Question

In: Computer Science

Provide a brief (1- to 3-paragraph) analysis of the Heartbleed vulnerability. In your response, be sure...

Provide a brief (1- to 3-paragraph) analysis of the Heartbleed vulnerability. In your response, be sure to address the following:

  • Describe the cause of the vulnerability.
  • Identify the secure coding principles that were violated.
  • Recommend best practices to identify or prevent similar attacks.

Solutions

Expert Solution

Heartbleed vulnerability : first u need to understand the heartbleed vulnerability. It is the serious vulnerability that allows stealing the sensitive information. It came under limelight in 2014.it allows anyone to read memory and data of the system.

It attacks the Ssl cryptographic software library. It is very harmful because the secure data can be steal by attackers. Heartbleed is a bug that can steal files and access data in few minutes.

Our system conducts information, data, passwords, etc. Heartbleed may attack versions of the open SSL library quickly.

The main Cause of heartbleed vulnerability :

Open SSL library - This was the main cause , it provides a good performance but it is failed to provide security. It was open source library, developers were found it as lack of security issues.

Lack of knowledge : software developers have not enough knowledge to deal with it. In 2014 ,Heartbleed vulnerability was new to the whole world. Very less people were aware of bug.

Some codes were made at that time -

Note: CERT secure code focus on identity insecure coding and for unsafe coding. But it was not that much effective at that time.

Advanced CERT C coding was introduced few years ago. It finds coding errors that are the cause of bugging. It helps to manipulate bugging but results were not impressive.

SCALE - source code analysis laboratory gives a protection against various attackers. But SCALE would have upgrade its methods.

Best practice to identify or prevent similar attacks

Focus on goal : We need to focus on applications that can be useful to protect our data. We need to create a core that will work to control the access of data.

Security : it should be more secure for receiving data from an external system.

Create platforms: we should create more platforms for solving problems related to attacks.


Related Solutions

Write a brief news blog explaining either expansionary or contractionary policy. In your response, be sure...
Write a brief news blog explaining either expansionary or contractionary policy. In your response, be sure to give your blog a catchy title, name the policy you are explaining, explain the objective of the policy, describe the desired result of the policy, and discuss possible issues or problems that may arise as a result of that policy.
Why is Health Communication important? Be sure to support your response with research and provide a...
Why is Health Communication important? Be sure to support your response with research and provide a reference list below. Construct a story showing how health communication can be used. For example, pretend to be a medical professional explaining side effects from a medication to a patient. If you use this example you would have to research a medication, list the medication, and demonstrate how you would explain the side effects to a patient. You can use examples from your readings...
Write a 3 paragraph essay explaining your response to the questions at the end of this...
Write a 3 paragraph essay explaining your response to the questions at the end of this scenario - You are the only in-house designer at a small company, and you have been working on a website design that think is your best work, so far. Before you began working, you had a meeting with your manager, the Chief Marketing Officer, and you feel like the direction you got for the website design was very clear. About 2 weeks into the...
You will review a case this week. Your post will be a 3 paragraph response, one...
You will review a case this week. Your post will be a 3 paragraph response, one paragraph for each question below (due Wed). Then you will challenge your classmates on their answers - one paragraph each to two classmates (due Thu). A paragraph is a complete thought in five or more sentences. -------------------------------------------------------- In 2001, U.S. airlines spent about 10 percent of their budget on fuel. In 2011, they had to spend 35 percent of their budget on fuel. Airlines,...
Provide a definition and a brief explanation of their importance in microeconomic analysis. 1) Economies of...
Provide a definition and a brief explanation of their importance in microeconomic analysis. 1) Economies of Scope vs. Economies of Scale; 2) MRPL; 3) Three features or characteristics a good must have to be regarded as a Giffen Good; 4) Allocative Efficiency.
1. Write a brief paragraph describing the CAPM model. 2. Write a brief paragraph describing Beta...
1. Write a brief paragraph describing the CAPM model. 2. Write a brief paragraph describing Beta and its role in CAPM. 3. Using the CAPM formula, calculate Race Co.’s required return given that the common stock has a beta of 1.8, the risk-free rate is 2.0 percent, and the market return is 10.0 percent
Provide Brief 5-7 paragraph Description of Honda Motor Company?
Provide Brief 5-7 paragraph Description of Honda Motor Company?
Essay 1 Trace the development of Industrial Relations in the Caribbean. In your response be sure...
Essay 1 Trace the development of Industrial Relations in the Caribbean. In your response be sure to highlight the driving force that led to industrial relations
Provide a brief description of your chosen company allocated in Oman based on SWOT Analysis (5...
Provide a brief description of your chosen company allocated in Oman based on SWOT Analysis (5 marks) 250 words
Provide a brief summary of how the federal income tax return is structured. Be sure to...
Provide a brief summary of how the federal income tax return is structured. Be sure to address the relationship of AGI, personal exemptions, standard or itemized deductions, payments made, balance owed, TI, and Tax. You may want to follow the general format on the federal form 1040 as a guide.
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT