SYSTEM SECURITY(SS) DECEMBER 2012 COMPUTER SCIENCE SEMESTER 7

SYSTEM SECURITY (SS) DECEMBER 2012 COMPUTER SCIENCE SEMESTER 7 

Con.8447-12.                                            (REVISED COURSE)                         KR-1494


                                                                        (3 Hours)                              [Total Marks:-100]

N.B: (1) Question No.1 is compulsory.
        (2) Attempt any four questions out of remaining six questions.
        (3) Assume data if required and state it clearly.

Q.1 (a) Explain different security mechanisms. [5 Marks]
       (b) Explain the steps used to construct knapsack crptosystem. [5 Marks]
       (c) What is personal firewalls? [5 Marks]
       (d) Explain different Targeted Malicious Code. [5 Marks]

Q.2 (a) What is the difference between Substitution Cipher and Transposition Cipher? Explain
             Additive Cipher and Double Transposition Cipher with example. [10 Marks]
        (b) What are different types of vulnerability, threat and control? Give example of
              each. [10 Marks] 

Q.3 (a) What is denial of service attack? What are the way in which on attack can mount a
             DOS/DDOS attack on the system? [10 Marks]
       (b) Write short note on Access Control Lists (ACL) and . [10 Marks]

Q.4 (a) Explain different authentication methods and protocols. [10 Marks]
       (b) Explain cryptographic hash function criteria and compare MO5 and SHA-1. [10 Marks]

Q.5 (a) Explain different types of data link layer vulnerability. [10 Marks]
       (b) Explain various types of port scan. [10 Marks]

Q.6 (a) Explain methods used to commit session hijack. What is SQL Injection? Give
            example. [10 Marks] 
       (b) What are the network level threats to web server? Explain. [10 Marks]

Q.7 Write short notes on the following :- [20 Marks]
        (a) Digital Signature
        (b) Multilateral Security
        (c) Digital Rights Management
        (d) Various ways of memory and address protection.