Network Security

-

   


 Network security entails a multitude of technologies, processes, and devices. This domain refers to a set of configuration and rules designed to protect the confidentiality, accessibility, and integrity of computer data and networks using hardware and software technologies (LaBounty, 2020). Most organizations require network security solutions to protect them from ever-growing cyber threats. Hackers are always trying to exploit and find vulnerabilities in various areas such as devices, users, data, applications, and locations. Thus many network security management tools address individual exploits and threats and regulatory non-compliance. In network security management, many layers safeguard an organization's data since attacks can happen at any network security layer. Therefore, organizations employ computer gurus to model hardware, software, and policies designed to address all network layers. Furthermore, network security has three different controls mainly, technical, physical, and administrative.

    Physical network security entails controls designed to prevent unauthorized personnel from accessing physical network components such as cabling cupboards and routers. In the organization, IT specialists use controlled access on areas such as biometric authentication and locks. Additionally, technical network security protects data that organizations store on their networks or data in transit across, into, or out of the organizational network. In this layer, the protection is twofold as it aims to protect data and systems from malicious employees and unauthorized personnel. Administrative network security entails processes and policies that control user behavior, such as authentication, their level of access, and how the IT department implement changes to the infrastructure. Similarly, there are different types of network security through which organizations can secure their network. Under network access control (NAC), organizations can ensure that malicious attackers do not infiltrate their network by installing comprehensive access control policies.

    Furthermore, organizations can use NAC at the granular level. For instance, management could grant administrators full access to the network but limit access to important folders or prevent their devices from joining the organizational network. Antivirus and Antimalware software offers protection from various malicious software such as ransomware, viruses, phishing, trojans, and worms. Social engineering refers to the use of deception to manipulate people into giving personal information that may be used for malicious intent. Phishing is a social engineering attack utilized to access user data, such as login credentials and credit card numbers. This malice occurs when an attacker masquerades as a trusted entity and compels a victim to open an instant message, an email, or a text message. The NAC software regularly scans and tracks files upon entry to the organizational network. The other network security is firewall protection, where firewalls serve as a barrier between trusted internal networks and untrusted external networks. Finally, virtual private networks establish a connection to the network from another site or endpoint. For instance, home-based employees can connect to the organizational network over a VPN. Moreover, data between the two points will require encryption, and the user will have to authenticate to enable communication between the network and their device. Other network security types are application security, data loss prevention, behavioral analytics, email security, network segmentation, and security information and event management.

    Correspondingly, network security faces various attacks such as passive and active. In passive attacks, an intruder may intercept data traveling through the network. In contrast, in active attacks, an intruder may initiate commands to damage the network's normal flow of operations to access data via the network. Some of the passive attacks are wiretapping, encryption, traffic analysis, and a port scanner, while active attacks are DNS spoofing, heap overflow, and phishing. Therefore, organizations need to reduce their susceptibility to attacks by employing the principles of secure network design. Some of the principles are mediated access, compartmentalization, defense in depth, accountability, and traceability (Learncisco, 2020). Similarly, students may also equip themselves with network security fundamentals to identify information security attacks and implement security controls. Ergo, efficient and effective network security is vital in protecting proprietary information.


References

 LaBounty, C. (2020). What is Network Security and Why is it important? Retrieved from herzing.edu: https://www.herzing.edu/what-network-security-and-why-it-important

Learncisco. (2020). Principles of Secure Network Design. Retrieved from learncisco.net: https://www.learncisco.net/courses/iins/common-security-threats/security-architecture-design-guidelines

 

 

Comments

Post a Comment

Popular Post

Web/Mobile App Critique

-
Image
  The application I chose for this weeks discussion was the   YouTube Web App. Usability Once a user loads the web app, he/she quickly notices a search box with a search button where one can search videos they want to watch. The search tool makes it easier and simple for a user to find a video of their choice without going through all the videos uploaded in the website's database. Additionally, it provides a microphone, an alternative to the search box, which can be very useful for physically challenged persons.  Besides, it has a user-friendly menu where users can click and view trending videos, browse the history of watched videos, liked videos, and your videos. The app allows users to create a list of videos to be watched later.    The app also provides a platform where users can create personal accounts using their email addresses to subscribe to videos they like and get notified whenever new videos are uploaded. This reduces the time and complexity, and saves data bundles for
Read more

Traveling Through a Network

-
Image
     A packet is simply a piece of information traveling through a network. To begin with a packet arrives at the router which is responsible in determining the IP address of the packet, the IP address usually centers back to the original device used having been placed by the IP protocol. When the router has determined the packet’s IP address then it is sent to that address. If the IP address is not found then the packet is sent to a backup router where hopefully its destination is determined if not then it is passed to another router until the destination’s IP is found.      A ping can be explained as a signal sent to a site that requires response. The ping sent to google.com brought positive feedback as shown in the diagram 1 below, it shows the ping reached its destination and feedback has been sent back. The trace route to amazon.jp is shown in diagram 2 whereby we see the ping having trouble reaching its destination hence the timed out error at the end. Finally the trace route sho
Read more

Programming Language

-
Image
     My experience building a program using Scratch       From my experience using Scratch, I believe there is a clear connection between Scratch and Computer science. Using Scratch has built confidence in me in creating things with computers and allowed me to explore coding using different programming languages. My first program was an animation that I created using blocks. I never got stuck with any syntax issues and any error messages since it uses blocks. I tried parallelism, which I later learned using Java and Python.  Difficulties I encountered building program in Scratch       Using Scratch doesn’t give the programmer full control of the program. Some of the functions and instructions have already been set within the blocks when using Scratch. Such programs cannot be edited to suit the programmer’s needs (Maloney et al., 2010). Since it uses a drag and drop method, which lets children perform actions quickly and easily, actual code is not given; hence full control of objects is
Read more