DCA2208 INTRODUCTION TO NETWORK SECURITY JAN FEB 2026

Description

SESSION	JANUARY/FEBRUARY 2026
PROGRAM	BACHELOR OF COMPUTER APPLICATIONS (BCA)
SEMESTER	IV
COURSE CODE & NAME	DCA2208 INTRODUCTION TO NETWORK SECURITY

 

SET-I

 

Q.1. What is trust management in network security? Explain the concept of policy language and credential validation. (3+3+4 = 10 Marks)

Ans 1.

Trust Management in Network Security

Trust management is a unified structure that operates on a basis of policy. It is used in distributed networks to determine, interpret, and then automatically enforce security rules that define who’s allowed to use which resource under which circumstances. Traditional access control systems rely on central authority servers and existing identity databases that are not scalable and can become single point of failure within large, dynamic, open networks such as the internet. Trust management replaces rigid methods with flexible, credential-based authorization frameworks where access decisions are taken by evaluating if a requester’s digitally signed credentials

MUJ

Its Half solved only

Buy Complete assignment from us

Price – 190/  assignment

MUJ Manipal University Complete SolvedAssignments  JAN- FEB  2026

buy cheap assignment help online from us easily

we are here to help you with the best and cheap help

Contact No – 8791514139 (WhatsApp)

OR

Mail us-  [email protected]

Our website – https://muj.assignmentsupport.in/

 

 

Q.2. What is correlation and traceback in network security? Explain alert correlation and IP traceback techniques. (3+3+4 = 10 Marks)

Ans 2.

Correlation in Network Security

Correlation is the analytical process of regularly aggregating, normalizing and analysing security incidents generated through a variety of heterogeneous sources of data simultaneously to detect sophisticated attack campaigns, coordinated multi-stage attacks, and advanced persistent threats that isolated instances would not ever disclose. Modern networks for enterprise generate many

 

Q.3. What is complete mediation? Explain the principle of economy of mechanism, fail-safe defaults, and separation of privilege. (3+3+4 = 10 Marks)

Ans 3.

Complete Mediation

The principle of complete mediation is an integral security design concept that stipulates that every single access request to any protected resource needs to be validated against the current access control policy on each and every occasion, without any exception, without caching previous authorization decisions, and without assuming that permissions that were granted previously are relevant in the present. The principle was formally articulated in the work of Saltzer and Schroeder in their landmark 1975 paper on protection of data in computer systems and a logical framework of concepts that has remained the fundamental intellectual basis for

 

SET-II

 

Q.4. What are Message Authentication Codes (MACs)? Explain HMAC and CBC-MAC. How do MACs differ from digital signatures? (2+3+3+2 = 10 Marks)

Ans 4.

Message Authentication Codes (MACs)

A Message Authentication Coding (MAC) can be described as a small digital cryptographic token that has a fixed length. It is calculated from a variable-length input message and a shared secret key, used to simultaneously verify both the integrity and the authenticity of the communication anyone with the same secret key. Integrity verification ensures that the message content has not been accidentally altered or intentionally changed during transmission. Validity checks confirm the authenticity of the messages generated from a person who owns the shared

 

Q.5. Explain buffer overflow attacks and how to prevent them. Discuss stack-based and heap-based overflow. (5+5 = 10 Marks)

Ans 5.

Buffer Overflow Attacks

Buffer overflow attacks exploit mistakes in programming when a program copy more data into the memory buffer of a certain size that it was originally designed for, leading excess data to flow past the buffer’s boundary and write over adjacent memory areas with critical information for program control. Buffer-overflow vulnerabilities are among the earliest, most perilous, and frequently utilized classes of security vulnerability that was responsible for the Morris Worm of 1988, the first major internet-scale attack that was attributed to countless prominent security

 

 

Q.6. Explain the working of the ARP protocol. Discuss ARP poisoning/spoofing attack and its countermeasures. (3+3+4 = 10 Marks)

Ans 6.

Working of the ARP Protocol

It is the Address Resolution Protocol (ARP) is a non-stateless Layer 2 Network Protocol which is utilized for IPv4 local area networks that automatically resolve physical IP addresses to the physical MAC (Media Access Control) addresses required for constructing acceptable Ethernet frames.

ARP Poisoning / Spoofing Attack

ARP poisoning, often referred to ARP spoofing or ARP cache poisoning is a network-based