Applying Advanced Protocols

 

Pls Answer part two only

PART ONE
This assignment will provide an exercise in the implementation of IPsec and DNSSEC that are used in today’s corporate infrastructures.
1. Using the virtual environment created and modified in Topics 1 and 2. On your primary domain controller (e.g., ITT430-ASB1), conduct the following procedures outlined in the “ITT-430: IPSec & DNSSEC Implementation Instructions.”
2. Enable IPsec and DNSSEC to enhance the protection of the domain. Note: IPsec is a security protocol that provides network-based authentication and confidentially between servers via a set of standards, while DNSSEC is a set of extensions that provide integrity to the DNS server to aid in the deterring attackers from hijacking the DNS process.
3. After completing the above procedures, attach the appropriate screenshots into a single MS Word document and complete the following tasks.
PART TWO
Using the above enterprise architecture scenario, which consists of different components (e.g., servers, clients, databases) with information that has various temporal and distribution constraints, networks, multiple sites, and trusted and untrusted clients, write a 500- to 750-word summary, making sure to:
1. Describe the appropriate cryptographic tools/algorithms/protocols that can be applied at various locations throughout that architecture in order to achieve a variety of goals.
2. Define the purpose of IPsec (including the various modes, IKE, ESP vs AH, Windows firewall integration, and IPv6) and DNSSEC (relationship to PKI, DNS Zones, and trust anchors).
3. Briefly describe what you accomplished from the procedures supplied, and how these protocols enhance the security of servers. Provide references to recent articles (less than a year old) that demonstrate the use and benefits of an organization that has implemented IPsec and DNSSEC.
4. Describe the management challenges/tradeoffs associated with implementing various security controls and protocols in an enterprise network.

Our customer support team is here to answer your questions. Ask us anything!