1) An enterprising group of entrepreneurs is starting a new data storage and retrieval business, StoreItRite, Inc. For a fee, the new company will accept digitalized data (both text and images), and store it on hard drives until needed by the customer. Customer data will be transmitted to and from StoreItRite over the Internet. StoreItRite guarantees that the data's confidentiality and integrity will be maintained.
StoreItRite also envisions some information assurance requirements for their internal operations. Company employees will need to exchange confidential email, and will need a mechanism for verifying the integrity and originator of some email messages. Also, StoreItRite intends a daily backup of all customer data to a remote facility via a leased line. They wish to do so as economically as possible, while ensuring the data's confidentiality and integrity.
StoreItRite is interviewing candidates for the position of Chief Information Officer (CIO). They are asking candidates to describe briefly how they would satisfy StoreItRite's requirements as stated above. How would a successful candidate respond?
2) What security features could be provided without changing the mail delivery infrastructure, i.e., by only running special software at the source and destination?
3) Computer system #1 requires logon passwords to be five upper-case letters. How many different passwords are there for system #1? Computer system #2 requires logon passwords to be five characters, which may be upper or lower-case letters, the numbers 0 through 9, and the characters $ and %. How many different passwords are there for system #2? "