Paper, Order, or Assignment Requirements
CNET 232 Coursework Assignment 2014
Assessing Password Security
Aims: To improve your understanding of systems security and the limitations that can occur in practice.
Task: Research and analyse the use of password security in the context of websites, assessing the extent to which they are following and encouraging good practice.
Despite the various weaknesses that have been observed and documented over the years, user authentication continues to be dominated by password-based mechanisms. This is particularly true on websites, where they represent an approach that users can be guaranteed to be able to use from any type of device without any prerequisites in terms of additional hardware (e.g. as would be the case if tokens or certain biometric methods were to be used). However, the password requirements imposed by many websites appear to be rather limited, and in many cases they do not satisfy the good practice guidelines that users would often be encouraged to follow elsewhere.
Your task in this assignment is to conduct a study of password authentication on websites and to assess the extent to which good practice is being followed and encouraged.
Identify, justify and explain the criteria against which you will conduct your evaluation (i.e. what would you expect sites to do in order to encourage and/or ensure good password practice amongst their users?).
Select and justify three websites that you will use as your candidates for the evaluation. In each case you should be able to present a rationale for why the site was chosen. Clearly, in order to be able to apply your criteria in relation to password practices, each candidate site should use password-based authentication (as such, sites such as online banking, that use non-traditional login mechanisms, are unlikely to be suitable).
Perform and document an evaluation of your chosen sites’ password practices and determine the extent to which they are compliant with your proposed criteria.
Discuss the implications of your findings in a written report, including any recommendations (in general or site-specific) arising from your study.
Your main report should clearly explain your chosen criteria and websites, plus the methodology adopted for the evaluation (i.e. the process by which you went about testing the criteria on each of the sites). It should also present the details of your findings and a discussion of their implications.
Your report should begin with an Executive Summary, of no more than one page in length (in 12pt font), which outlines and summarises the key process, findings and recommendations from your study.
You should give appropriate consideration to the presentation and structure of your report. Marks will be gained for including appropriate introduction and concluding sections, as well as for appropriate use of figures and tables that can usefully accompany and support the text.
Please note that in performing the evaluation of the sites, you are NOT being asked to probe or break the security of their password mechanisms, or to perform any other form of activity that could constitute an attack against them. You can undertake the evaluation using entirely legitimate means, by looking at what the sites provide and (where necessary) creating or using your own user accounts on them.
Report assessment criteria
Executive Summary 10%
Selection and justification of evaluation criteria 20%
Explanation of website choices and evaluation methodology 20%
Analysis and discussion of findings 40%
Report presentation and clarity 10%
The overall length of the submission (excluding any appendices) should not exceed 3,500 words.
The report is worth 70% of the overall mark for the module.
Threshold Criteria (please note that these are indicative only)
To achieve a pass (40%+) you must discuss the topic, present basic factual evidence in of your approach and findings.
To achieve a 2.2 mark (50%+), you must present a descriptive account of your approach and some baseline discussion that considers the findings.
To achieve a 2.1 mark (60%+), you must present a fully justified account of your approach and at least some level of critical analysis in the discussion of your findings.
To achieve a 1st class mark (70%+), you must conduct a thorough review and full analysis of the topic, presenting a clear and fully considered method, and a set of fully analysed findings.
Deadline: 12pm (i.e. midday) on 12th December
You must submit your coursework via the DLE. Coursework must be submitted by the specified deadline.
You should give due consideration to your personal time management to ensure that coursework is submitted in plenty of time prior to the deadline.
Coursework can be submitted at any time ahead of the deadline.
Please note that work submitted late without valid extenuating circumstances will be penalized. Work submitted within 24 hours after the deadline will receive a mark, but it will be capped at the normal pass mark for that module. Work submitted more than 24 hours after the official deadline will receive an automatic mark of zero.
Our Service Charter
Excellent Quality / 100% Plagiarism-FreeWe employ a number of measures to ensure top quality essays. The papers go through a system of quality control prior to delivery. We run plagiarism checks on each paper to ensure that they will be 100% plagiarism-free. So, only clean copies hit customers’ emails. We also never resell the papers completed by our writers. So, once it is checked using a plagiarism checker, the paper will be unique. Speaking of the academic writing standards, we will stick to the assignment brief given by the customer and assign the perfect writer. By saying “the perfect writer” we mean the one having an academic degree in the customer’s study field and positive feedback from other customers.
Free RevisionsWe keep the quality bar of all papers high. But in case you need some extra brilliance to the paper, here’s what to do. First of all, you can choose a top writer. It means that we will assign an expert with a degree in your subject. And secondly, you can rely on our editing services. Our editors will revise your papers, checking whether or not they comply with high standards of academic writing. In addition, editing entails adjusting content if it’s off the topic, adding more sources, refining the language style, and making sure the referencing style is followed.
Confidentiality / 100% No DisclosureWe make sure that clients’ personal data remains confidential and is not exploited for any purposes beyond those related to our services. We only ask you to provide us with the information that is required to produce the paper according to your writing needs. Please note that the payment info is protected as well. Feel free to refer to the support team for more information about our payment methods. The fact that you used our service is kept secret due to the advanced security standards. So, you can be sure that no one will find out that you got a paper from our writing service.
Money Back GuaranteeIf the writer doesn’t address all the questions on your assignment brief or the delivered paper appears to be off the topic, you can ask for a refund. Or, if it is applicable, you can opt in for free revision within 14-30 days, depending on your paper’s length. The revision or refund request should be sent within 14 days after delivery. The customer gets 100% money-back in case they haven't downloaded the paper. All approved refunds will be returned to the customer’s credit card or Bonus Balance in a form of store credit. Take a note that we will send an extra compensation if the customers goes with a store credit.
24/7 Customer SupportWe have a support team working 24/7 ready to give your issue concerning the order their immediate attention. If you have any questions about the ordering process, communication with the writer, payment options, feel free to join live chat. Be sure to get a fast response. They can also give you the exact price quote, taking into account the timing, desired academic level of the paper, and the number of pages.