Question
A banking company uses a single PostgreSQL database server from 2012 on a machine with an operating system from a similar era to store its
A banking company uses a single PostgreSQL database server from 2012 on a machine with an operating system from a similar era to store its customers data. All user details, including transaction details and login details are stored in the same database in a plaintext format to make sure the user login process is quick. The bank has a web server on the same hardware as the database server that customers can use to do online banking. The bank has a certificate for their website www.securebank.com and customers can access their bank accounts via a website accessed at http://banking.securebank.com. Customers can search for transactions from a certain period and there is a search box for a user to input the date that they want which is then passed as a plaintext string into a query string to return the relevant data. The bank does have security measures in place and has a firewall with the credentials set as default to make sure no one forgets them.
What are the problems with both storing and transmitting the data securely? For each problem please pose a solution or criteria for ensuring the secure storage or transmission of the data in question.
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started