• Home

  • Law

  • Software and network security
5
Software and Network security Call Back: Call back is a dial up system where users can access a network remotely, this AIDS security as you have to be authenticated so only trusted people can access the network. A used would call the system and enter their username and password. The system would then hang up on the user and call them back at a preconfigured number. This means that the user can’t access the network from anywhere. The use of dial up systems using modems seems outdated but is one of the most secure ways of hiding data. This helps to ensure security because you can only access the data from certain trusted areas. This makes sure you are who you are and you’re in a secure area. Hand Shaking For communication to take place between two different devices a protocol needs to be in place. Both of the devices need to be using the same type of protocol so be able to communicate with each other. Handshaking is a process that continuously agrees a method of data communication. Challenge Handshake authentication protocol is one type of a communication protocol. After a device has connected to a server a challenge is sent to the device and the device uses a hash to generate a specific value and this is sent back to the server to make sure the device is what it is. This helps to ensure security because if the devices is pretending to be someone else than the connection can be terminated and no communication can take place. Diskless networks

Software and network security

Embed Size (px)

Citation preview

Page 1: Software and network security

Software and Network security

Call Back:

Call back is a dial up system where users can access a network remotely, this AIDS security as you have to be authenticated so only trusted people can access the network. A used would call the system and enter their username and password. The system would then hang up on the user and call them back at a preconfigured number. This means that the user can’t access the network from anywhere. The use of dial up systems using modems seems outdated but is one of the most secure ways of hiding data. This helps to ensure security because you can only access the data from certain trusted areas. This makes sure you are who you are and you’re in a secure area.

Hand Shaking

For communication to take place between two different devices a protocol needs to be in place. Both of the devices need to be using the same type of protocol so be able to communicate with each other. Handshaking is a process that continuously agrees a method of data communication. Challenge Handshake authentication protocol is one type of a communication protocol. After a device has connected to a server a challenge is sent to the device and the device uses a hash to generate a specific value and this is sent back to the server to make sure the device is what it is. This helps to ensure security because if the devices is pretending to be someone else than the connection can be terminated and no communication can take place.

Diskless networks

It’s easy to transfer data from one device to another and this is the biggest risk to data being stolen. Devices in a diskless network do not have a cd/dvd drives, usb ports or floppy disk ports. This prevent data from being added or removed. The network will also use a cloud network where the system will use a virtual machine to create a diskless network. This ensure security because no data can be took off or added to the network keeping all this data on the one network.

Page 2: Software and network security

Use of backups

Backups are used to restore data or remove damage that has happened to the computer. A backup will load all data from a previous point in time. This will remove anything that has happened after that point in time. Some major organisation back up every 8 hours encase of any major attacks or failures. Raid allows data to be recovered from duplicated hard drives while mirroring server to operate at the same time as the primary server. This ensures security because if anything is severely damaged then it can be all brought back.

Audit logs

An audit log (also sometimes called an audit trail) is a chronological record of security-relevant data that documents the sequence of activities affecting an operation, procedure, event, file or document.Audit logs are used to keep a record of network and database activity. Whenever a computer has been logged in, what sites have been on and what programs you have been on are all recorded where and when they happened. This log contains a simple reference to the service accessed along with the identity of the user. The purpose of audit lots are to keep a detailed record of how systems has been used, this includes what programs have been accessed, internet history and access to other databases. This helps to ensure security as audit logs

Virtual private network

A virtual network provides a complete copy of a whole network that cannot have any consequences on the original machine and network. This is basically a set of computer than connect to each other over the internet. A VPN allows people to connect to a remote company network remotely in a way similar to connecting to your own computer but it allows you to work from home and access all your company work. A VPN uses an encryption on data that is being sent. This data is sent through a tunnel which prevents data entering that is not fully encrypted this helps to ensure security as nothing can leave the VPN that is opened in it.

http://www.securedocs.com/features/audit-logs
Page 3: Software and network security

Intrusion detection system

Intrusion detection systems work with the firewall and the monitor traffic to alert anyone of people entering the system. IDS are passive which means they will record any attempts for the admin so they can decide what to do. A fire wall is the first line of defence but the IDS don’t know stop all attacks. This helps to ensure security as you will know whenever anyone is trying to attack so you know how to stop them. An IDS looks for security policy violations, Trojans, information leakage such as key loggers, configuration errors and unauthorized.

Software updating

You have to constantly make sure that your software is up to date as it can be to block from any new types of attacks. Operating systems such as windows uses updating security and updating OS systems. Linux also uses a similar tool. This helps to ensure security as the updates deal with any weakness in the software and security that may allow hackers, viruses and other attacks into the network. You should still have anti-virus and malware protection, but you’ll pick up fewer problems to start with when you have the most updated operating system regardless going to an unauthorised site and prevent you from downloading harmful files.

Levels of access to data

All networks and servers have functions that allow certain account to have certain control over files. These levels are:

Read – this allows the user to see the data

Write – this allows the user to change or edit the information

Execute this allows the user to create new files, folder and data

It is important that levels of access are monitored and users that no longer need access don’t have it anymore. This helps to ensure security as people cannot access data that they are not supposed to.

Virus checking software

These scan a systems to locate and deal with any malware that may have entered a systems. Virus definitions are store in a data base and software scans files, compares with the data stored in the definitions database to

Page 4: Software and network security

locate the malware. Updates should be set up to automatically update the definitions database regularly as a minimum this should be done on a daily basis. This helps to ensure security as it will keep anti-virus software up-to-date as viruses are constantly evolving so a system will have to evolve with them.

Firewall configuration

In commercial situations it is essential to have a firewall installed on your systems. This is to ensure that no external threats can attack the computer and infect all the systems. A fire wall could also stop people going onto website that they are not supposed to. Windows even comes with a free built-in firewall, and has since Windows XP. Network administrators and private user benefit from using firewalls. It helps them keep away unauthorized users and stop the activity of any malware that might attempt to retrieve date from a local PC or network and send it to a third party. This helps to ensure security as nothing can get onto the system without the firewall detecting it.


OsmocomBB - A Free Software GSM baseband · PDF fileGSM/3G Network Security Introduction ... Huawei Exception: Small ... Harald Welte OsmocomBB. GSM/3G Network Security Introduction

OsmocomBB - A Free Software GSM baseband · PDF fileGSM/3G Network Security Introduction ... Huawei Exception: Small ... Harald Welte OsmocomBB. GSM/3G Network Security Introduction

Documents
Beyond Firewalls: The Future Of Network Security · light bulb Kill illegitimate tunnel Software Defined Secure Network (SDSN) Policy Engine + Orchestrator. Juniper’s Security Vision

Beyond Firewalls: The Future Of Network Security · light bulb Kill illegitimate tunnel Software Defined Secure Network (SDSN) Policy Engine + Orchestrator. Juniper’s Security Vision

Documents
Security+ Guide to Network Security Fundamentals, Third ... · PDF fileSecurity+ Guide to Network Security Fundamentals, Third Edition Software-Based Attacks •Malicious software,

Security+ Guide to Network Security Fundamentals, Third ... · PDF fileSecurity+ Guide to Network Security Fundamentals, Third Edition Software-Based Attacks •Malicious software,

Documents
Trustwave Network Access Control (NAC) Software Version 3 ... · Trustwave Network Access Control (NAC) Software Version 3.4.0 Security Target. This Security Target (ST) defines a

Trustwave Network Access Control (NAC) Software Version 3 ... · Trustwave Network Access Control (NAC) Software Version 3.4.0 Security Target. This Security Target (ST) defines a

Documents
Fog Node Security - TMCnet · 9. Insecure Software/Firmware 10. Poor Physical Security Protect Data Protect Network Protect Software/Firmware Protect Device OWASP* top 10 security

Fog Node Security - TMCnet · 9. Insecure Software/Firmware 10. Poor Physical Security Protect Data Protect Network Protect Software/Firmware Protect Device OWASP* top 10 security

Documents
Perceptions about Network Security - Juniper Networks · PDF filePerceptions about Network Security Ponemon Institute, June 2011 ... malicious software download and 43 percent say

Perceptions about Network Security - Juniper Networks · PDF filePerceptions about Network Security Ponemon Institute, June 2011 ... malicious software download and 43 percent say

Documents
Security Threats and Security Software - breenoconnor.com · network security flaws ... Software Anti-Virus Anti-Malware/Anti-Spyware ... Common antivirus software Microsoft Security

Security Threats and Security Software - breenoconnor.com · network security flaws ... Software Anti-Virus Anti-Malware/Anti-Spyware ... Common antivirus software Microsoft Security

Documents
Security Analysis of a Software Defined Wide Area Network ...kth.diva-portal.org/smash/get/diva2:952048/FULLTEXT01.pdf · Security Analysis of a Software Defined Wide Area Network

Security Analysis of a Software Defined Wide Area Network ...kth.diva-portal.org/smash/get/diva2:952048/FULLTEXT01.pdf · Security Analysis of a Software Defined Wide Area Network

Documents
Genetec Security Center / Network Manager Integration · Genetec Security Center / Network Manager Integration Sensor Management in Genetec Security Center The NMS-GSC software provides

Genetec Security Center / Network Manager Integration · Genetec Security Center / Network Manager Integration Sensor Management in Genetec Security Center The NMS-GSC software provides

Documents
The Evolution of Network Security to Software-Defined Networks · Network Slicing provides service resiliency Data Driven Security Platform Tenant micro perimeters & analytics Mobility

The Evolution of Network Security to Software-Defined Networks · Network Slicing provides service resiliency Data Driven Security Platform Tenant micro perimeters & analytics Mobility

Documents
Collaborative Network Security in Multi-Tenant Data …caoj/pub/doc/jcao_j_netsec.pdf · Keywords: data center network, network security, software defined network, collaborative network

Collaborative Network Security in Multi-Tenant Data …caoj/pub/doc/jcao_j_netsec.pdf · Keywords: data center network, network security, software defined network, collaborative network

Documents
Software Define Network, a new security paradigm ?

Software Define Network, a new security paradigm ?

Technology
Software and Web Security deel 2 · Software and Web Security -1 & 2 Software is the main source of security vulnerabilities esp it ibli tkin systems accessible via a network •

Software and Web Security deel 2 · Software and Web Security -1 & 2 Software is the main source of security vulnerabilities esp it ibli tkin systems accessible via a network •

Documents
Getting Started Guide - Web, Email and Network Security Software

Getting Started Guide - Web, Email and Network Security Software

Documents
Yuji Ukai, Senior Software Engineer Ryan Permeh, Founding Software Engineer Ryoji Kanai, Software Engineer Retina Network Security Scanner Development

Yuji Ukai, Senior Software Engineer Ryan Permeh, Founding Software Engineer Ryoji Kanai, Software Engineer Retina Network Security Scanner Development

Documents
AN OVERVIEW OF SAUCE LABS SECURITY … the Sauce Labs Automated Testing Platform. ... Software Security ... Network Security Through custom network configurations,

AN OVERVIEW OF SAUCE LABS SECURITY … the Sauce Labs Automated Testing Platform. ... Software Security ... Network Security Through custom network configurations,

Documents
Security Analysis of a Software Defined Wide Area Network ... · Security Analysis of a Software De ned Wide Area Network Solution Master’s Thesis Espoo, July 13, 2016 ... protocol

Security Analysis of a Software Defined Wide Area Network ... · Security Analysis of a Software De ned Wide Area Network Solution Master’s Thesis Espoo, July 13, 2016 ... protocol

Documents
TENABLE NETWORK SECURITY, INC. MASTER SOFTWARE … › das › Procurement › Documents › ... · 8/5/2015  · TENABLE NETWORK SECURITY, INC. MASTER SOFTWARE LICENSE AND SERVICES

TENABLE NETWORK SECURITY, INC. MASTER SOFTWARE … › das › Procurement › Documents › ... · 8/5/2015  · TENABLE NETWORK SECURITY, INC. MASTER SOFTWARE LICENSE AND SERVICES

Documents
COMODO SECURITY SOFTWARE AND REMOTE … · COMODO SECURITY SOFTWARE AND ... the Products are only installed and used in accordance with your network security ... CIS includes the

COMODO SECURITY SOFTWARE AND REMOTE … · COMODO SECURITY SOFTWARE AND ... the Products are only installed and used in accordance with your network security ... CIS includes the

Documents
Software Review and Security Analysis of Scytl Remote ...yasinsac/Evoting/ODBPFinalReportSept2008.pdfSoftware Review and Security Analysis of Scytl Remote Voting Software ... network

Software Review and Security Analysis of Scytl Remote ...yasinsac/Evoting/ODBPFinalReportSept2008.pdfSoftware Review and Security Analysis of Scytl Remote Voting Software ... network

Documents
Industrial network management software designed …1 info@moxa.com Industrial Network Security and Management Moxa’s MXview network management software is designed for configuring,

Industrial network management software designed …1 [email protected] Industrial Network Security and Management Moxa’s MXview network management software is designed for configuring,

Documents
Detection v2 Malicious Process TENABLE NETWORK SECURITY…static.tenable.com/oldsite/blog/files/report---malicious-process... · Tenable Network Security 2 Malicious Software Detection

Detection v2 Malicious Process TENABLE NETWORK SECURITY…static.tenable.com/oldsite/blog/files/report---malicious-process... · Tenable Network Security 2 Malicious Software Detection

Documents
APPLYING GAME UX TO NETWORK SECURITY SOFTWARE€¦ · APPLYING GAME UX TO NETWORK SECURITY SOFTWARE . A Major Qualifying Project Report: ... This project describes the design and

APPLYING GAME UX TO NETWORK SECURITY SOFTWARE€¦ · APPLYING GAME UX TO NETWORK SECURITY SOFTWARE . A Major Qualifying Project Report: ... This project describes the design and

Documents
Enhancing Network Security through Software …faculty.cs.tamu.edu/guofei/paper/SDNSok-ICCCN16.pdfEnhancing Network Security through Software Defined Networking (SDN) Seungwon Shin

Enhancing Network Security through Software …faculty.cs.tamu.edu/guofei/paper/SDNSok-ICCCN16.pdfEnhancing Network Security through Software Defined Networking (SDN) Seungwon Shin

Documents
A collaborative approach to creating networks of the future · Network Function Software Network Orchestration Software Cyber Security NFV/SDN & Optical Platforms Network Reference

A collaborative approach to creating networks of the future · Network Function Software Network Orchestration Software Cyber Security NFV/SDN & Optical Platforms Network Reference

Documents
Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW

Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW

Documents
AIT 681 Secure Software Engineering · Software Security Problems •Defects: implementation and design ... software correct –Sandboxing –Network-centric approach –Focus on

AIT 681 Secure Software Engineering · Software Security Problems •Defects: implementation and design ... software correct –Sandboxing –Network-centric approach –Focus on

Documents
Network Security through Software Defined Networking: a ......Network Security through Software De ned Networking: a Survey J er^ome Fran˘cois, Lautaro Dolberg, Olivier Festor, Thomas

Network Security through Software Defined Networking: a ......Network Security through Software De ned Networking: a Survey J er^ome Fran˘cois, Lautaro Dolberg, Olivier Festor, Thomas

Documents
Industrial network management software designed for ... · Industrial Network Security and Management 1 Moxa’s MXview network management software is designed for configuring, monitoring,

Industrial network management software designed for ... · Industrial Network Security and Management 1 Moxa’s MXview network management software is designed for configuring, monitoring,

Documents
Network Insecurity Network Security...•ARP spoofing detection software - AntiArp (Win), ArpStar (Linux) 12 CMSC 426 - Network Security Intro - SP2018 - April 17, 2018 Internet Layer

Network Insecurity Network Security...•ARP spoofing detection software - AntiArp (Win), ArpStar (Linux) 12 CMSC 426 - Network Security Intro - SP2018 - April 17, 2018 Internet Layer

Documents