Nt1310 Unit 3 Assignment 1

Words: 771

Pages: 4

Open Document

Bug Scenario: Over the past five years, I have worked as a system analyst and quality assurance professional at ACTS, an international company based in Saudi Arabia. During my tenure, I was involved in the development of a web application where I came across a critical issue. It was discovered that user passwords were being stored in the database in plain text format, which posed a significant security risk as passwords should be properly hashed for enhanced protection. The below screenshot shows the users page master and the passwords are appearing for all IT admins as they are stored in the database. As a system analyst and QA, I reported this bug to the IT management to be reviewed by the assigned programmer and Database admins by submitting the below bug reports. Bug Report: Passwords Stored in …show more content…
(2019). 3. What is the difference between a'smart' and a'smart'? Additional random value: Add a random value unique to each user that is combined with their password before hashing. This adds an additional layer of security, making it more difficult for attackers to crack the hashed passwords. (Salazar, 2021). 4. What is the difference between a.. Password Policy Enforcement: to ensure that users create passwords that are resistant to brute-force attacks. This policy should include requirements such as a minimum length, a combination of uppercase and lowercase letters, and special characters. (Jithukrishnan, 2023). 5. What is the difference between a'smart' and a'smart'? Regular Security Audits: As a system analyst and QA, I will conduct periodic security audits to assess the effectiveness of the implemented password storage mechanism. This will help identify any potential vulnerabilities and ensure that the system remains secure over time. By implementing these solutions, the bug related to storing passwords in plain text can be resolved, significantly improving the security of user accounts and protecting sensitive information from unauthorized

Nt1310 Unit 3 Assignment 1

ManageEngine Desktop Central is prone to a security-bypass vulnerability related to the password-reset feature. An attacker can exploit this to reset the application’s administrator password and gain administrative privileges. On 27 March 2015, a proof of concept (PoC) exploit code was released on multiple websites such as Seclist.org and PacketStormSecurity.com. Open source research did not reveal any instances of this vulnerability in the wild. However, this does not mean that malicious actors…

Words 524 - Pages 3

Nt1310 Unit 3 Assignment 1

Brainstorming Problem - Charger- Kinetically Powered Charger - already made - need 6 hours of walking for 30 min of charge. (not efficient) ( I would have to create a better version ) Problem - cups don't fit into car cup holders - Adjustable Sized Car Cup Holder - MANY already made Problem - texting and driving - device that won’t start the car unless the phone is plugged in - auto shuts down the phone and charges it. Problem - No home music stand - desktop music stand - already made Problem -…

Words 969 - Pages 4

Nt1310 Unit 3 Assignment 1

three layers to be specific: 1. Presentation Tier 2. Business Tier 3. Data Access Tier 1. Presentation Tier: This converts and displays data into a human-readable frame. This tier is for the most part in charge of the UI of the application which manages the perception of data to the user. 2. Business Tier: It is mainly in charge of data trade between the UI and the database of the project. The business logic for the Ticket Purchase system would be available here. 3. Data Access Tier: This mainly…

Words 1412 - Pages 6

Nt1310 Unit 3 Assignment 1

Youtube was created In 2005 so users could upload, share and view videos. The site quickly gained popularity and was purchased by Google in 2006 for 1.65 billion dollars. As Youtube grew its impact became more significant. The platform allowed anyone to create content no matter your prior popularity. Content creators could find their audience and grow. Some of Youtube's competitors consist of; Vimeo, Daily Motion, and Wistia just to name a few. Youtube obviously isn't the only video sharing site…

Words 565 - Pages 3

Nt1310 Unit 3 Assignment 1

(SOMEONE) and found the following pointers: 1. SOMEONE infrastructure allows users to join any device to their office 365 account without using multifactor confirmation. When this serves as a good time saving feature – in the case of compromised account, attacker would have easy access to register rouge devices. 2. Microsoft Office 365 is having built-in capability to enforce multifactor verification for password reset process. This feature is not utilised. 3. The password configuration…

Words 1308 - Pages 6

Nt1310 Unit 3 Assignment 1

3.1. Duration of Study Pending eIRB approval the estimated duration of this study is 2-years, in order to accrue up to 500 participants. This will begin after approval date and continue for two years after that. The expected duration to complete the online survey itself is approximately 30 minutes. This includes the time required for online consent. Once students submit their survey, they will have completed their participation in the study. 3.2 Study Sites Each study participant will complete…

Words 1223 - Pages 5

Nt1310 Unit 3 Assignment 1

DATA NETWORKS ASSIGNMENT 3 ANSWER 1 a) Figure 1 implies that Go Back-N is used because the given figure shows a cumulative acknowledgement which is a property of the Go Back-N protocol. Selective Repeat gives individual acknowledgements as the window shifts. b) Since individual acknowledgements are shown in figure 2, it is Selective Repeat protocol being used in this figure. c) Figure 2 depicts Selective repeat in which the sender window moves forward as it receives acknowledgement for the smallest…

Words 1207 - Pages 5

Nt1310 Unit 3 Assignment 1

From my reference materials from Cisco and previous work history, I firmly believe that the #1 issue surrounding the deployment of a wireless network is wireless security. Specifically, passive monitoring, unauthorized access, and DoS attacks. Passive Monitoring – wireless networks are intentionally designed to propagate data throughout buildings and areas, almost always resulting in the radio signals traveling beyond the limits of the area. By default, wireless devices are configured for maximum…

Words 622 - Pages 3

Nt1310 Unit 3 Assignment 1

How would you define a network? What is bandwidth? What is a NIC? List three types of media used for network connections. A network is a group of computers connected they could be connect just to one another or they could be connected to the internet, while internet itself is essentially one big network. Bandwidth is the bit-rate information about how much data is being sent or received; the bandwidth is normally measured in Mbps or megabits per second. Bandwidth can measure a number of things…

Words 607 - Pages 3

Nt1310 Unit 3 Assignment 1

Assignment 2 Question 4.16 In order to analyse this situation properly, it is important to know what copyright means and who it protects, it also crucial to know what fair use guidelines are. Copyright is a complete legal right given to the owner or assignee to make copies, publish, distribute, print, film, and perform artistic or musical materials and to grant permission to others to do the same. Generally, copyright protect the author for a lifetime and for 50 years after the death of the author…

Words 1185 - Pages 5