DEFENSIVE NETWORK SECURING PRINCIPLES and DNS SCENARIO 1: You want to access your Maybank account. Since you are in a hurry, you have provided your login user name and password in mäybänk.com instead of the original website, maybank.com. As a consequence, there is a great possibility of your Maybank account being hacked due to Cross-Site Scripting (XSS) attacks and malicious content is delivered to the users. XSS vulnerabilities can potentially lead to large-scale attacks such as stealing users' credentials-cookies, etc. SCENARIO 2: While accessing maybank.com, Domain Name System (DNS) is required for the functioning of mapping a host name and its Internet Protocol (IP) address on the Internet. As shown in Figure 1, when the web page is accessed, there must be a DNS name lookup to determine the IP address of the Web server. DNS is considered as an application layer protocol for mapping domain names to IP addresses. DNS 208.77.188.26 www.maybank.com hetps:/200.10.26 Maybank Maybank Figure 1 (c) Based on Scenario 2, examine the operations that will typically happen when mäybänk.com is accessed by you. Illustrate it with a diagram.

DEFENSIVE NETWORK SECURING PRINCIPLES and DNS SCENARIO 1: You want to access your Maybank account. Since you are in a hurry, you have provided your login user name and password in mäybänk.com instead of the original website, maybank.com. As a consequence, there is a great possibility of your Maybank account being hacked due to Cross-Site Scripting (XSS) attacks and malicious content is delivered to the users. XSS vulnerabilities can potentially lead to large-scale attacks such as stealing users' credentials-cookies, etc. SCENARIO 2: While accessing maybank.com, Domain Name System (DNS) is required for the functioning of mapping a host name and its Internet Protocol (IP) address on the Internet. As shown in Figure 1, when the web page is accessed, there must be a DNS name lookup to determine the IP address of the Web server. DNS is considered as an application layer protocol for mapping domain names to IP addresses. DNS 208.77.188.26 www.maybank.com hetps:/200.10.26 Maybank Maybank Figure 1 (c) Based on Scenario 2, examine the operations that will typically happen when mäybänk.com is accessed by you. Illustrate it with a diagram.

Computer Networking: A Top-Down Approach (7th Edition)

7th Edition

ISBN:9780133594140

Author:James Kurose, Keith Ross

Publisher:James Kurose, Keith Ross

Chapter1: Computer Networks And The Internet

Section: Chapter Questions

Problem R1RQ: What is the difference between a host and an end system? List several different types of end...

See similar textbooks

Related questions

Q: Explain what IP spoofing is. Can IP spoofing be seen as a violation in security?

A: 1) IP spoofing is a technique used by malicious actors to forge or fake the source IP address of a…

Q: Decrypting end-to-end encrypted traffic may be challenging, which might negatively impact the…

A: Yes, that's correct. End-to-end encryption (E2EE) is designed to prevent unauthorized access to data…

Q: Spoofing and session hijacking should be distinguished. Assuming you are a web user, please describe…

A: Explanation: Spoofing and sessioning are both prohibited Internet practises. Both pose substantial…

Q: Best practices for firewall administration are discussed. Explain.

A: Introduction A firewall is a network security device that monitors and filters incoming and outgoing…

Q: Zero-day exploits are extremely risky because of their one-of-a-kind characteristics.

A: Here we have given a brief note on zero-day exploits and mentioned few point on what kind of…

Q: A firewall's principal role is to protect your computer from external threats. It is essential to…

A: Introduction: A firewall acts as a gatekeeper, preventing unauthorized users from entering or…

Q: Describe a cookie-based internet authentication attack.

A: An effort to circumvent or undermine the authentication processes in order to obtain access to a…

Q: Network ACLs are most commonly associated with firewalls, since they require a certain level of…

A: Answer: A network access control list (ACL) is comprised of decisions that either permit access to a…

Q: What is the purpose of anti-spoofing?

A: Spoofing is an form of online attack where the cyber attackers change the address or the source of a…

Q: Define biometric authentication

A: Biometric Authentication

Q: Firewalls protect against cyberattacks and other malicious traffic by scanning each data packet that…

A: A firewall definition can fluctuate a piece starting with one source then onto the next. However, in…

Q: Message authentication addresses what kind of attacks?

A: Intro The kinds of assaults does message authentication address

Q: Misdelivery of information through emails is one of the most difficult task to control. Misdelivery…

A: Misdelivery of information through emails is one of the most difficult task to control. Misdelivery…

Q: In malware, the payload is used to exploit a well known or zero day vulnerability True False

A: Statement: In malware, the payload is used to exploit a well known or zero day vulnerability.…

Q: First and foremost, a firewall protects your computer from malicious outsiders. The use of packet…

A: Introduction: A firewall acts as a gatekeeper to restrict unauthorised individuals from entering or…

Q: A firewall's primary responsibility is to protect your computer from unwanted visitors. When using…

A: A firewall in a computer system is a barrier between our private internet and publicly spread vast…

Q: A firewall's principal purpose is to prevent malicious outside parties from gaining access to your…

A: A firewall is a network security system that monitors and controls incoming and outgoing network…

Q: Explain how HTTPS protects against certain types of threats.

A: HTTPS is a protocol used in websites to prevent an unauthorized user from executing unlawful…

Q: Topic: Cryptographic Active Attack Kindly discuss the Modification of Messages in simple terms.

A: Here in this question we have asked to discuss the modification of message attack in cryptography.

Q: Due to the difficulty of decrypting end-to-end encryption, application proxies may suffer. A proxy…

A: Proxy-Based System: A proxy-based system has many security flaws. This article discusses end-to-end…

Q: Access Control Lists are used by firewalls (ACL). Describe what an ACL is and what it usually…

A: Intro Firewalls employ Access Control Lists (ACL). Firewalls employ ACL(access control lists) to…

Q: Network sniffing is the act of observing communications on the network in either a passive or an…

A: The above question is answered in step 2 :-

Q: Explain why internet authentication is difficult.

A: Cyberculture, commonly referred to as online culture, is a growing phenomenon. The term "cyber…

Q: Distinguish between spoofing and session hijacking. Assuming you're a web user, write down any two…

A: - Spoofing and session are both illegal activities over Internet. Both have security concerns and…

Q: The primary purpose of a firewall is to defend data against unauthorized access. Rules for filtering…

A: A firewall is a network security device that monitors and controls incoming and outgoing network…

Q: Spoofing should be distinguished from session hijacking. List any two precautions you take to…

A: Introduction Spoofing and sessioning are both prohibited Internet practises. Both pose substantial…

Q: he SPI Firewall is a concept that works in combination with the FTP Protocol.

A: Introduction: A firewall is a piece of software that is used to prevent unauthorised access and the…

Q: This type of virus scan attempts to find known patterns or signatures to identify a pattern This…

A: let us see the answer:- The correct option is D ) i.e. Signature-based intrusion detection system…

Question

Expert Solution

This question has been solved!

Explore an expertly crafted, step-by-step solution for a thorough understanding of key concepts.

SEE SOLUTION Check out a sample Q&A here

Step 1

VIEW

Step by step

Solved in 2 steps

SEE SOLUTION Check out a sample Q&A here

Recommended textbooks for you

Computer Networking: A Top-Down Approach (7th Edi…

Computer Engineering

ISBN:

9780133594140

Author:

James Kurose, Keith Ross

Publisher:

PEARSON

Computer Organization and Design MIPS Edition, Fi…

Computer Engineering

ISBN:

9780124077263

Author:

David A. Patterson, John L. Hennessy

Publisher:

Elsevier Science

Network+ Guide to Networks (MindTap Course List)

Computer Engineering

ISBN:

9781337569330

Author:

Jill West, Tamara Dean, Jean Andrews

Publisher:

Cengage Learning

Concepts of Database Management

Computer Engineering

ISBN:

9781337093422

Author:

Joy L. Starks, Philip J. Pratt, Mary Z. Last

Publisher:

Cengage Learning

Prelude to Programming

Computer Engineering

ISBN:

9780133750423

Author:

VENIT, Stewart

Publisher:

Pearson Education

Sc Business Data Communications and Networking, T…

Computer Engineering

ISBN:

9781119368830

Author:

FITZGERALD

Publisher:

WILEY

Computer Networking: A Top-Down Approach (7th Edi…

Computer Engineering

ISBN:

9780133594140

Author:

James Kurose, Keith Ross

Publisher:

PEARSON

Computer Organization and Design MIPS Edition, Fi…

Computer Engineering

ISBN:

9780124077263

Author:

David A. Patterson, John L. Hennessy

Publisher:

Elsevier Science

Network+ Guide to Networks (MindTap Course List)

Computer Engineering

ISBN:

9781337569330

Author:

Jill West, Tamara Dean, Jean Andrews

Publisher:

Cengage Learning

Concepts of Database Management

Computer Engineering

ISBN:

9781337093422

Author:

Joy L. Starks, Philip J. Pratt, Mary Z. Last

Publisher:

Cengage Learning

Prelude to Programming

Computer Engineering

ISBN:

9780133750423

Author:

VENIT, Stewart

Publisher:

Pearson Education

Sc Business Data Communications and Networking, T…

Computer Engineering

ISBN:

9781119368830

Author:

FITZGERALD

Publisher:

WILEY

SEE MORE TEXTBOOKS

GET THE APP

About FAQ Academic Integrity Sitemap Document Sitemap

Contact Bartleby Contact Research (Essays)High School Textbooks Literature Guides Concept Explainers by Subject Essay Help Mobile App

GET THE APP

Privacy

Your CA Privacy Rights

Your NV Privacy Rights

About Ads

Manage My Data

bartleby, a Learneo, Inc. business