Types of attacks -Network security

-

Types of attacks

Passive
- Difficult to detect, because the attacker isn’t actively sending traffic (malicious or otherwise).
- Just install the virus and let the virus work by own.

Active
- Easier to detect because the attacker is actively sending traffic that can be detected.

Close-in
- It occurs when the attacker is in close physical proximity with the target system.

Insider
- Legitimate network users leverage their credentials and knowledge of the network in a malicious fashion.

Distribution
Intentionally introduce “back doors” to hardware or software systems at the point or manufacture.

How to prevent that attack

Attack class
Primary layer of defense
Secondary layer of defense
Passive
Encryption
Application with integrated security
Active
Firewall at the network edge
Host intrusion prevention system(HIPS)
Insider
Protecting against unauthorized physical access
Authentication
Close-in
Protecting against unauthorized access
Video monitoring systems
Distribution
Secured software distribution system
Real- time software integrity checking



Steps to protect your network

1. Implement
- Create and implement a network security system that provides protection and has sufficient authorization policies.

2. Analyze
- The system need to be analyzed to determine if the current security system is appropriate for the network it is protecting.

3. Test
- conduct test to make sure all of the securities are working and will completely protect your network against any threats.

4. Modify
- collect the data and enhance your protections. The results will reveal where your security system is effective where it can be improved.

Comments

Post a Comment

Popular posts from this blog

Log Review

-
Image
Describe the test and purpose of the test Log analysis is the term used for analysis of computer-generated records for helping organizations, businesses or networks in proactively and reactively mitigating different risks.  Log analysis helps in reducing problem diagnosis, resolution time and in effective management of applications and infrastructure. Checking all the log to find if there ordinary problem Discuss how it works Logs are usually created by network devices, applications, operating systems, and programmable or smart devices. They comprise of several messages that are chronologically arranged and stored on a disk, in files, or in an application like a log collector. Provide example Discuss the solution of there is vulnerability after a test If there is 
Read more

Organizational security types

-
1.        Business Continuance -           Business have come to recognize that some services of the organization have to be delivered continuously without interruption -           Create an IT Business Continuity plan( Backup business Plan) -           Focus on getting the network and systems up and running as quickly as possible. Business continuity and disaster recovery planning -           Management leadership, goals and requirements, business impact analysis, team building and implementation Backup alternatives -           Hardware and software approaches, electronic vaulting Recovery and testing -           Strategies for executing recovery, carrying out drills and types of plan testing Emergency Response -           Preserving assets and life, reducing fraud, theft and vandalism 2.        Backup / Restoration of Data -           When we think of backup, we generally think of secure, offsite tape storage that will be available should we accide
Read more

Network planning - Proof of concept

-
How to design a secured network (methods, the steps) The different types of network security design that will aid good network security 1. Identify the assets such as hardware, software, employee 2. Identify the budget of the company 3. Analyze security risk with the solution (virus- install anti virus) 4. Analyze security requirements 5. List down all the software that can be installed in the network 6. List all the asset (Security hardware for example VPN, firewall, antivirus, DMZ) 7. Identify the secure connection (cable or wire) 8. Design or sketch a network 9. Ask other colleague or approval by the organization or the client An organizations need to update their system frequently, because hackers are discovering new flaws in security network and coming out with new methods to gains access to unauthorized networks. 1.     Network access control -        It is for controlling which users can access you network -        Identifying which users and devices a
Read more