Whether you are looking to protect a small network in your home or one that is the foundation of your business, you will find that it is first important to understand what kind of threats you might be facing. As soon as you have a computer hooked up in order to connect to the network, you will find that there is a chance that it can be exposed to a number of different risks. When you are thinking about what you can do to make a system a great deal more secure, you will find that an understanding of the risks that you are vulnerable to is something that can help a great deal.
First and perhaps most obviously, is the threat of a virus. While the majority of viruses are simply annoying, there are definitely viruses that can damage your network’s hardware, software, or both. For the most part, a virus is an executable file that will be spread by human means and will require someone to open it before it can do its work on the network. When looking at virus threats, it is worth understanding worms as well, which are considered a subset of viruses. Worms do not need human help to propagate themselves, and in fact one example of the way that they work is to turn your computer into an email server that will distribute copies of themselves.
When looking into network security threats, though, it is very important to consider what risks may be present from inside the system. First and foremost, the idea of bad architecture must be considered. If a network is mis-configured in the first place, it can be a very tempting target for people who are looking to get on it. One obvious example of this would be leaving a wireless network unsecured so that anyone with a network card could get onto it. This can certainly happen in a broader and more disastrous scope.
Interestingly enough, one of the most common measures taken to save time is also one that leaves network systems shockingly vulnerable. Consolidating a lot of services to one machine is a common measure for saving time and resources. It is easy to manage and simple to maintain, but if this single machine is compromised, there is a great deal of harm that can happen. While accidental failure is one thing, there is also the concern regarding the ease with which a single machine could be manipulated. In this case, the answer is frequently redundancy.
Computer network security is something that is very important, and if the information that you are safeguarding has anything to do with money or with personal information, it will achieve even a higher priority. Take some time and think about your system and think about whether it is vulnerable to any of the threats above. The more security that you can provide, the better off you will be. The protection of both your company and your customer depend on this aspect of your company’s working, so always consider what network security means to you.
By: Derek Rogers
Posts Tagged ‘Computer Network Security’
What Are the Main Computer Network Security Threats?
March 2nd, 2010Computer Network Securities
February 18th, 2010
Computer security policies are the basic guidelines and rules for accessing a network. These lay out some basic concepts to secure your computers. Computer network security is a complicated area, and is taken up by experts with many years of on-the-job experience.
As more people turn to computers for simplifying their day-to-day activities and jobs, the need for general users to understand the concepts of network security has become important. One should know the risks involved in using the computer without the security systems, and learn how to deal with them successfully both at home and at work.
There are two popular types of network security systems: transit security and traffic regulation systems. When both of these join forces you can be assured of the delivery of important information to the right person without any network pilferage problems. The receiver should also ensure that the information received should be carefully processed using a computer which is loaded and protected with latest protection software.
The simplest form of ensuring security on the net is to keep a close watch on the type of data packets moving between the networks. If an infected packet does not reach the recipient, the host may have nothing to worry about. Traffic regulation systems serve as a protective screen between the receiver and remote sites. These tools generally guards three basic regions of the network: the routers, firewalls and hosts.
The three ‘guards’ deliver similar service at various points in the network, and it is difficult to draw a differentiating line between them. The truth is that there are no foolproof systems which offer a guaranteed secure system for data transferred in the public network. With the increasing use of the Internet, network security is fast becoming crucial for the safe use of the systems, and therefore computer network security is all set to be an important part of our regular computer usage.
By: Kent Pinkerton
Essential Computer Network Security Best Practices
November 28th, 2009
Network security should encompass all aspects of a network from the desktop to the perimeter. A multifaceted and multilayered approach to network security for any organization or business provides the ideal protection coverage against internal and external threats. For small networks or even a single computer, a router with integrated firewall is usually sufficient. For larger networks a dedicated firewall at the network perimeter may be more appropriate. A good number of dedicated firewall appliances can also provide secure Virtual Private Network (VPN) connectivity. The most common feature provided by dedicated firewalls is their ability to inspect, block and report malicious network activity usually initiated from the internet. Firewalls that provide this functionality are often designated as an Intrusion Prevention System (IPS).
A content filtering device is a good complement to a dedicated firewall. These types of devices usually include the ability to monitor, filter, regulate and report on all web related traffic. They are usually installed transparently in line between an internal switch and router or firewall. All internet inbound and outbound traffic is then forced to pass through it. This type of installation is often referred to as “bridged mode.” Some content filtering devices can also be integrated with a network directory for individual, detailed monitoring of end user web related traffic. Microsoft Active Directory and Novell eDirectory are examples of directory services that can integrate with a good number of content filtering devices.
Desktops and servers should be protected by antivirus and anti spyware applications. There is a wide variety of enterprise level threat protection software available in today’s current marketplace from numerous vendors. The ideal threat protection software should include at a minimum, frequent if not daily virus definition updates, centralized management and reporting, active protection and the ability to guard against unknown threats.
Another aspect of the network that needs security related consideration is what the users are allowed to do on desktops and laptops. Management may want to evaluate and implement access and rights appropriate for their environment and the nature of the organization. Should users be allowed to install software on their own or should the use of removable devices be disabled company wide are examples of issues that should be addressed when defining security policies and procedures.
Lastly, physical security is also important when considering all security related aspects of the network. Servers should be secured and access regulated and documented. It is also best to make sure that backup media is secured whether stored on-site or off-site. In conclusion, a proactive effort in utilizing these network security best practices coupled with consistent monitoring, constant re-assessments and adaptive reconfiguration are all essential in ensuring the safety and protection of an organizations data, intellectual properties and physical assets.
By: Anthony C.
