Answer:
All these can be done using PKI.
Explanation:
PKI or the private key infrastructure is a new way to encrypt the data transfer or the retrieval along with the network among various terminals. The communication can be single node, hierarchical, bridge, mesh and hybrid. In the case of mesh, the connection can be established between each terminal. However, the connection can be established in between each pair via a network which can be a private network or it can be via the internet. However, the channel is required to be encrypted, or else the data can be hacked and attacks like a man in the middle attacks are quite on cards certainly. And this can be done using the PKI, which can be installed using the Certificate Authority and Public-private key pair generator. Suppose a connection is to be established between each node. And for this, you need to generate the certificate, which is generated by the Certificate Authority. And this is generally a third party like Godaddy, Verisign, etc. You can make use of the CSFFL as well. The free certificate authority Let’s Encrypt makes use of the CSFFL. And you must be using a web server as well like Apache that comes with services like OpenSSL that can be used to generate the certificate, and you can have your root Certificate Authority. That issues the certificate to the issuing certificate authority and the issuing certificate authority after registration confirmation by a person or a Robot, issues the certificate to the node which is requesting access to another node. And this certificate has the personal details of the requesting node and information about the webserver or node to which the requesting node is opting for a secure connection. The Certificate, when received by the webserver, is then matched with the certificate copy kept at the Root Certificate Authority. These days we also have the certificate revocation authority and Google has come up with Certificate transparency. So we can build our certificate authority, or we can have online certificate authority. These certificates also have the digital signature, which can be decrypted via the private key that is kept with the sender. The public key is sent to the certificate authority, and it decrypts it with the public key. And certificates are distributed among various types of trusts, which can be single, hierarchical, bridge, mesh and hybrid. And for each application, we have different certificates. Thus issues like non-repudiation, check over unauthorized access, restrict access to the resources, etc, can be ensured with the help of the PKI. And thus, we can secure the whole network at various levels like application level, transport-level, etc. Also, the company network can be bridged with the client or the business partner company if required using bridge level trust. However, we can also have a hierarchical level of trust. And thus we can secure the network using PKI and also confirm all the issues mentioned in the question are resolved. However, certificates are also being generated by Windows server 2012, and we can make use of it as well.