1answer.
Ask question
Login Signup
Ask question
All categories
  • English
  • Mathematics
  • Social Studies
  • Business
  • History
  • Health
  • Geography
  • Biology
  • Physics
  • Chemistry
  • Computers and Technology
  • Arts
  • World Languages
  • Spanish
  • French
  • German
  • Advanced Placement (AP)
  • SAT
  • Medicine
  • Law
  • Engineering
Dafna1 [17]
3 years ago
14

Richman Investments is an investment and consulting firm. Richman wants to expand its business operations both in the U.S. and i

n foreign countries. Richman intends to eventually have 10,000 employees in 20 countries. The Richman corporate headquarters is located in Phoenix, Arizona. Currently there are eight branch offices in:  Atlanta, Georgia  Chicago, Illinois  Cincinnati, Ohio  Denver, Colorado  Los Angeles, California  Montreal, Canada  New York City, New York  Washington, D.C. The North American offices have a total of 5,000 employees who use desktops, laptops, and wireless devices. All offices deal with several sensitive applications. Management from each office shares application information hosted at the corporate office. Instructions: Based on the security objectives in the following table, design an enterprise encryption strategy—a public key infrastructure (PKI) that supports internal employees, external business partners, and clients. Include the design and reasoning for using the selected encryption strategy. Security Objective Description Privacy or confidentiality Keeping information secret from all but those who are authorized to see it Integrity Ensuring information has not been altered by unauthorized or unknown means Entity authentication or identification Corroborating the identity of an entity, for example a person, a computer terminal, or a credit card Message authentication Corroborating the source of information, also known as data origin authentication Signature Binding information to an entity Authorization Providing conveyance, to another entity, of official sanction to do or be something Validation Providing timeliness of authorization to use or manipulate information or resources Access control Restricting access to resources to privileged entities Certification Endorsing information by a trusted entity Timestamping Recording the time of creation or existence of information Witnessing Verifying the creation or existence of information by an entity other than the creator Receipt Acknowledging that information has been received Confirmation Acknowledging that services have been provided Ownership Providing an entity with the legal right to use or transfer a resource to others Anonymity Concealing the identity of an entity involved in some process Nonrepudiation Preventing the denial of previous commitments or actions Revocation Retracting certification or authorization
Computers and Technology
1 answer:
Alika [10]3 years ago
5 0

Answer:

All these can be done using PKI.

Explanation:

PKI or the private key infrastructure is a new way to encrypt the data transfer or the retrieval along with the network among various terminals. The communication can be single node, hierarchical, bridge, mesh and hybrid. In the case of mesh, the connection can be established between each terminal. However, the connection can be established in between each pair via a network which can be a private network or it can be via the internet. However, the channel is required to be encrypted, or else the data can be hacked and attacks like a man in the middle attacks are quite on cards certainly. And this can be done using the PKI, which can be installed using the Certificate Authority and Public-private key pair generator. Suppose a connection is to be established between each node. And for this, you need to generate the certificate, which is generated by the Certificate Authority. And this is generally a third party like Godaddy, Verisign, etc. You can make use of the CSFFL as well. The free certificate authority Let’s Encrypt makes use of the CSFFL. And you must be using a web server as well like Apache that comes with services like OpenSSL that can be used to generate the certificate, and you can have your root Certificate Authority. That issues the certificate to the issuing certificate authority and the issuing certificate authority after registration confirmation by a person or a Robot, issues the certificate to the node which is requesting access to another node. And this certificate has the personal details of the requesting node and information about the webserver or node to which the requesting node is opting for a secure connection. The Certificate, when received by the webserver, is then matched with the certificate copy kept at the Root Certificate Authority. These days we also have the certificate revocation authority and Google has come up with Certificate transparency. So we can build our certificate authority, or we can have online certificate authority. These certificates also have the digital signature, which can be decrypted via the private key that is kept with the sender. The public key is sent to the certificate authority, and it decrypts it with the public key. And certificates are distributed among various types of trusts, which can be single, hierarchical, bridge, mesh and hybrid.  And for each application, we have different certificates. Thus issues like non-repudiation, check over unauthorized access, restrict access to the resources, etc, can be ensured with the help of the PKI. And thus, we can secure the whole network at various levels like application level, transport-level, etc. Also, the company network can be bridged with the client or the business partner company if required using bridge level trust. However, we can also have a hierarchical level of trust. And thus we can secure the network using PKI and also confirm all the issues mentioned in the question are resolved. However, certificates are also being generated by Windows server 2012, and we can make use of it as well.

You might be interested in
an organization wants to use its computer to make video calls with suppliers overseasename two input and two output device that
ratelena [41]

Answer:

an organization wants to use its computer to make video calls with suppliers overseasename two input and two output device that the organisation must have for this to happen and briefly explain the popruse of each device

7 0
2 years ago
What responds to both visual appeal and functional needs? (1 point) A.) applied art B.) performance art C.) fine art D.) visual
d1i1m1o1n [39]

Answer:

a

Explanation:

6 0
3 years ago
INTRODUCTION TO JAVA​
amid [387]

Answer:

INTRODUCTION TO JAVA​

Explanation:

Java is one of the most popular programming languages out there. Released in 1995 and still widely used today, Java has many applications, including software development, mobile applications, and large systems development. Knowing Java opens a lot of possibilities for you as a developer.

5 0
3 years ago
Linux distributions automatically come with a native software firewall.TrueFalse
Elodia [21]

Answer:

False.

Explanation:

Ubuntu which is an linux distribution and it is based on debian. Ubuntu does not come with automatic firewall and we also have to manually enable the firewall after installing it otherwise it will be disabled.

You can control the firewall from a graphical interface.

Hence the answer to this question is False.

3 0
3 years ago
Substances become a form of “self-soothing” when one feels_______. a) stressed b) anxious c) the need for a reward d) all of the
Fynjy0 [20]
The answer vshould be stressed
3 0
3 years ago
Read 2 more answers
Other questions:
  • You want to know what directories in your account hold C files. You can use the command:______.
    9·1 answer
  • What is renewable energy
    13·2 answers
  • A broker statement is an example of an ___ record
    12·2 answers
  • In Modern operating system, the __ feature has dramatically improved user productivity.
    11·1 answer
  • In the Advent of computer technologies and it's applications, to what extent these technologies have influenced the world.
    11·1 answer
  • How can a smartphone's gyroscope and accelerometer be used in product marketing? A. to locate the user's geographical position B
    5·1 answer
  • Write a program which increments from 0 to 20 and display results in Decimal on the console 2-b) Modify above program to increme
    6·1 answer
  • Which bug type would you suggest for the following bug? The button label "Add to cart" is not fully visible.
    5·1 answer
  • What does the top level domain in a url inducate? A. The organization or company that owns the website. B. The organization or c
    6·2 answers
  • 1. What is hydrolics?​
    6·1 answer
Add answer
Login
Not registered? Fast signup
Signup
Login Signup
Ask question!