Scribd Logo
Upload

Welcome to Scribd!

  • ABP#2

    Uploaded by

    Molly Stolz
    111 views5 pages
    MIS

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    MIS

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    111 views5 pages

    ABP#2

    Uploaded by

    Molly Stolz
    MIS

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 5

    Applied

    Business Project 2 Security Analysis



    Submit your ABP-2 report to TurnItIn as a PDF file
    Name: Stolz, Molly (mollystolz)

    Project: ABP-2 Financial Analysis


    Task 1: Ishikawa Cause-and-effect Diagram

    a) cause-and-effect diagram

    Stolz, Molly Page 1 of 5



    Applied Business Project 2 Security Analysis

    Task 2: Two-dimensional mapping of root causes

    a) I2Chart

    b) 150 word discussion

    I believe that the 2D representation of the fishbone diagram is a very good way to see
    the patterns associated with password compromise. In my opinion I placed the causes
    in the right categories, but some people may have a different opinion. I think that using
    public wifi is a very easy thing for a user to use and feel safe on. Little do they know,
    they could be hacked at anytime while using that wifi. Knowing this, that makes it a
    commonly made error and easy for a hacker to use. Some of the boxes in the 2D
    diagram have 2 circles in it which means they share the same characteristics. This
    allows business analysts to accurately assess the problems with users and their
    protection of their personal web information.

    Task 3: VPN Authentication Process (Cross-functional diagram)

    a) Cross-functional Diagram

    Stolz, Molly Page 2 of 5



    Applied Business Project 2 Security Analysis

    VPN Authentication Process

    Student VPN Website NETID+ Server Duo Mobile App

    BEGIN PROCESS Receive request for Request NETID+


    Display the VPN
    NETID+ Code from Code from NETID+
    login web form
    Duo Mobil App server

    Using a web
    browser, select the
    website https://
    vpn.arizona.edu
    Send the NETID,
    NETID password,
    and the NETID+ Send Net ID+ code Display NETID+ code
    passcode entered by to Duo Mobile App to user
    Using the Duo the user to the
    Mobile App on your NETID+ server
    smartphone,
    generate a passcode
    invalid

    In your web Receive Receive NETID, Net


    browser, enter your confirmation that ID password, and
    credentials the information is NETID+ passcode
    (username, valid or invalid from
    password, and your the NETID+ server
    NETID+ Method
    passcode) into VPN
    web form
    Send valid or
    Are the
    invalid to
    student s
    invalid vpn.arizona.edu
    presented
    Click login icon to server
    credentials valid
    submit the web or invalid?
    form

    Were you
    presented
    credentials
    accepted?

    valid

    valid
    Read and accept any
    warning messages
    or AnyConnect
    Secure Mobility
    Client and JAVA
    pop-ups

    Observe the
    AnyConnect icon
    in the taskbar shows
    a padlock

    END PROCESS
    Phase

    Stolz, Molly Page 3 of 5



    Applied Business Project 2 Security Analysis

    Task 4: Recommendation to Management

    a) Question 4A - Report

    There are a couple strategies when it comes to how a student could minimize the
    probability that their NETID and password will be compromised. The first, most
    secure way that was explained in the cross-functional diagram, is doing NETID+.
    When signing in, it makes you enter your username and password as usual but then
    also adds a number code that you additionally have to add in. This secures your
    account much more than before and prevents people oversees to hack into it. There
    are also a few more simple ways to secure your account. One is taken from the 2D
    diagram and fishbone compare and contrast. It has to do with just physical security
    of your username and passwords. It is not smart to leave your password out on a
    sticky note or notebook for anyone that wants to see.

    Task 5: VPN Compromise Analysis and Report

    a) Question 5A Bar Chart

    VPN Comprpmise Analysis

    Italy
    Canada
    France
    Brazil
    Korea Republic of
    Germany
    United Kingdom
    Japan
    China
    United States

    0 1000 2000 3000 4000 5000 6000 7000 8000 9000



    Stolz, Molly Page 4 of 5



    Applied Business Project 2 Security Analysis

    b) Question 5B Report

    Based on the information I have observed from the international VPN connections, there
    are several things that might indicate that a students NETID and password have been
    compromised. If you look at the bar graph above, you see the most sign-ins have been in
    the United States. This makes sense because the university is located in the United
    States. As far as for other countries, it doesnt make a lot of sense for any VPN
    connections to be happening outside of the US. One very logical answer would be
    students studying abroad. That might be the reason a VPN could be accessed in other
    countries. A way of double-checking this could be checking to see where students are
    studying abroad during that semester. It is very important for the university to protect
    their students account and one way they did that is by creating NET ID +.

    Stolz, Molly Page 5 of 5

    You might also like