Network Security in Computer Networks

Every user of the network has access to an infinite number of possibilities and opportunities, in addition to the network's convenience. However, this comfort and all of its boundless advantages are not devoid of dangers, as there are numerous threats to the integrity of the network.

As part of the process of ensuring the security of a network, one of the primary concerns is making certain that only legitimate users and programs are granted access to information resources like databases.

Additionally, certain controls are implemented to ensure that users who have successfully authenticated themselves are only able to access the resources that they are authorized to access.

Mechanisms such as authorization, authentication, encrypted smart cards, biometrics, firewalls, and other similar technologies are implemented under this type of security.

The following list provides a concise summary of the challenges faced in terms of network security:

  • Physical security holes: when unauthorized users gain physical access to a computer and then mess with the stored data on the device. Hackers accomplish this by attempting to guess the passwords used by a variety of users, after which they gain access to the network's systems.
  • Software security holes: when poorly written programs or highly privileged software are tricked into performing actions that they should not be performing due to a security breach.
  • Inconsistent Usage holes: when a system administrator puts together a configuration of hardware and software in such a way that the system has significant vulnerabilities from a safeguarding standpoint, this is called a "breach."

Methods of Network Security Protection

To counter or reduce network security threats, many protection methods are used. Here are some popular network security safeguards:

Let's take a quick look at all of the network security protection methods mentioned above. Following our discussion of these methods, we will go over some of the most commonly used terms, laws, and concepts in network security.

Authorization

The requestor is subjected to authorization checks to determine whether or not the service provider has granted them access to the web service.

To put it simply, authorization verifies the requester's credentials before the service is granted. This checks to see if the user who requested the service is authorized to carry out the operation, which could be anything from calling up the web service to carrying out a specific portion of the functionality that it provides.

To accomplish authorization, it is necessary to query the user for a valid login ID. When a user is able to provide a legitimate login ID, that user is regarded as an authorized user.

Authentication

Authentication verifies the identity of each party involved in the use of a web service, including the requestor, the provider, and the broker (if there is one). Authentication verifies that each party is who or what it says it is.

Accepting credentials from the entity to be authenticated and then validating those credentials against an authority are both required steps in the authentication process.

Authentication is also known as password protection because the authorized user is asked to provide a valid password, and if he or she is able to do this, then they are considered to be an authentic user. If the authorized user is unable to provide a valid password, then they are not considered to be an authentic user.

Encrypted Smart Cards

Passwords in a remote login session typically travel over the network unencrypted, allowing any hacker or cracker to simply record them and use them maliciously later to corrupt data or files, harm anyone, and so on. To counter such threats, newer approaches, such as encrypted smart cards, are proposed.

An encrypted smart card is a portable smart card that can generate a token that can be recognized by a computer system. Every time, a new and unique token is generated, which cannot be cracked or hacked later.

Biometric Systems

The most secure level of authorization is provided by biometric systems.

To establish a person's identity, biometric systems use some unique aspect of his or her body, such as fingerprints, retinal patterns, and so on.

Firewall

A system that is built with the purpose of preventing unauthorized access to or from a private network is known as a firewall.

Both hardware and software, or a combination of the two, can be used to create a firewall for an organization. Intranets and other types of private networks that are connected to the internet frequently make use of firewalls as a security measure to prevent unauthorized users from accessing the private networks.

Every message that enters, leaves, or is transferred between the intranet and the outside world must first pass through the firewall. The firewall analyses each message and blocks any that do not comply with the established standards for data security.

When it comes to the safeguarding of sensitive data, a firewall is typically considered to be the initial line of defense. Encryption of data provides an additional layer of protection.

Types of Firewall Techniques

The following is a list of the many different types of firewall techniques, along with a brief description of each one. In order to grab your attention, I formatted the firewall technique in bold.

  • Packet filter is a type of network security that examines each data packet that enters or leaves a network and decides whether or not to accept or reject it based on user-defined criteria. Even though it is difficult to configure, packet filtering is relatively effective and is not noticeable to users. In addition to that, it is vulnerable to the practice of IP spoofing.
  • An application gateway is a type of network security appliance that applies security mechanisms to individual applications, such as FTP and Telnet servers. This is a very effective strategy; however, it may have a detrimental effect on performance.
  • When a connection is made, a circuit-level gateway activates various security mechanisms so that data can be transmitted safely. Once the connection has been established, there is no need for additional checking before packets can pass between the hosts.
  • The proxy server is responsible for intercepting all messages entering and exiting the network. The proxy server, when used properly, can conceal the authentic network addresses.

Well-known Network Security Terminology

When discussing topics related to the internet and network security, the following is a list of some terminology that most frequently comes to mind. These are not the terms used to implement network security measures. However, in order to protect the network, you must be aware of these terms. The previous section has already covered the commonly used terms for network security measures.

Hackers

Hackers are more interested in learning about computer systems so that they can possibly use this knowledge to play pranks on other people. The term "hacker" generally refers to individuals who gain unauthorized access to computer systems for the purpose of stealing data or corrupting it in order to use it for their own benefit.

A hacker is a slang term for a computer enthusiast, which is a person who enjoys learning programming languages such as Java, C, C++, Python, etc. and computer systems and who is frequently considered an expert on the subject. Another definition of a computer enthusiast is a person who enjoys breaking into computer systems.

Cyberlaw

It is commonly held that the Internet is a lawless place, so the idea of implementing a legal and regulatory framework within it seems absurd. On the other hand, the laws and regulations that apply to cyberspace are codified in a body of law that is referred to as cyberlaw.

The scope of cyberlaw includes everything that is concerned with, related to, or emanating from any legal aspects or issues concerning any activity of netizens and others in cyberspace.

CyberCrimes

Cybercrime refers to crimes committed with or relating to computers, particularly those committed via the Internet.

Cybercrime is broadly defined as any illegal act in which a computer serves as either a tool, a target, or both.

Cybercrime differs from traditional crime in that it is committed via electronic means.

The following are examples of computer (computer network) activities that are considered cybercrime.

  • Tempering with computer-source documents
  • Hacking
  • Publishing information that is obscene in electronic form
  • Accessing protected systems
  • Breach of confidentiality and privacy

Intellectual Property Rights (IPR)

Copyrighted property, such as literary or artistic works, as well as ideational property are both examples of types of intellectual property. Intellectual property can be defined as a product of the intellect that has commercial value.

It is possible to own, bequeath, sell, or buy intellectual property (IP), which is a form of property that is protected by law just like any other type of property. IP can also be a matter of trade, which means that it can be owned by someone. It is intangible, and its supply cannot be depleted through use, and these are the primary characteristics that set it apart from other forms.

The term "intellectual property rights" (IPR) refers to the legal rights that arise as a consequence of intellectual activity in a variety of fields, including industry, science, literature, and the arts. Creators have moral and economic rights in their works, and these rights give those rights statutory expression in the form of legal protections.

The protection of intellectual property not only encourages innovation, but also the dissemination and application of that innovation's results, as well as fair trade, which in turn contributes to the growth of both the economy and society.

Cookies

Cookies are small text files that a web server sends to a user's web browser so that the server can keep a record of the user's actions while the user is browsing a website.

Cookies do not have any harmful effects on the systems they are stored on. They are not plug-ins or programs; rather, they are simple text files that can be removed at any time.

Cookies are not capable of transmitting viruses, nor can they access the data stored on your hard drive. This does not imply that cookies have no bearing on a user's ability to maintain his or her privacy and anonymity while using the internet.

Only information that you voluntarily submit to a website will be stored in the cookie that is created by that site.

Computer Networking Quiz


« Previous Topic CodesCracker.com »

Follow/Like Us on Facebook




Subscribe Us on YouTube