20200902

1. Learning About OWASP

Visit the OWASP website. 

Using WORD, write an ORIGINAL brief essay of 300 words or more describing the history and background of OWASP. 

See the Vulnerabilities tab. Choose one of the vulnerabilities on the linked page and describe briefly.

Safeassign is software that verifies the originality of your work against on-line sources and other students.

Note your Safe Assign score. Continue submitting until your Safe Assign score is less than 25. For your first written assignment, you have unlimited times to retry your assignment.

Attach your WORD doc and then hit SUBMT.

2. Do a bit of research on CWE, Common Weakness Enumeration.

Write a brief overview of their scoring system.

Pick one of common weaknesses identified on their site and describe it.

Your assignment should be 200-300 of your own words.

3. Learn About creating good password security.

An IT Security consultant has made three primary recommendations regarding passwords:

1. Prohibit guessable passwords 

o such as common names, real words, numbers only

o require special characters and a mix of caps, lower case and numbers in passwords

2.  Reauthenticate before changing passwords 

· user must enter old pw before creating new one

3. Make authenticators unforgeable 

· do not allow email or user ID as password

Using WORD, write a brief paper of 200-300 words explaining each of these security recommendations.  Do you agree or disagree with these recommendations. Would you change, add or delete any of these?  Add additional criteria as you see necesarry.

Note your Safe Assign score. Continue submitting until your Safe Assign score is less than 25. You have three attempts to complete your assignment.

Attach your WORD doc and then hit SUBMT.

4. Do a bit of research on JSON and AJAX.

How do they relate to the the Same-Origin policy?

Using WORD, write several short paragraphs on each. A  total of 200-300 words. 

Use your own words and do not copy the work of another student.

Attach your WORD document here.

5. You are the web master of a college website. You share a server with other school departments such as accounting and HR.

Based on this chapter, create at least five security-related rules for staff members who are adding web pages being added to your site. Include a justification and explanation for each rule. Rules should relate to college, staff and student, and system information security.

Write your answer using a WORD document. Do your own work and use your own words. Submit here. Note your Safe Assign score. Score must be less than 25 for full credit.

You have three attempts.

6. Do a bit  if research into File Inclusion Vulnerability.

· What is it?

· Why is is dangerous?

· What is the difference of low and remote inclusion?

· What methods can me employed to prevent a security breach?

· What programming languages are vulnerable to this type of attack.

Post between 100-300. Use your own words. Do not copy the work of another students.

7. You are the web master for the Republican Party National Committee. Prepare a risk assessment analysis for your website. Some questions to consider:

· Who is likely to attack your site?

· When are attacks likely to occur?

· What sort of attacks might take place?

· How can you best minimize attacks and protect the integrity of your site?

Write between 200-300 words.

Use your own words.

8. Do a bit of research on penetration testing techniques. Investigate and document the following

· Five network penetration testing techniques

· Advantages and disadvantages of each

· One notable social engineering test

· Possible negative implications of penetration tesing

Please write between 200 and 300 words

9. Do some research on Threat Response software. Find one particular software package to investigate.

· What does the software do?

· What are it's major features?

· What kind of training is required?

· How much does the software cost?

Do not do the same software as everyone else. 

Write 200-300 of your own words and submit in a WORD document here.

10. Research the Dark Web.

Write a brief paper on the following topics: What is the Dark Web? How is it accessed? How is it used by criminals? How can it be used in a positive way? How can be used by law enforcement and the intelligence services. How can be used by private individuals.

Write between 200 and 300 words.  

Use your own words.