Network security

Network security

In the field of networking, the specialist area of network security consists of the provisions made in an underlying computer network infrastructure, policies adopted by the network agministrator to protect the network and the network-accessible resources from unauthorized access, and consistent and continuous monitoring and measurement of its effectiveness (or lack) combined together.

The First Step to Information Security

The terms Network Security and Information Security are often used interchangeably. Network Security is generally taken as providing protection at the boundaries of an organization by keeping out intruders (hackers). Information Security, however, explicitly focuses on protecting data resources from malware attack or simple mistakes by people within an organization by use of Data Loss Prevention (DLP) techniques. One of these techniques is to compartmentalize large networks with internal boundaries. Employees have to cross these boundaries and be authenticated when attempting to access protected information.

Network security concepts

Network security starts from authenticating the user, commonly with a username and a password. Since this requires just one thing besides the user name, i.e. the password which is something you 'know', this is sometimes termed one factor authentication. With two facetor authentication something you 'have' is also used (e.g. a security token or 'dongle', an ATM card, or your mobile phone), or with three factor authentication something you 'are' is also used (e.g. a fingerprint or retinal scan).
Once authenticated, a firewall enforces access policies such as what services are allowed to be accessed by the network users.Though effective to prevent unauthorized access, this component may fail to check potentially harmful content such as computer worms or Trojans being transmitted over the network. Anti-virus software or an intrusion prevention system (IPS) help detect and inhibit the action of such malware. An anomaly-based intrusion detection system may also monitor the network and traffic for unexpected (i.e. suspicious) content or behaviour and other anomalies to protect resources, e.g. from denial of service attacks or an employee accessing files at strange times. Individual events occurring on the network may be logged for audit purposes and for later high level analysis.
Communication between two hosts using the network could be encrypted to maintain privacy.
Honeypots, essentially decoy network-accessible resources, could be deployed in a network as surveillance and early-warning tools. Techniques used by the attackers that attempt to compromise these decoy resources are studied during and after an attack to keep an eye on new explotation techniques. Such analysis could be used to further tighten security of the actual network being protected by the honeypot.
A useful summary of standard concepts and methods in network security is given by in the form of an extensible ontology of network security attacks.

Security management

Security Management for networks is different for all kinds of situations. A small home or an office would only require basic security while large businesses will require high maintenance and advanced software and hardware to prevent malicious attacks from hacking and spamming.

Small homes

- A basic firewall like COMODO Internet Security or a unified threat management system.

- For Windows users, basic Antivirus software like AVG Antivirus, ESET NOD32 Antivirus,Kaspersky, McAfee, or Norton Antivius. An anti-spyware program such as Windows Defender or Spybot would also be a good idea. There are many other types of antivirus or anti-spyware programs out there to be considered.

- If using Wireless: Change the default SSID network name, also disable SSID Broadcast; as this function is unnecessary for home use.

- Disable ICMP ping on router.

- Review router or firewall logs to help identify abnormal network connections or traffic to the Internet.

Medium businesses

- A fairly strong firewall or Unified Threat Management System
- Strong Anitivirus software and Internet Security Software.
- For authentication, use strong passwords and change it on a bi-weekly/monthly basis.
- When using a wireless connection, use a robust password.
- Raise awareness about physical security to employees.

Large businesses

- A strong firewall and proxy to keep unwanted people out.
- A strong Antivirus software package and Internet Security Software package.
- For authentication, use strong passwords and change it on a weekly/bi-weekly basis.
- When using a wireless connection, use a robust password.
- Exercise physical security precautions to employees.
- Prepare a network analyzer or network monitor and use it when needed.
- Implement physical security management like closed circuit teevision for entry areas and restricted zones.
- Security fencing to mark the company's perimeter.

Large Government

- A strong firewall and proxy to keep unwanted people out.
- Strong Antivirus software and Internet Security Software suites.
- Strong encryption.
- Whitelist authorized wireless connection, block all else.
- All network hardware is in secure zones.

IT in the future

In the future of Mobile Phone Technology

Mobile phones are getting more and more sophisticated. Thus, development on mobile phones is just like the computers. The technology is growing everyday. Different functions and usage on mobile phones are created and updated. From the network system from mobile phones, it is still developing. Although the new 3G system had just been launched not long ago, many companies had already started on researching and developing on the fourth generation (4G) system. Researchers are hoping that the 4G system can reach a much faster speed, a connection speed up to 100Mb per second during connection, tighter network security and also bring up the quality during communication no matter on voice or video calls. Via mobile phones, many things such as the security system, surveillance on certain items could be done easily. The 4G system will be expected to be launched in 2010.

Mobile phone, the piece of communication device itself is also becoming a multi functioned device. Smartphones and PDA phones are already launched in the market. From the new models of mobile phones released in the market recently, we can see that mobile phone manufacturers now are all heading to this market. Mobile phone incorporating with computing functions will be able to replace other devices such as laptop, PDA and even entertainment devices tool (Dornan, 2000).

Along with the development of mobile phones integrated with OS, the OS and software development will also be a big challenge. The mobile phone market will not only be a competed by mobile phone manufacturers (hardware manufacturers), software companies such as Microsoft, PALM and Symbian will also be competing in the mobile phone market, creating more and more new product and ideas.
Push to talk (PTT) is also function is also expected to integrate on mobile phones in the near future. Push to talk is not like making a phone call. Users will not have to dial to get connected. It is similar to the idea of a walkie-talkie, but can get connected to another user in another side of the world. The size and outlook of mobile phones are also plays an important role for the mobile phone. Thus, many concept mobile phones brought out by the manufacturers now are all very fashionable and colourful. As for the size of mobile phones, concepts such as whist phones and mini sized.
Other concepts brought out by the researchers include remote-controlling a car via a mobile phones, holophones (mobile phones that project three-dimensional moving images of the users). These concepts are expected to be brought out in the next 15-20 years (Dornan, 2000).
Scentsory is a mobile communication device that works with the senses of smell, sight, hearing and touch, giving users the ability to experience remote communication on multi-sensory levels. With the development of Scentsory, remote interfacing will become more biologically natural. The future of mobile communication is ready to take part in rich, multi-layered, multi-sensory experiences. In addition to basic audiovisual features, Scentsory is able to detect, transmit and emit smells. It can also radiate colours, lighting, and temperature from the caller?s environment.

Smell, the most evocative of the senses, can unconsciously trigger entire memories, complete with deep-rooted associated emotions. The average human is able to recognise approximately 10,000 different odours. Over time, odour-memory remains as other recollections fade. People recall smells with 65% accuracy after a year, while visual recollection of photographs sinks to about 50% after only three months.Nanotechnology plays a key role in the development of this new device. Using highly sophisticated sensors, the electronic ?nose? samples the odour of the caller?s environs and transmits this to the recipient electronically. Scientists have found that a distinct genetic pattern is associated with every odour, so it is simply a matter of matching electrical harmonics with gene activity. This way, the perception of a smell by electrical stimulation could be technologically induced.

When the phone is in ?flat mode? (opened flat), the LED touchpad, two screens and stereo speakers for audiovisual calls are accessible. (Wireless ?earbuds? are available.) In ?open mode?, two screens with a hidden camera and stereo speakers, interior scent detectors, emitter and exterior temperature sensors are revealed. In ?closed mode?, the phone?s slim profile befits traditional voice calls. The LED screen on the lower folding surface alerts the user to incoming calls.