SmurfWare SmurfScanner Design for Security

Previous page
Table of content
Next page

Instructions

Given your answers from the SmurfScanner Risk Assessment, draw a new software architecture diagram for the SmurfScanner system that mitigates the risk. Also, list the other things you could do to secure the application.

Answers (Incomplete)

The various processes should only accept commands from the other processes explicitly shown in the diagram. Each piece of software should be signed by SmurfWare, and this signature should be used to verify the caller.

  • SmurfScanner Manager communications should be encrypted.

  • There should be only one solid crypto implementation in the solution.

  • The first time the device is used, the password for the Manager-level functions should be set by the Manager app. The password should be used from that point on. The hard-coded shared secret should be eliminated.

  • The Crypto Helper should be seeded with something more entropic, such as mouse movements, not the system clock.

  • A sample fixed architecture is depicted in Figure C-2.

Figure C-2. The SmurfWare SmurfScanner architecture with some adjustments for security. Not all possible fixes are shown in this picture, but many of the most critical ones are.




Previous page
Table of content
Next page
Software Security. Building Security In
Software Security: Building Security In
ISBN: 0321356705
EAN: 2147483647
Year: 2004
Pages: 154
Authors: Gary McGraw
BUY ON AMAZON
Cisco IP Communications Express: CallManager Express with Cisco Unity Express
C++ How to Program (5th Edition)
Google Maps Hacks: Tips & Tools for Geographic Searching and Remixing
Special Edition Using FileMaker 8
MPLS Configuration on Cisco IOS Software
GDI+ Programming with C#
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy