Essays on Network Security

Network security involves initiating hardware and software protective measures that prevent networks from unauthorized access, destruction, modification, leakages or misuse by ensuring the continued integrity of network systems and data within. This is achieved through integrated layers of defense that are put out on the network to detect and prevent potential threats from accessing network resources. Each network security layer acts to implement different policies and controls that act as a sieve just allowing authorized personnel and software to access the network. A security policy is made up of objectives that lay down the rules for users and administrators ...

I. Physical Network Design

Introduction

A. Network Topology Business Needs In order to complete the needed full-time assignment efficiently and effectively, the University of Maryland University College will need a system in addition to tools to help the student attain their objectives. This entails new office space, a library, classrooms and computer labs will be able to achieve this capacity and optimize student learning potential

Proposed Topology

In order to plan for the facility of the network, I am proposing a star network topology for the facilities networking. This kind of network infrastructure is considered expensive due to numerous network devices that ...

Vulnerability Assessments

There are various vulnerabilities and network security loopholes present within the organization’s network; Peer to Peer network, Netgear MR814 router, the type of cable modem used by the organization (Motorola SB3100), and Microsoft Outlook and web applications. These network security vulnerabilities present different security loopholes that can be exploited by malicious attackers to gain access to the organization's network and cause a series of unwanted effects [2]. The organization employs the use of a network topology that can be easily compromised by malicious attackers. The current peer to peer network configuration of the organization’s system presents a ...

I. Vulnerability Assessments A wireless connection in the 20-people organization has the same vulnerabilities that other wireless network. A wireless network has the characteristic that virtually anyone inside the radius of the wireless network could have access to the network, have unauthorized access and create problems with the information flow. The information technicians of the company must consider the following risks and vulnerabilities of the network: Default Keys: They are the passwords that manufacturer brings into the router by default. Several administrators and final users forget to change the default password creating a risk for the organization. The NETGEAR ...

IT331 Week 10

Gifts of Fortune Enterprises currently has a network comprising of five desktop computers, a single laptop, dot matrix printer and one laser printer that is connected to Kyle’s assistant’s computer. It is notable that only two computers are directly connected to the internet for the entire company. The only switch available has eight ports that can only support eight devices. The company depends on the two computers for network research and one computer for printing purposes. The warehouse employees are not able to communicate to main office employees through the internet since their machines are not the ...

Write Out 2 Discussion Board

Write Out 2 Discussion Board

Introduction

In essence, threat modeling refers to the process through which a network security is optimized by identifying goals and vulnerabilities to the system. Furthermore, the procedure entails defining the countermeasures to mitigate and prevent the implications of the threats to a particular system. Notably, this essay presents a summary of the threat modeling approach for a fortune 1000 company located in San Diego. Also, the paper provides a description of the key terms, which include threats, vulnerabilities, and risks. The relationship between the terms and how they apply to the security plan is elaborated ...

Abstract

The report below provides a comprehensive analysis of Global Finance Inc.’s (GFI) network. It provides an overall description of the network based on the network diagram provided. The report also conducts a risk assessment on the network. The main purpose of the risk assessment is to discuss the risks resulting from the network design and configuration. In total, the assessment identified four apparent risks and the report provides proper mitigation techniques for the organization. The main purpose of the mitigation techniques is to improve network security and reduce financial losses resulting from network downtimes. The report also discusses ...

Source: InfoSec Institute Web article, January 2016

Summary: This article was about Information security governance and Risk Management in CISSP domain. In the article some basic guiding principles for the security are highlighted, the security's fundamental principles revolve around the CIA i.e. confidentiality, integrity and availability. Confidentiality confirms that the data is confidential through personal identifying information, integrity ensures the accuracy of the data and it is not modified by anyone else and finally availability ensures that whenever the data is needed, it is available i.e. no DOS attacks or any other attacks stops the access of the data. The risk management talks about the analysis ...

Part 1

One of the technologies that will have a great impact on telecommunications and networking security is quantum cryptography technologies. The quantum cryptography technology has been utilized in several ways in a bid to increase network security (Vazirani & Vidick 2014). For example, the Quantum Key Distribution is quite effective in increasing security during communication between two parties. QKD prevents eavesdropping by allowing sharing of a randomly-generated security key and detecting any third parties that may try to gain access to the communication network. Quantum cryptography has been used to detect Trojan horse-based attacks and blinding attacks. The technology has great ...

Introduction

Networks and computer systems are imperative to establishments in the present age. They have managed to simplify sending and receiving of information and colossal data processing over very short time periods. However, they are always facing threats and attacks from hackers. Dangers to the computing environment, network, and the database comes from everywhere. In such a high stake facility, it is critical to ensure that the main threats are identified and mitigated. The major threats can come from three areas: the physical installation, the users, and malicious attacks. The five top threats to the new network will be the ...

Information Security Governance and Risk Management

This is the foundational domain for professional information security work (Walsh). It provides standards and policies for monitoring information security programs. The domain ensures data quality necessary to support an organization’s objectives. This is critical especially to sensitive and critical information that an organization uses. Risk management is the identification and prioritization of all risks to confidentiality. The most important step in the domain is risk analysis. This involves identification of threats and vulnerabilities on applications and systems. The last phase in the domain is the implementation of the most appropriate and cost-effective security measures and controls to ...

Question 1

Encryption defines the process involved in encoding information such that only the authorized person or computer, with a key, can decode it. This process is based on cryptography, the all-important tool for protecting information on computers and computer systems. Encryption has been used to protect information since time immemorial, being used by the Greek that created ciphers which are codes involving transpositions or substitution of letters and numbers. One of the most common ciphers is Caesar’s cipher who shifted each alphabetical letter to the right or left by a few positions, and the Polybius square, just to mention ...

Intrusion Detection Systems

Different techniques abound for monitoring computer networks especially within the context of providing security for the network. Intrusion detection is one of such techniques used for security management of computers by analyzing and gathering information from the different areas of a computer network with the aim of identifying possible breaches in the security of the network (Allen et al., 2000). A system put in place to implement any of these techniques is referred to as an intrusion detection system. For the computer network of an organization, the source of breaches to the network can be from within the organization ...

MANAGEMENT OF CISCO INTERNETWORK

Introduction With the advancement in modern technology in the area of microelectronics and computing there is the attendant need to share information, making information and communication the hallmark of the digital age. This development has necessitated the need to interconnect various networked electronic devices in a manner that would permit exchange of information and sharing other resources. These networked devices are mainly computers and other similar technological gadgets that make information processing possible. At the heart of this need is Cisco Systems which designs technologies and manufactures devices that enable the interconnection of networked devices for the purpose of ...

Description of the Proposed Technology Solution

The technology solution to be implemented by Catacombs will be key in the improvement of service delivery and the reduction of cost for the company. The technology solution is composed of two data centers and several links for redundancy purposes. It will also have two perimeter networks that will connect to corporate WAN and internet simultaneously for redundancy. The internet connects to EDI system and web application system through VPN. The corporate IP WAN network will connect directly to IP phones, Wi-Fi devices and Video conferencing facilities. The solution will also have two WAN aggregation routers connected to the ...

Abstract:

The modern world is an interconnected world. Electronic devices have been connected with each other, which allow sharing of data. Underlying the interconnected world are numerous networks of computers that together make up the internet. However, the rise of the internet has also brought about serious security risks. Using these connections, data can be transmitted to any device on the network. This means that people have numerous opportunities to intercept communication or initiate their own communications. This makes it easy to send malicious software that can be used to steal data or corrupt computer systems. In order to prevent ...

The objective of this paper was to carry out a comprehensive assessment of the possible security vulnerabilities that an organization’s computer and network operating systems may have; and also to provide appropriate techniques in order to boost protection based on the findings of the said assessment. The organization, whose computer and network operating system framework would be focused on, that was chosen is Target, operator of one of the largest network of malls in the United States’ retail industry. What makes this computer and network operating system security case analysis significant is that any form of risk involving ...

Action Plan and Contingency Plan

Action Plan The action plan for Apple, Incorporated is to diversity its product mix as well as increase customer loyalty and expand its share in the mobile market. in the mobile market. The objective for the action plan will focus on 2 items: a) To expand sales to persons who do not own Apple's products and b) To develop and produce a new product or products which can help it to diversify its product mix. The strategy for this plan will include expansion of the company's marketing and distribution network to reach more consumers in unsaturated markets. Second, the ...

Question 2.1 (50 points):

The forms of non-repudiation (non-repudiation of sender, non-repudiation of receipt and non-repudiation of actions) discussed in this week module are important to achieving information security since they offer a method through which the subject cannot deny performing a specific action. This is achieved through the assignment of a unique digital signatures to messages and actions that help in clearly identifying the sender, recipient, as well as, actions carried out. The forms of non-repudiation improve system security since they can help in tracing the sender and receiver. In the case of non-repudiation of sender, the sender of a message is ...

Abstract

In this paper, the author identifies at least three security-related threats and various recommendations how they can be addressed. So far, there were three man security threats that were identified. The first one was the outdated-ness of GFI’s front end system. The recommendation for this was for GFI to invest more in the creation of a team that would develop a dynamic, high quality, and more secure front end system, one that is suited to today’s speed and design standards. The second risk was the presumed use of a common cryptographic passphrase for all of its departments. ...

Possible infrastructure vulnerabilities:

A computer network is made up of two or more electronic media that are able to communicate with each other through a predetermined way. Computer networks are very important to the world at present. Network vulnerabilities can be described as any security exposure that exposes the network to undesirable activity or unauthorized access. Network vulnerability has the possibility to lead to unauthorized access to information and resources of the network, altering the activities of the networks and even to the total denial of the network (EC-Council Press, 2011). Network vulnerabilities can be categorized into two main categories; application or ...

Question 1

Network file system (NFS) was originally developed in 1984 by Sun microsystems. It is a distributed file system that allows a client to view, store or update file on the server remotely. It employs the open network computing remote procedure technology in implementing the desired functions. It can thus be used by anyone connected to the network to effect the changes that are desired in the network (KITAMURA, 2012). The NFS system enables the administrator to stage portions of the file system on the server. The file mounted can be accessed by the clients depending on the privileges accorded ...

Network Security.

Network security is primarily the protection of data, files, and directories in a computer from unauthorized access. As a corporate network administrator, it is paramount to secure such records and foster client confidentiality. Any security breach/ attack affects the confidentiality and the integrity of the system. There are various types of network attacks which affect different organizations. A close-in attack is one of the most common types of attack. It is whereby a person tries to get a close physical contact with the network and is, therefore, able to access such data with an aim of modifying, gathering or ...

Technology

Introduction Anonymous hacker group gained popularity when it hacked the Church of Scientology website in 2008. The group is a structure-less organization that was created to be used by people of all genders, races, ages, nationalities, and religion, to popularize their cause. Since there is no formal membership, the group members communicate via chat rooms on the web or through previous connections2. The group’s symbol is the Guy-Fawkes mask that its supporters worldwide wear at rallies to hide their identities. The group does not have any particular goals, and its only guideline is anti-oppression and is seen to ...

Introduction

The companies are progressively moving towards the use of technology for their business. This move helped them to grow their business by decreasing the functional cost along with improved customer service. In addition to it, this step also puts them on the risks related to their data and network security. This document will provide the complete analysis of vulnerabilities present in the network and the policies that should be implemented to reduce the network security threats.

Vulnerability Assessments

The firm is currently not following the standards and policies vital to secure the data and network. The firm is using the NETGEAR ...

ABSTRACT

This research paper is based on cyber-terrorism. Cyber-terrorism is committed by terrorists who perform acts of violence to influence the behavior of those who have different opinions from their own, with the use of computer based systems. The US government has been targeted by various terrorist groups though cyber-attacks. The nature of organizations which employ the use of Data-Controlled Systems enables such threats to have a great impact on organizations. Cyber threats in organizations arise from processes, staff and infrastructure. There is the need for organizations to come up with preventive measures and response systems to cyber-attacks. Inventory management, ...

Cloud Security Solutions

Private and public cloud solutions have been gaining much popularity however there are security issues that have gained a higher priority. Cloud security is a vital part of CIA (Confidentiality, Integrity, and Availability) triad for data security. The cloud functionality in itself is robust and well-paying for customers; however operational security is a concern that is being addressed by vendors. The adaptation of cloud technology has been rapid and fast paced. Cloud security issues over the cloud environment have hindered the growth of cloud industry resulting in a far lesser growth as was expected of the new technology (Donovan).

Emergence of Cloud Security Standards

...

Abstract

This research is based on the requirements of an individual interested in the Information Security as stipulated by the International Information Systems Security Certification Consortium, (ISC)2.

The requirements focus on major domains to be covered by completion of the certification. In this text, certifications discussed include; Certified information Systems Security Professional CISSP, Systems Security Certified Practitioner SSCP, Information Systems Security Architecture Professional ISSAP, Information Systems Security Engineering Professional ISSEP, and GIAC Security Essentials Certification GSEC.

In summation, this research is essential for both professionals and non-professionals interested in Information Security.

Introduction

Information security is the process of ...

Introduction

Security management is a wide subject of management associated to assets control, human resources, as well as physical securities safety operations. It comprises the marking of a company’s data assets and the documentation, growth, and execution of regulations, steps, standards, and outlines. In network control, it refers to the set of operations, which protects systems and telecommunications links from illegal access by individuals, organizations, acts, or effects and they entail a number of sub functions like developing, controlling, and deleting security services and approaches. This also involves allocating security-significant data, presenting essential incidents, managing the allocation of main items and authorizing ...