Page 100 - DCAP309_INFORMATION_SECURITY_AND_PRIVACY
P. 100

Information  Security and Privacy




                    Notes          to be accessed by the  network users.  Though effective  to prevent  unauthorized access,  this
                                   component fails to check potentially harmful contents such as computer worms being transmitted
                                   over the network.
                                   An Intrusion Prevention System (IPS) helps detect and prevent such malware. IPS also monitors
                                   for suspicious network traffic for contents, volume and anomalies to protect the network from
                                   attacks such as denial of service. Communication between two hosts using the network could be
                                   encrypted to maintain privacy. Individual events occurring on the network could be tracked for
                                   audit purposes and for a later high level analysis.
                                   Honeypots, essentially decoy network-accessible resources, could be deployed in a network as
                                   surveillance  and early-warning  tools.  Techniques  used  by  the  attackers  that attempt  to
                                   compromise these decoy resources are studied during and after an attack to keep an eye on new
                                   exploitation techniques. Such analysis could be used to further  tighten security of the actual
                                   network being protected by the honeypot.

                                   Security Management for Networks

                                   Security Management for networks is different  for all  kinds of  situations. A small home or
                                   an  office  would  only  require  basic  security  while  large  businesses  will  require  high
                                   maintenance and advanced software and hardware to prevent malicious attacks from hacking
                                   and spamming.
                                   Small Homes


                                   1.  A basic firewall.
                                   2.  For Windows users, basic Anti-virus software like McAfee, Norton AntiVirus or AVG
                                       Antivirus.

                                   3.  An anti-spyware program such as Windows Defender or Spybot would also be a good
                                       idea. There are many other types of antivirus or antispyware programs out there to be
                                       considered.
                                   4.  When using a wireless connection, use a robust password. Also try and use the strongest
                                       security supported by your wireless devices, such as WPA or WPA2.

                                   Medium Businesses

                                   1.  A fairly strong firewall.

                                   2.  Strong Antivirus software and Internet Security Software.
                                   3.  For authentication, use strong passwords and change it on a biweekly/monthly basis.
                                   4.  When using a wireless connection, use a robust password.
                                   5.  Raise awareness about physical security to employees.

                                   6.  Use an optional network analyzer or network monitor.
                                   Large Businesses


                                   1.  A strong firewall and proxy to keep unwanted people out.
                                   2.  A strong Antivirus software package and Internet Security Software package.
                                   3.  For authentication, use strong passwords and change it on a weekly/biweekly basis.




          94                                LOVELY PROFESSIONAL UNIVERSITY
   95   96   97   98   99   100   101   102   103   104   105