Presentation is loading. Please wait.

Presentation is loading. Please wait.

Managing Secure Network Systems

Published byJames Wood Modified over 6 years ago

Similar presentations

Presentation on theme: "Managing Secure Network Systems"— Presentation transcript:

1 Managing Secure Network Systems
Melissa Peters COSC 481

2 Overview Introduction to Network Security Network Protocols
Security Policy Network Attacks Intrusion Detection Systems Incident Response and Disaster Recovery

3 Network Security Brief
Network Security consists of the provisions needed to effectively secure the infrastructure of the network to prevent unauthorized access of the network or its resources

4 Where Network Security Starts
First step is authenticating the user After authentication, firewall enforces the rules Intrusion detection systems can detect what may have been missed because they examine network traffic ACL’s on a backup firewall can catch even more Honeypots look appealing to the unsuspecting hacker

5 Network Protocol: TCP/IP
TCP/IP-Language of the Internet; links Network (IP) and Transport (TCP) layers in the OSI Model

6 Pros and Cons of TCP/IP PROS Open protocol; available to everyone
Guaranteed packet delivery (‘syn/ack’) Our ultimate way to ‘map’ to each other via computer CONS Can easily be spoofed or hijacked Requires authentication and security at the Application level Not good for streaming media

7 UDP-User Datagram Protocol
Although UDP is not as common as TCP/IP, it is much better suited for such tasks like streaming media simply because it doesn’t have to use the syn/ack like TCP/IP. It is not as robust as TCP/IP and is considered less reliable.

8 Security Policy Important part of managing a secure network system and should follow these steps: Identifying the assets Identify required security measures needed and the users responsibilities Identify who is responsible for implementing and maintaining the policy Include a training policy to improve employee awareness

9 When making critical systems design decisions regarding your network, management needs to identify exactly how the network will be used. Examples of these include: Groups of users who will be given Internet access The frequency in which they will be accessing The type of access required (i.e. , web browser, file transfer, remote logons,etc.) The type of authentication method used The type of activity permitted, such as being monitored, hours of usage, or file transfers permitted. Following these steps can keep insider access limited as well as outsider access at a minimum

10 Network Attacks

11 Denial of Service One of the nastiest attacks on a network
Easy to launch, difficult to track Floods host with incoming packets making it impossible to respond, shutting down the service and rendering it useless Becoming less popular now with better designed routers and rule bases

12 Other Attacks Teardrop Attack or the ‘Ping of Death’
Buffer overflow attacks Viruses, trojans, and worms Executing illicit commands Data diddling and data destruction

13 Ways to Prevent Network Attacks
Use Packet Filtering IP Firewalling Update patches regularly Always backup your system Avoid systems with single points of failure Don’t put data where it doesn’t need to be!

14 Intrusion Detection Systems
Can be protocol based, rate based, or behavior based Active or Passive Sensor, Console, Engine May catch potentially harmful things that may have slipped past firewall

15 Incident Response and Disaster Recovery

16 Can you handle it? Depending on your system, the amount of fault tolerance you allow depends on the level of security in your system If a product fails or if your system is breached, you must have an incident recovery and response plan in place to return things to normal

17 We’ve Covered… Network Security Basics Protocols
Network Attacks and Defenses Intrusion Detection Systems Incident Recovery Any questions?

Download ppt "Managing Secure Network Systems"

Similar presentations

Network and Application Attacks Contributed by- Chandra Prakash Suryawanshi CISSP, CEH, SANS-GSEC, CISA, ISO 27001LI, BS 25999LA, ERM (ISB) June 2006.

Network and Application Attacks Contributed by- Chandra Prakash Suryawanshi CISSP, CEH, SANS-GSEC, CISA, ISO 27001LI, BS 25999LA, ERM (ISB) June 2006.
FIREWALLS Chapter 11.

FIREWALLS Chapter 11.
FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.

FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.
FIREWALLS The function of a strong position is to make the forces holding it practically unassailable —On War, Carl Von Clausewitz On the day that you.

FIREWALLS The function of a strong position is to make the forces holding it practically unassailable —On War, Carl Von Clausewitz On the day that you.
Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.

Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.
Web Server Administration TEC 236 Securing the Web Environment.

Web Server Administration TEC 236 Securing the Web Environment.
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific.

Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific.
Firewalls and Intrusion Detection Systems

Firewalls and Intrusion Detection Systems
IS Network and Telecommunications Risks

IS Network and Telecommunications Risks
Web Server Administration

Web Server Administration
Firewalls Presented by: Sarah Castro Karen Correa Kelley Gates.

Firewalls Presented by: Sarah Castro Karen Correa Kelley Gates.
Securing TCP/IP Chapter 6. Introduction to Transmission Control Protocol/Internet Protocol (TCP/IP) TCP/IP comprises a suite of four protocols The protocols.

Securing TCP/IP Chapter 6. Introduction to Transmission Control Protocol/Internet Protocol (TCP/IP) TCP/IP comprises a suite of four protocols The protocols.
Review for Exam 4 School of Business Eastern Illinois University © Abdou Illia, Fall 2006.

Review for Exam 4 School of Business Eastern Illinois University © Abdou Illia, Fall 2006.
Network Security. Network security starts from authenticating any user. Once authenticated, firewall enforces access policies such as what services are.

Network Security. Network security starts from authenticating any user. Once authenticated, firewall enforces access policies such as what services are.
Lecture 11 Reliability and Security in IT infrastructure.

Lecture 11 Reliability and Security in IT infrastructure.
Web server security Dr Jim Briggs WEBP security1.

Web server security Dr Jim Briggs WEBP security1.
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.
Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.

Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.
Attack Profiles CS-480b Dick Steflik Attack Categories Denial-of-Service Exploitation Attacks Information Gathering Attacks Disinformation Attacks.

Attack Profiles CS-480b Dick Steflik Attack Categories Denial-of-Service Exploitation Attacks Information Gathering Attacks Disinformation Attacks.

Similar presentations

Ads by Google