black_prince [1.1K]
I'm completely sure that line given above elevates the mood by depicting heroism in grief.
4 0
3 years ago
1 _______Headmaster Rahman was a man letters. *
icang [17]
1. The
2.The
3.The
4.The
7.(According to your numbering) A
8.The
9.A
10.A
11.A
12.A
13. No article
14.A
15.The
16.No article
17.The
18. No article
19.a/an (it depends on different pronunciations around the world, I suggest you second check this with your school)
20.The
3 0
3 years ago
Please help! will give brainliest
Nadya [2.5K]

Answer:

D:claim

Explanation:

4 0
3 years ago
Read 2 more answers
Other questions:
  • Which type of inappropriate practice most likely occurred if a researcher takes credit for someone else's idea and does not ackn
    6·2 answers
  • Two examples of ambiguity in a modest proposal
    7·1 answer
  • Which sentence contains a metaphor? A. When Max opened the door, a lightning bolt of fur and claws streaked out. B. The snow fel
    8·1 answer
  • What are some examples of Katniss coming of age from the start to the end of The Hunger Games?
    12·1 answer
  • What aspect of nonverbal communication do the ladies in this picture seem to be most preoccupied with at the moment? a. gestures
    6·1 answer
  • Identify the degree of comparison for the adjective in the following sentence: Anna looked more beautiful than ever. A. Comparat
    12·2 answers
  • HELP ME QUICKLY PLEASE [IREADY DIAGNOSTIC]
    12·1 answer
  • English means for me is we can talk so how your day
    15·1 answer
  • Plz help i need this so bad! I will give brainliest!
    10·2 answers
  • What can be inferred about Lily from this passage?
    9·1 answer
Add answer
Login
Not registered? Fast signup
Signup
Login Signup
Ask question!