There should be one or two sentences about the purpose of the report, a one to two- entente description of the company and then a quick summary of the two vulnerabilities and the two solutions that you have identified. Company Overview Quality Web Design (QED) is an organization that specializes in Web site and Web content design for all types of businesses. Sad's mission is to provide top quality Web design that will increase consumer generated revenue to Sad's customer Web sites. Sad's database contains over 250,000 proprietary images and graphical designs that will enhance most Web site's appeal to a target demographic.
Two Security Vulnerabilities Vulnerability one: Wireless Access Points in the office network. Anyone that can gain access to the WAP can access any files that are within the firewall domain. This could allow for unknown users to gain access to confidential information about accounts, customers, or business financial and allow for attackers to shut down the network from anywhere in the WAP radius. Vulnerability two: There is no backup in place for any of the Company's architecture or policies.
If an outage occurs, or hardware failure, the data will be lost and the Company will be in a ruin as that data s what the Company makes its profit from. Recommended Solutions Wireless Access Point (WAP) Solution Turn off the SAID for the WAP or disable the WAP altogether. If it must be allowed, hiding the SAID will deter normal people from connecting to it. Enable network based credentialing so that users have to log in with company specified user id and passwords by utilizing WPAD-enterprise so that at all times only one user can be logged on with that account and users without access accounts will be denied.
By securing the data using a RADIUS authentication server and enabling WPAD Enterprise in the WAP settings, the Company can guarantee the safety of its data. A RADIUS server costs only seven hundred and fifty dollars (Geiger, 2009), comes with a backup RADIUS server, and protects the server from almost every attempt at subterfuge. Backup Solution An easy fix for this is to set up daily and weekly backups to physical media or rather cold sites to further enhance the Company's ability to bounce back from a failure.
The backup could be done locally or remotely and integrity checks put in place to verify the data is intact and safe. Because of the risk of data loss by hardware failure, it is imperative that a backup solution be implemented immediately. By utilizing the basic backup feature integrated into Windows Server SO, the Company can back up any and all data relatively easy and set up the scheduling Just by running the scheduling assistant that is integrated into the server.
The recommended storage medium is the -RSI-AU-RPR 12-ay NAS server for SMB from SNAP (Snap -RSI-AU-RPR 12-ay NAS Server for SMB , n. D. ). It needs to be kept separate from the other mainframes in its own closet. This will require some engineering as the Company has to have a new loses installed with fire proofing, redundant power supplies, and a security system. In the long run, it will be save the Company time and effort restoring from hardware failures as all they have to do is select the backup medium off the network and restore using the automated tools in the SO.
Budget Product Features Cost Electron Radius Server WAP account protection $750 Snap -RSI-AU-RPR 12-say NAS server for SMB Cold storage for data backups. $2,210. 99 Backup Closet Storage for Radius server and backup server $ 4,000 Summary It will take a few weeks to install the closet to house the RADIUS and backup servers. When the work is complete, it is estimated to take an additional two weeks to fully implement the RADIUS encryption into the Wireless Access Point and train up the staff on the data backup techniques.