a. List four (4) possible security risks that the bank and the clients are facing in the present network setup. Explain clearly why these security risks exist.
There are 4 possible security risks that the bank and the clients are facing in the present network setup.
Firstly, there may be a possible security risk of interception occurs. Interception means that unauthorized party gain access to an asset. Because client send their transaction data which contains personal and sensitive data to the bank's Web server through the Internet. Without any security measures to protect the data, these data will easily been accessed by somebody.
Secondly, there will be modification of data occurs in the present network setup. Modification means the unauthorized party gain access to an asset and tampers with the asset. In the present network setup, there is no security measure to ensure that unauthorized party cannot gain access to the data and tempers with the data.
For example, unauthorized party may access to the transaction data and modify the content. Modification of data would occur between the communication of the client and the bank's web server and the bank's internal network.
Thirdly, there may be a possibility of Denial of service occurs. A denial of service attack is used by an individual to destroy, shutdown, or degrade a computer or network resource. The goal of such attacks is to flood the communication ports and memory buffers of the targeted site to prevent the receipt of legitimate messages and the service of legitimate requests for connections. A denial of service attack might be used to bring down a server that a hacker wants to spoof. For example, a hacker may attempt to spoof the bank in order to obtain PINs or credit card numbers.
Finally, there may be...