Page 149 - DCAP516_COMPUTER_SECURITY
P. 149

Unit 12: Network Security Controls




          12.2 Attributes of a Secure Network                                                   Notes

          Network security starts from authenticating any user, most likely a username and a password.
          Once authenticated, a stateful firewall enforces access policies such as what services are allowed
          to be accessed by the network users. Though effective to prevent unauthorized access, this
          component fails to check potentially harmful contents such as computer worms being transmitted
          over the network.
          An Intrusion Prevention System (IPS) helps detect and prevent such malware. IPS also monitors
          for suspicious network traffic for contents, volume and anomalies to protect the network from
          attacks such as denial of service. Communication between two hosts using the network could be
          encrypted to maintain privacy. Individual events occurring on the network could be tracked for
          audit purposes and for a later high level analysis.

          Honeypots, essentially decoy network-accessible resources, could be deployed in a network as
          surveillance and early-warning tools. Techniques used by the attackers that attempt to
          compromise these decoy resources are studied during and after an attack to keep an eye on new
          exploitation techniques. Such analysis could be used to further tighten security of the actual
          network being protected by the honeypot.
          12.3 Security Management for Networks


          Security Management for networks is different for all kinds of situations. A small home or an
          office would only require basic security while large businesses will require high maintenance
          and advanced software and hardware to prevent malicious attacks from hacking and spamming.

          Small Homes

               A basic firewall.
               For Windows users, basic Antivirus software like McAfee, Norton AntiVirus or AVG
               Antivirus.

               An anti-spyware program such as Windows Defender or Spybot would also be a good
               idea. There are many other types of antivirus or antispyware programs out there to be
               considered.
               When using a wireless connection, use a robust password. Also try and use the strongest
               security supported by your wireless devices, such as WPA or WPA2.
          Medium Businesses


               A fairly strong firewall.
               Strong Antivirus software and Internet Security Software.
               For authentication, use strong passwords and change it on a bi-weekly/monthly basis.
               When using a wireless connection, use a robust password.

               Raise awareness about physical security to employees.
               Use an optional network analyzer or network monitor.

          Large Businesses

               A strong firewall and proxy to keep unwanted people out.



                                           LOVELY PROFESSIONAL UNIVERSITY                                   143
   144   145   146   147   148   149   150   151   152   153   154