Security Technologies1 – Firewall
In order to ensure that confidentiality, integrity and availability are addressed, there are several security technologies available.
These include:
Firewall
Firewalls are systems designed to create a secure barrier between trusted users of the network and untrustworthy users. These are usually implemented at the point of access between the internet and the internal network. A firewall can be used to block access to websites and internet resources that are deemed inappropriate.
A firewall is a tool designed to keep the bad guys out and to keep the good guys from doing bad things.
Security Technologies - Intrusion Detection System
Intrusion Detection System
Intrusion Detection Systems (IDS) are designed to identify possible security breaches and/or resource misuse. For example, imagine the damage that could be caused if an attacker breaks into our system and tries attacking our competitors from our system. With proper IDS, the security professionals would have detected the intrusion and stopped the incident from escalating outside the networks, where serious damage could result.
IDS are devices that sit in a network looking for unauthorized traffic. The IDS by itself is not designed to capture and respond to security breaches, but to notify the required people if an event occurs. Knowing that an event could occur and taking the right precaution can make the difference between a small and large-scale security incident.
Security Technologies - Anti-Virus & Encryption
Anti Virus
 Anti-Virus (AV) software has become a necessity on every computer that is connected to the internet. AV software is designed to stop viruses, among other things, from infecting and corrupting your computer.
It is vital that Anti-Virus software is installed and configured properly on every single computer that is connected to the internet. If there is no-antivirus software on a computer, you can expect to:
- Lose Files
- Lose Emails
- Computer Restart
- Computer Crash
Anti-Virus software is ideally designed to automatically scan all attachments and downloads and scan every file on the computer on a daily basis.
Encryption
Encryption is the process of disguising a message so that it cannot be read without special knowledge of other information. Encryption is an option for securing information. There are many applications that provide for file and email encryption but a very common one is called PGP (Pretty Good Privacy). For an individual user who wishes to use PGP, there is no cost.
Potential Security Threats
The following table lists the resources that are affected by various types of threats:
| Resources |
Potential Threats |
| End User Resources |
Viruses, Trojans and applets can damage local systems. Each user can also introduce problems through malicious activity. |
| Network Resources |
IP spoofing, system snooping and obtaining information. |
| Server Resources |
Unauthorized entry, interrupted service and Trojans. Server resources are primary targets in most cases. |
| Information Storage Resources |
Obtaining trade secrets, customer data and so forth. |
| Information Resources |
An open door to the room containing firewall equipment. An employee who removes or introduces information manually, or divulges passwords and other information. System servers that allow detachable devices, such as USB and Firewire hard drive, to be installed. |
References And Credits:
1 - http://www.iso.org - Guidelines for the Management of IT Security (GMITS) - ISO/IEC 13335
|
