SlideShare ist ein Scribd-Unternehmen logo

Network Security of Data Protection

Als PPTX, PDF herunterladen
UthsoNandy
UthsoNandy

Here is some knowledge of Network Security of Data Protection and some application knowledge

Ingenieurwesen
1 von 20
NETWORK SECURITY & DATA PROTECTION A FOCUS ON ORGANIZATIONAL THREATS AND POSSIBLE SOLUTIONS
1. There is a Hacker Attack Every 39 Seconds. Security Magazine 2. According to Mcafee, 300,000 New Malwares are created everyday. 3. According to FBI report in 2019 Cybercriminals earned about $3.5 Billion. bbc.com 4. 75 Records are stolen every second by Hackers. Breach Level Index 5. 66% of Businesses attacked by hackers were not confident of recovery. hostingtibunal.com 6. In 2019, 187.9Million ransomware attacks took place worldwide. statista.com 7. According to selfkey.org about 16 Billion records have been exposed through Data breaches between 2019 and June 2020 8. According to data from Juniper Research, the average cost of a data breach will exceed $150 million by 2020 2 WHY IS THIS IMPORTANT?
DEFINITIONS WHAT IS NETWORK SECURITY? Network security consists of the policies and practices adopted to prevent and monitor unauthorized access, misuse, modification, or denial of a computer network and network-accessible resources. Network security involves the authorization of access to data in a network, which is controlled by the network administrator. Users choose or are assigned an ID and password or other authenticating information that allows them access to information and programs within their authority. Network security covers a variety of computer networks, both public and private, that are used in everyday jobs: conducting transactions and communications among businesses, government agencies and individuals. Networks can be private, such as within a company, and others which might be open to public access. Network security is involved in organizations, enterprises, and other types of institutions 3
DEFINITIONS WHAT IS DATA PROTECTION? Data protection is the process of safeguarding important information from corruption, compromise or loss. The importance of data protection increases as the amount of data created and stored continues to grow at unprecedented rates. The context of data protection varies and the methods and extent also vary for each; there is data protection on the personal level, business or public entities, and that of data so highly classified that it should never fall into the hands of others aside from its owners. Consequently, a large part of a data protection strategy is ensuring that data can be restored quickly after any corruption or loss. 4
HOW CAN NETWORK SECURITY IMPROVE DATA SECURITY 5 CONVENTIONAL SOLUTIONS Firewalls put up a barrier between your trusted internal network and untrusted outside networks, such as the Internet. They use a set of defined rules to allow or block traffic. A firewall can be hardware, software, or both Email gateways are the number one threat vector for a security breach. Attackers use personal information and social engineering tactics to build sophisticated phishing campaigns to deceive recipients and send them to sites serving up malware. An email security application blocks incoming attacks and controls outbound messages to prevent the loss of sensitive data. "Malware," short for "malicious software," includes viruses, worms, Trojans, ransomware, and spyware. Sometimes malware will infect a network but lie dormant for days or even weeks. Good Anti-Malwares not only scan for malware upon entry, but also continuously track files afterward to find anomalies, remove malware, and fix damage. FIREWALLS EMAIL GATEWAYS ANTI-VIRUS & ANIT-MALWARES Cloud security is a broad set of technologies, policies, and applications applied to defend online IP, services, applications, and other imperative data. It helps you better manage your security by shielding users against threats anywhere they access the Internet and securing your data and applications in the cloud. CLOUD SECURITY
HOW CAN NETWORK SECURITY IMPROVE DATA SECURITY 6 CONVENTIONAL SOLUTIONS Not every user should have access to your network. To keep out potential attackers, you need to recognize each user and each device. Then you can enforce your security policies. You can block noncompliant endpoint devices or give them only limited access Cybercriminals are increasingly targeting mobile devices and apps. Within the next 3 years, 90 percent of IT organizations may support corporate applications on personal mobile devices. Of course, you need to control which devices can access your network. You will also need to configure their connections to keep network traffic private A virtual private network encrypts the connection from an endpoint to a network, often over the Internet. Typically, a remote-access VPN uses IPsec or Secure Sockets Layer to authenticate the communication between device and network ACCESS CONTROL MOBILE DEVICE SECURITY VIRTUAL PRIVATE NETWORK Wireless networks are not as secure as wired ones. Without stringent security measures, installing a wireless LAN can be like putting Ethernet ports everywhere. To prevent an exploit from taking hold, you need products specifically designed to protect a wireless network WIRELESS SECURITY
SECURITY FOCUS-1 ORGANIZATIONAL BEHAVIOUR Individuals make up every Organization. Therefore their individual responses to security protocols will collectively determine how secured or porous an organizational network will be and consequently, the security of Data. Irrespective of the investment an organization make in securing its Data, as long as employers and employees do not recognize the need to intentionally follow Security Protocols, it will be a daunting task to win this Cyber War. Therefore Network Administrators, Data Managers and end user employees MUST engage in frequent trainings, both in Data Security and Management and to be individually responsible in looking out for the Safety of the Organizations’ Data Base. Remember, “HACKERS ARE HUNTERS WHO OBSERVE THEIR PREYS DAILY BEHAVIOURS UNTIL THEY FIND A WEAKNESS TO ATTACK” 7
SECURITY FOCUS-2 ETHICAL HACKING Ethical Hacking is an authorized practice of bypassing system security to identify potential data breaches and threats in a network. . Remember the Saying: “It takes a thief to Catch a thief”? Its time Organizations take serious, engaging the services of Ethical Hackers. Ethical Hackers aim to investigate the system or network for weak points that malicious hackers can exploit or destroy. They collect and analyse the information to figure out ways to strengthen the security of the system, network and applications. By doing so, they can improve the security footprint so that it can better withstand attacks or divert them. NOTE: Before engaging Ethical Hackers, the Organization MUST go into a Non Disclosure Agreement and any other Data Protection Policy in order to safeguard their Data Privacy and Integrity. 8
SECURITY FOCUS-3 BAN USE OF PIRATED SOFTWARE Do you know that every Pirated Software Installed is embedded with Malwares?. Cybercriminals are increasingly using this medium to infect computers, steal information, create botnets and carry out other illegal activities. The means through which people acquire pirated software has changed over time, with downloads from peer-to-peer networks such as BitTorrent becoming increasingly popular. Therefore the temptation to acquire them is high. Organizations must therefore take the bold step in getting rid of any sharp practices of using Pirated Software for their businesses because it’s a case of “Penny Wise Pound Foolish” The Cost of Data breaches can in no way justify the Cost of Acquiring counterfeit application programs. One of the most effective way for users to stay safe is to use genuine application programs, operating system and anti-virus software, which are updated and patched regularly. 9
SECURITY FOCUS-4 NEXT-GENERATION ALL-IN-ONE ENDPOINT SOLUTIONS A Next-Generation Anti-Virus, Endpoint Detection and Response and a 24/7 Managed Threat Hunting Service running on One Platform is the Future to Combat Cyber Threats. These Endpoint Solutions are built around behavioral-based proprietary machine learning and Indicator-of-Attack (IOA) methodology, the solution prevents attacks pre-execution and is particularly effective at stopping new, polymorphic or obfuscated malware, which is often missed by legacy Anti-Virus solutions. These Endpoint Solutions are embedded with features that acts like a DVR on the endpoint, recording activity to catch incidents that evaded prevention measures. It ensures customers have comprehensive, real-time visibility into everything that is happening on their endpoints from a security perspective — eliminating the risk of “silent failure,” which allows intruders to remain in your environment undetected. Best of all, this technology can be fully deployed and operational in hours with zero maintenance costs or end-user impact. Some of these Solutions takes up just 40Mb disk storage and less than 3% CPU, with no rebooting or scanning required 10
TECHNICAL ISSUES THAT CAN INTERFERE WITH THE WIRELESS NETWORK’S PERFORMANCE. I. It can be a problem if several employees in the building are using wireless networks. II. Wired networks can also interfere with a wireless signal. While rare, the interference can result in the loss of communication capabilities over the wireless network. Coverage Interference I. It can be slower if the organization has a large wireless network. II. To prevent this, many companies also use a wired or fiber-optic network as a “backbone”. I. It isn’t always as broad as you might need, especially if the building has a reinforced steel structure. This can cause “black spots”. II. These are areas where a wireless signal is not available Transmission speeds 11
WEP was developed by the Wi-Fi Alliance in the late 1990s. It was the first encryption algorithm developed for the 802.11 standard, and it had one primary goal – to prevent hackers from accessing any data that was transmitted.  Unfortunately, by 2001, cybersecurity experts had found several flaws in the algorithm’s security. This led to cybersecurity experts recommending that consumers and organizations phase out WEP from their devices.  In 2009, it became apparent that WEP was not as effective as developers had stated when the massive cyberattack against TJ. Maxx was launched. The data breached comprised customers’ credit card accounts and cost the retailer $9.75 million in legal To authenticate users, WEP uses the Rivest Cipher 4 (RC4). The original model used a 40-bit encryption key, though it has been upgraded to a 104-bit key that is manually entered by the administrator. The key is used with a 24-bit IV (Initialization Vector) that helps to strengthen the password/encryption. The problem that often occurs is that due to the IV’s small size, administrators are likely to use the same keys. This makes the encryption easier to hack. WEP might have been the original algorithm for wireless networks, but over time it has shown that it is vulnerable to cyberattacks.  This is why other security protocols have been developed since the issues with WEP were discovered. 12 WIRED EQUIVALENT PRIVACY (WEP)
WI-FI PROTECTED ACCESS (WPA) Once the flaws were discovered, and made public, in WEP the process to create a new wireless protocol was started. It takes time to write a replacement. To ensure that wireless network users still had protection, the Wi-Fi Alliance released WPA as a temporary replacement in 2003.  This gave the Institute of Electrical and Electronics Engineers Inc. (IEEE) time to create a viable replacement for WEP. Even though WPA is considered an interim security algorithm, it is an improvement over WEP. It has discrete modes for personal and business use for improved security.  In personal mode, preshared keys are used to make it easier to implement and manage the network among employees and consumers. Business or enterprise mode requires an administrator to authenticate a device before it can access the network. This allows larger companies to have more control over who has access to the data. WPA is based on the RC4 cipher like its predecessor WEP, only it uses TKIP (temporal key integrity protocol) to boost wireless security. This includes, Using 256-bit keys to reduce keys being reused Generating a unique key for a packet by key mixing per packet Automatically broadcasting updated keys and usage Integrity checks of the system IV size increased to 48 bits Since WPA was designed to be compatible with WEP, IT professionals found that they could easily update to the interim security protocol for their wireless network. All they needed was a simple firmware update. While switching protocols was simple this also created potential security risks since it was not as comprehensive as developers and users hoped it would be. 13
WI-FI PROTECTED ACCESS 2 (WPA2)  The replacement for the interim WPA, the IEEE released WPA2 in 2004. There are still some security vulnerabilities with WPA2, but it is still considered one of the most secure wireless network protocols available for personal and business use.  While like WPA, it also offers users personal and enterprise/business modes. WPA2 also has several security improvements.  These include replacing TKIP and the RC4 cipher with stronger authentication and encryption mechanisms – CCMP (Cipher Block Chaining Message Authentication Code Protocol) and AES (Advanced Encryption Standard).  If your device cannot support CCMP, the security algorithm is still compatible with TKIP. This helps to ensure that WPA2 is compatible with all devices and wireless networks.  AES was originally developed by the United States government to protect classified data from foreign and domestic hackers. It uses three symmetric block ciphers with each one encrypting and decrypting incoming and outgoing data using 128, 192, and 256-bit keys.  This security protocol for wireless networks does use  CCMP prevents everyone except for authorized users to receive data by using cipher block chaining. This helps to ensure the integrity of the message.  WPA2 also allows for more seamless roaming from one access point to another without having to reauthenticate user access. This can improve productivity and client relations. Data can be transferred seamlessly, without having to take extra authentication steps.  After reviewing the three security protocols for wireless networks, WPA2 is a welcome replacement for WEP and the temporary algorithm WPA. Knowing which protocol provides the best wireless security is helpful, but so is knowing exactly how it works. If you know how threats are being blocked, you’ll be better equipped at recognizing any issues that might get through 14
HOW SECURITY PROTOCOLS FOR WI-FI WORK When WPA2 was created to replace WEP and WAP, it was thought that this security protocol was almost impossible for hackers to crack. With its larger IV size to prevent key reuse and other improvements, companies and individuals began to believe that their wireless networks were safe. In 2017, this changed when a vulnerability in the protocol was discovered. Hackers could take advantage of a system weakness by posing as an access point. This would allow them to access the data and this breach is known as a Key Reinstallation Attack (KRACK). This vulnerability did cause concern with wireless network uses, and patches were created to prevent data from being stolen. The only problem with this remedy is that not everyone may have gotten the patches installed in time or even be aware that their wireless network might be at risk. This particularly applies to public wi-fi hotspots and companies with older networks. To understand how wireless security protocols can be vulnerable, it’s helpful to know how encryption codes work. 15
UNDERSTANDING ENCRYPTION WEP: I. As previously mentioned, WEP has the weakest security since it uses radio waves to transmit messages. II. This already makes it easy for hackers to steal the information as it travels. III. It will still be encrypted when it reaches an unauthorized party, but WEP uses the same encryption key for all messages making it easy for hackers to crack. IV. There is software available that can crack WEP encryption in minutes. WPA: I. This interim security protocol uses TKIP (temporal key integrity protocol) for wireless protection. II. It is an improvement over WEP since it resolved two problems associated with the old protocol. The key length is increased and a unique 48-bit number is assigned to each message. III. This makes it more difficult for hackers to break the encryption code. IV. While TKIP did fix some of the security issues with WEP, it was still vulnerable since it was only created to be a temporary patch. WPA2: I. The replacement for WEP and WPA, this security protocol is compatible with TKIP and the stronger AES encryption. II. Older computer systems might not be compatible with AES, so TKIP can be back-ended for encryption. III. The main security issue with TKIP is that any authorized computer can access messages. 16
17
18 3. Findings and Conclusion  Need to develop a human induced sinkhole risk index (SRI).  Use of a WSN system to find a method more reliable, energy efficient, and time-saving.  Application of previous WSN method for underground pipeline monitoring for sinkhole monitoring, detection, and prevention.  Pipeline property measuring sensors must replace soil property measuring sensors: water content, soil bearing capacity, and pH.  Sewer pipelines need more concentration to prevent sinkhole.  A lot of water distribution system management methods actual field implementation is less than consideration.  So to find out the real field implementation, water providing agencies, and research institutes must collaborate to overcome this gap.  The findings from each analysis and literature review show that previous researchers have not contributed considerably to overcome the issue of the sinkhole caused by the fault in the underground water distribution system.
19  Steps  Instructions  Concept/Main Purpose[Abstract/Introduction]  Problem[technological significance or any problem solved→ look in the Introduction part of this paper]  Solutions[Experiment/Methodology+ Discussion]  Discussion[Conclusion] o C1;P2;L3;S4 Review Paper
THANK YOU NETWORK SECURITY & DATA PROTECTION

Empfohlen

2021 Nonprofit Cybersecurity Incident Report
2021 Nonprofit Cybersecurity Incident Report2021 Nonprofit Cybersecurity Incident Report
2021 Nonprofit Cybersecurity Incident Report
Community IT Innovators
 
2015: The year-ahead-in-cyber-security
2015: The year-ahead-in-cyber-security2015: The year-ahead-in-cyber-security
2015: The year-ahead-in-cyber-security
Stephen Cobb
 
Security/Compliance - Advanced Threat Detection and Compliance
Security/Compliance - Advanced Threat Detection and ComplianceSecurity/Compliance - Advanced Threat Detection and Compliance
Security/Compliance - Advanced Threat Detection and Compliance
Advanced Technology Consulting (ATC)
 
Cybersecurity Training
Cybersecurity TrainingCybersecurity Training
Cybersecurity Training
WindstoneHealth
 
Information security and Attacks
Information security and AttacksInformation security and Attacks
Information security and Attacks
Sachin Darekar
 
Topic11
Topic11Topic11
Topic11
Anne Starr
 
Cyber Security Awareness
Cyber Security AwarenessCyber Security Awareness
Cyber Security Awareness
Ramiro Cid
 
Hyphenet Security Awareness Training
Hyphenet Security Awareness TrainingHyphenet Security Awareness Training
Hyphenet Security Awareness Training
Jen Ruhman
 

Empfohlen

2021 Nonprofit Cybersecurity Incident Report
2021 Nonprofit Cybersecurity Incident Report2021 Nonprofit Cybersecurity Incident Report
2021 Nonprofit Cybersecurity Incident Report
Community IT Innovators
 
2015: The year-ahead-in-cyber-security
2015: The year-ahead-in-cyber-security2015: The year-ahead-in-cyber-security
2015: The year-ahead-in-cyber-security
Stephen Cobb
 
Security/Compliance - Advanced Threat Detection and Compliance
Security/Compliance - Advanced Threat Detection and ComplianceSecurity/Compliance - Advanced Threat Detection and Compliance
Security/Compliance - Advanced Threat Detection and Compliance
Advanced Technology Consulting (ATC)
 
Cybersecurity Training
Cybersecurity TrainingCybersecurity Training
Cybersecurity Training
WindstoneHealth
 
Information security and Attacks
Information security and AttacksInformation security and Attacks
Information security and Attacks
Sachin Darekar
 
Topic11
Topic11Topic11
Topic11
Anne Starr
 
Cyber Security Awareness
Cyber Security AwarenessCyber Security Awareness
Cyber Security Awareness
Ramiro Cid
 
Hyphenet Security Awareness Training
Hyphenet Security Awareness TrainingHyphenet Security Awareness Training
Hyphenet Security Awareness Training
Jen Ruhman
 
Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...
Stephen Cobb
 
Cyber Security - awareness, vulnerabilities and solutions
Cyber Security - awareness, vulnerabilities and solutionsCyber Security - awareness, vulnerabilities and solutions
Cyber Security - awareness, vulnerabilities and solutions
inLabFIB
 
Cybersecurity training seminars, courses, cybersecurity laws
Cybersecurity training seminars, courses, cybersecurity lawsCybersecurity training seminars, courses, cybersecurity laws
Cybersecurity training seminars, courses, cybersecurity laws
Bryan Len
 
You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...
You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...
You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...
Michael Noel
 
2015 Cybercrime Trends – Things are Going to Get Interesting
2015 Cybercrime Trends – Things are Going to Get Interesting2015 Cybercrime Trends – Things are Going to Get Interesting
2015 Cybercrime Trends – Things are Going to Get Interesting
IBM Security
 
Introduction to Cyber Security
Introduction to Cyber SecurityIntroduction to Cyber Security
Introduction to Cyber Security
Stephen Lahanas
 
Cyber Domain Security
Cyber Domain SecurityCyber Domain Security
Cyber Domain Security
ICSA, LLC
 
Cyber Security: A Common Problem 2018
Cyber Security: A Common Problem 2018Cyber Security: A Common Problem 2018
Cyber Security: A Common Problem 2018
joshquarrie
 
Information Security Awareness: at Work, at Home, and For Your Kids
Information Security Awareness: at Work, at Home, and For Your Kids Information Security Awareness: at Work, at Home, and For Your Kids
Information Security Awareness: at Work, at Home, and For Your Kids
Nicholas Davis
 
Cyber security mis
Cyber security misCyber security mis
Cyber security mis
Aditya Singh Rana
 
Introduction to Cyber Security
Introduction to Cyber SecurityIntroduction to Cyber Security
Introduction to Cyber Security
Priyanshu Ratnakar
 
CYBERSECURITY | Why it is important?
CYBERSECURITY | Why it is important?CYBERSECURITY | Why it is important?
CYBERSECURITY | Why it is important?
RONIKMEHRA
 
Information & Cyber Security Risk
Information & Cyber Security RiskInformation & Cyber Security Risk
Information & Cyber Security Risk
Murray Security Services
 
Law Firm Cybersecurity: Practical Tips for Protecting Your Data
Law Firm Cybersecurity: Practical Tips for Protecting Your DataLaw Firm Cybersecurity: Practical Tips for Protecting Your Data
Law Firm Cybersecurity: Practical Tips for Protecting Your Data
Accellis Technology Group
 
HIPAA, Privacy, Security, and Good Business
HIPAA, Privacy, Security, and Good BusinessHIPAA, Privacy, Security, and Good Business
HIPAA, Privacy, Security, and Good Business
Stephen Cobb
 
Cybersecurity 1. intro to cybersecurity
Cybersecurity 1. intro to cybersecurityCybersecurity 1. intro to cybersecurity
Cybersecurity 1. intro to cybersecurity
sommerville-videos
 
Cybersecurity Employee Training
Cybersecurity Employee TrainingCybersecurity Employee Training
Cybersecurity Employee Training
Paige Rasid
 
Cyber Security 2017 Challenges
Cyber Security 2017 ChallengesCyber Security 2017 Challenges
Cyber Security 2017 Challenges
Leandro Bennaton
 
Webinar - Reducing Your Cybersecurity Risk
Webinar - Reducing Your Cybersecurity RiskWebinar - Reducing Your Cybersecurity Risk
Webinar - Reducing Your Cybersecurity Risk
WPICPE
 
Cyber 101 for smb execs v1
Cyber 101 for smb execs v1Cyber 101 for smb execs v1
Cyber 101 for smb execs v1
NetWatcher
 
Toward Continuous Cybersecurity with Network Automation
Toward Continuous Cybersecurity with Network AutomationToward Continuous Cybersecurity with Network Automation
Toward Continuous Cybersecurity with Network Automation
E.S.G. JR. Consulting, Inc.
 
Toward Continuous Cybersecurity With Network Automation
Toward Continuous Cybersecurity With Network AutomationToward Continuous Cybersecurity With Network Automation
Toward Continuous Cybersecurity With Network Automation
Ken Flott
 

Weitere ähnliche Inhalte

Was ist angesagt?

Cybersecurity training seminars, courses, cybersecurity laws
Cybersecurity training seminars, courses, cybersecurity lawsCybersecurity training seminars, courses, cybersecurity laws
Cybersecurity training seminars, courses, cybersecurity laws
Bryan Len
 
You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...
You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...
You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...
Michael Noel
 
2015 Cybercrime Trends – Things are Going to Get Interesting
2015 Cybercrime Trends – Things are Going to Get Interesting2015 Cybercrime Trends – Things are Going to Get Interesting
2015 Cybercrime Trends – Things are Going to Get Interesting
IBM Security
 
Introduction to Cyber Security
Introduction to Cyber SecurityIntroduction to Cyber Security
Introduction to Cyber Security
Stephen Lahanas
 

Was ist angesagt? (20)

Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...
 
Cyber Security - awareness, vulnerabilities and solutions
Cyber Security - awareness, vulnerabilities and solutionsCyber Security - awareness, vulnerabilities and solutions
Cyber Security - awareness, vulnerabilities and solutions
 
Cybersecurity training seminars, courses, cybersecurity laws
Cybersecurity training seminars, courses, cybersecurity lawsCybersecurity training seminars, courses, cybersecurity laws
Cybersecurity training seminars, courses, cybersecurity laws
 
You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...
You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...
You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...
 
2015 Cybercrime Trends – Things are Going to Get Interesting
2015 Cybercrime Trends – Things are Going to Get Interesting2015 Cybercrime Trends – Things are Going to Get Interesting
2015 Cybercrime Trends – Things are Going to Get Interesting
 
Introduction to Cyber Security
Introduction to Cyber SecurityIntroduction to Cyber Security
Introduction to Cyber Security
 
Cyber Domain Security
Cyber Domain SecurityCyber Domain Security
Cyber Domain Security
 
Cyber Security: A Common Problem 2018
Cyber Security: A Common Problem 2018Cyber Security: A Common Problem 2018
Cyber Security: A Common Problem 2018
 
Information Security Awareness: at Work, at Home, and For Your Kids
Information Security Awareness: at Work, at Home, and For Your Kids Information Security Awareness: at Work, at Home, and For Your Kids
Information Security Awareness: at Work, at Home, and For Your Kids
 
Cyber security mis
Cyber security misCyber security mis
Cyber security mis
 
Introduction to Cyber Security
Introduction to Cyber SecurityIntroduction to Cyber Security
Introduction to Cyber Security
 
CYBERSECURITY | Why it is important?
CYBERSECURITY | Why it is important?CYBERSECURITY | Why it is important?
CYBERSECURITY | Why it is important?
 
Information & Cyber Security Risk
Information & Cyber Security RiskInformation & Cyber Security Risk
Information & Cyber Security Risk
 
Law Firm Cybersecurity: Practical Tips for Protecting Your Data
Law Firm Cybersecurity: Practical Tips for Protecting Your DataLaw Firm Cybersecurity: Practical Tips for Protecting Your Data
Law Firm Cybersecurity: Practical Tips for Protecting Your Data
 
HIPAA, Privacy, Security, and Good Business
HIPAA, Privacy, Security, and Good BusinessHIPAA, Privacy, Security, and Good Business
HIPAA, Privacy, Security, and Good Business
 
Cybersecurity 1. intro to cybersecurity
Cybersecurity 1. intro to cybersecurityCybersecurity 1. intro to cybersecurity
Cybersecurity 1. intro to cybersecurity
 
Cybersecurity Employee Training
Cybersecurity Employee TrainingCybersecurity Employee Training
Cybersecurity Employee Training
 
Cyber Security 2017 Challenges
Cyber Security 2017 ChallengesCyber Security 2017 Challenges
Cyber Security 2017 Challenges
 
Webinar - Reducing Your Cybersecurity Risk
Webinar - Reducing Your Cybersecurity RiskWebinar - Reducing Your Cybersecurity Risk
Webinar - Reducing Your Cybersecurity Risk
 
Cyber 101 for smb execs v1
Cyber 101 for smb execs v1Cyber 101 for smb execs v1
Cyber 101 for smb execs v1
 

Ähnlich wie Network Security of Data Protection

Toward Continuous Cybersecurity with Network Automation
Toward Continuous Cybersecurity with Network AutomationToward Continuous Cybersecurity with Network Automation
Toward Continuous Cybersecurity with Network Automation
E.S.G. JR. Consulting, Inc.
 
Toward Continuous Cybersecurity With Network Automation
Toward Continuous Cybersecurity With Network AutomationToward Continuous Cybersecurity With Network Automation
Toward Continuous Cybersecurity With Network Automation
Ken Flott
 
Top Cyber Security Interview Questions and Answers 2022.pdf
Top Cyber Security Interview Questions and Answers 2022.pdfTop Cyber Security Interview Questions and Answers 2022.pdf
Top Cyber Security Interview Questions and Answers 2022.pdf
Careerera
 
First Union Bank Report
First Union Bank ReportFirst Union Bank Report
First Union Bank Report
Yogesh Kumar
 
Security and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docxSecurity and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docx
edgar6wallace88877
 
Security and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docxSecurity and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docx
fathwaitewalter
 

Ähnlich wie Network Security of Data Protection (20)

Toward Continuous Cybersecurity with Network Automation
Toward Continuous Cybersecurity with Network AutomationToward Continuous Cybersecurity with Network Automation
Toward Continuous Cybersecurity with Network Automation
 
Toward Continuous Cybersecurity With Network Automation
Toward Continuous Cybersecurity With Network AutomationToward Continuous Cybersecurity With Network Automation
Toward Continuous Cybersecurity With Network Automation
 
3.8 Ways to Establish Secure Protocols in a Digital Organization.pdf
3.8 Ways to Establish Secure Protocols in a Digital Organization.pdf3.8 Ways to Establish Secure Protocols in a Digital Organization.pdf
3.8 Ways to Establish Secure Protocols in a Digital Organization.pdf
 
SMB Network Security Checklist
SMB Network Security Checklist SMB Network Security Checklist
SMB Network Security Checklist
 
Top Cyber Security Interview Questions and Answers 2022.pdf
Top Cyber Security Interview Questions and Answers 2022.pdfTop Cyber Security Interview Questions and Answers 2022.pdf
Top Cyber Security Interview Questions and Answers 2022.pdf
 
Cybersecurity Interview Questions and Answers.pdf
Cybersecurity Interview Questions and Answers.pdfCybersecurity Interview Questions and Answers.pdf
Cybersecurity Interview Questions and Answers.pdf
 
First Union Bank Report
First Union Bank ReportFirst Union Bank Report
First Union Bank Report
 
Network Security ppt
Network Security pptNetwork Security ppt
Network Security ppt
 
Computer Network Security
Computer Network SecurityComputer Network Security
Computer Network Security
 
ppt on securities.pptx
ppt on securities.pptxppt on securities.pptx
ppt on securities.pptx
 
network_security.docx_2.pdf
network_security.docx_2.pdfnetwork_security.docx_2.pdf
network_security.docx_2.pdf
 
Cyber Security Matters a book by Hama David Bundo
Cyber Security Matters a book by Hama David BundoCyber Security Matters a book by Hama David Bundo
Cyber Security Matters a book by Hama David Bundo
 
Security and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docxSecurity and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docx
 
Security and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docxSecurity and Ethical Challenges Contributors Kim Wanders.docx
Security and Ethical Challenges Contributors Kim Wanders.docx
 
Cyber Security: A Hands on review
Cyber Security: A Hands on reviewCyber Security: A Hands on review
Cyber Security: A Hands on review
 
Internet safety and you
Internet safety and youInternet safety and you
Internet safety and you
 
SECURITY TOOLS AND PRACTICES THAT ARE MINIMISING THE SURGE IN SUPPLY CHAIN AT...
SECURITY TOOLS AND PRACTICES THAT ARE MINIMISING THE SURGE IN SUPPLY CHAIN AT...SECURITY TOOLS AND PRACTICES THAT ARE MINIMISING THE SURGE IN SUPPLY CHAIN AT...
SECURITY TOOLS AND PRACTICES THAT ARE MINIMISING THE SURGE IN SUPPLY CHAIN AT...
 
A sneak peek into the top 5 network security solutions.docx
A sneak peek into the top 5 network security solutions.docxA sneak peek into the top 5 network security solutions.docx
A sneak peek into the top 5 network security solutions.docx
 
A sneak peek into the top 5 network security solutions.pdf
A sneak peek into the top 5 network security solutions.pdfA sneak peek into the top 5 network security solutions.pdf
A sneak peek into the top 5 network security solutions.pdf
 
10 security problems unique to it
10 security problems unique to it10 security problems unique to it
10 security problems unique to it
 

Mehr von UthsoNandy

Mehr von UthsoNandy (20)

Professional ethic's
Professional ethic'sProfessional ethic's
Professional ethic's
 
GPRS( General Packet Radio Service)
GPRS( General Packet Radio Service)GPRS( General Packet Radio Service)
GPRS( General Packet Radio Service)
 
Gas turbine power_plant_new
Gas turbine power_plant_newGas turbine power_plant_new
Gas turbine power_plant_new
 
Renewable Energy Sources
Renewable Energy SourcesRenewable Energy Sources
Renewable Energy Sources
 
Techniques of Improving Cell Capacity and Coverage & Hand off/Handover & GSM ...
Techniques of Improving Cell Capacity and Coverage & Hand off/Handover & GSM ...Techniques of Improving Cell Capacity and Coverage & Hand off/Handover & GSM ...
Techniques of Improving Cell Capacity and Coverage & Hand off/Handover & GSM ...
 
Power system operation & control( Switching & Controlling System)
Power system operation & control( Switching & Controlling System)Power system operation & control( Switching & Controlling System)
Power system operation & control( Switching & Controlling System)
 
Power system 2(High Voltage DC,Cables and Different types cable,Transmission)
Power system 2(High Voltage DC,Cables and Different types cable,Transmission)Power system 2(High Voltage DC,Cables and Different types cable,Transmission)
Power system 2(High Voltage DC,Cables and Different types cable,Transmission)
 
Logical channels
Logical channelsLogical channels
Logical channels
 
Multiplexing & DE Multiplexing( Time Division Multiplexing(TDM) & Frequency D...
Multiplexing & DE Multiplexing( Time Division Multiplexing(TDM) & Frequency D...Multiplexing & DE Multiplexing( Time Division Multiplexing(TDM) & Frequency D...
Multiplexing & DE Multiplexing( Time Division Multiplexing(TDM) & Frequency D...
 
Nuclear power plant
Nuclear power plantNuclear power plant
Nuclear power plant
 
Global System For Mobile Communication
Global System For Mobile CommunicationGlobal System For Mobile Communication
Global System For Mobile Communication
 
Steam turbine
Steam turbineSteam turbine
Steam turbine
 
Gas power-09
Gas power-09Gas power-09
Gas power-09
 
Fundamentals of-refrigeration-systempdf
Fundamentals of-refrigeration-systempdfFundamentals of-refrigeration-systempdf
Fundamentals of-refrigeration-systempdf
 
Lectures upto block diagram reduction
Lectures upto block diagram reductionLectures upto block diagram reduction
Lectures upto block diagram reduction
 
Induction motors
Induction motorsInduction motors
Induction motors
 
Eee 223 oscilators
Eee 223 oscilatorsEee 223 oscilators
Eee 223 oscilators
 
EEE 321( Power System Analysis and Principle of Power System and Power syste...
EEE 321( Power System Analysis and Principle of Power System and Power syste...EEE 321( Power System Analysis and Principle of Power System and Power syste...
EEE 321( Power System Analysis and Principle of Power System and Power syste...
 
EEE 453( Semiconductor Switch and Triggering Device)
EEE 453( Semiconductor Switch and Triggering Device) EEE 453( Semiconductor Switch and Triggering Device)
EEE 453( Semiconductor Switch and Triggering Device)
 
Eee 223 power-amplifiers
Eee 223 power-amplifiersEee 223 power-amplifiers
Eee 223 power-amplifiers
 

Kürzlich hochgeladen

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
ssuser89054b
 
Online food ordering system project report.pdf
Online food ordering system project report.pdfOnline food ordering system project report.pdf
Online food ordering system project report.pdf
Kamal Acharya
 
1_Introduction + EAM Vocabulary + how to navigate in EAM.pdf
1_Introduction + EAM Vocabulary + how to navigate in EAM.pdf1_Introduction + EAM Vocabulary + how to navigate in EAM.pdf
1_Introduction + EAM Vocabulary + how to navigate in EAM.pdf
AldoGarca30
 
Navigating Complexity: The Role of Trusted Partners and VIAS3D in Dassault Sy...
Navigating Complexity: The Role of Trusted Partners and VIAS3D in Dassault Sy...Navigating Complexity: The Role of Trusted Partners and VIAS3D in Dassault Sy...
Navigating Complexity: The Role of Trusted Partners and VIAS3D in Dassault Sy...
Arindam Chakraborty, Ph.D., P.E. (CA, TX)
 
Integrated Test Rig For HTFE-25 - Neometrix
Integrated Test Rig For HTFE-25 - NeometrixIntegrated Test Rig For HTFE-25 - Neometrix
Integrated Test Rig For HTFE-25 - Neometrix
Neometrix_Engineering_Pvt_Ltd
 
Hospital management system project report.pdf
Hospital management system project report.pdfHospital management system project report.pdf
Hospital management system project report.pdf
Kamal Acharya
 
School management system project Report.pdf
School management system project Report.pdfSchool management system project Report.pdf
School management system project Report.pdf
Kamal Acharya
 
Verification of thevenin's theorem for BEEE Lab (1).pptx
Verification of thevenin's theorem for BEEE Lab (1).pptxVerification of thevenin's theorem for BEEE Lab (1).pptx
Verification of thevenin's theorem for BEEE Lab (1).pptx
chumtiyababu
 
"Lesotho Leaps Forward: A Chronicle of Transformative Developments"
"Lesotho Leaps Forward: A Chronicle of Transformative Developments""Lesotho Leaps Forward: A Chronicle of Transformative Developments"
"Lesotho Leaps Forward: A Chronicle of Transformative Developments"
mphochane1998
 

Kürzlich hochgeladen (20)

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
 
Online food ordering system project report.pdf
Online food ordering system project report.pdfOnline food ordering system project report.pdf
Online food ordering system project report.pdf
 
Introduction to Serverless with AWS Lambda
Introduction to Serverless with AWS LambdaIntroduction to Serverless with AWS Lambda
Introduction to Serverless with AWS Lambda
 
1_Introduction + EAM Vocabulary + how to navigate in EAM.pdf
1_Introduction + EAM Vocabulary + how to navigate in EAM.pdf1_Introduction + EAM Vocabulary + how to navigate in EAM.pdf
1_Introduction + EAM Vocabulary + how to navigate in EAM.pdf
 
Navigating Complexity: The Role of Trusted Partners and VIAS3D in Dassault Sy...
Navigating Complexity: The Role of Trusted Partners and VIAS3D in Dassault Sy...Navigating Complexity: The Role of Trusted Partners and VIAS3D in Dassault Sy...
Navigating Complexity: The Role of Trusted Partners and VIAS3D in Dassault Sy...
 
Block diagram reduction techniques in control systems.ppt
Block diagram reduction techniques in control systems.pptBlock diagram reduction techniques in control systems.ppt
Block diagram reduction techniques in control systems.ppt
 
Wadi Rum luxhotel lodge Analysis case study.pptx
Wadi Rum luxhotel lodge Analysis case study.pptxWadi Rum luxhotel lodge Analysis case study.pptx
Wadi Rum luxhotel lodge Analysis case study.pptx
 
Engineering Drawing focus on projection of planes
Engineering Drawing focus on projection of planesEngineering Drawing focus on projection of planes
Engineering Drawing focus on projection of planes
 
Integrated Test Rig For HTFE-25 - Neometrix
Integrated Test Rig For HTFE-25 - NeometrixIntegrated Test Rig For HTFE-25 - Neometrix
Integrated Test Rig For HTFE-25 - Neometrix
 
COST-EFFETIVE and Energy Efficient BUILDINGS ptx
COST-EFFETIVE and Energy Efficient BUILDINGS ptxCOST-EFFETIVE and Energy Efficient BUILDINGS ptx
COST-EFFETIVE and Energy Efficient BUILDINGS ptx
 
Design For Accessibility: Getting it right from the start
Design For Accessibility: Getting it right from the startDesign For Accessibility: Getting it right from the start
Design For Accessibility: Getting it right from the start
 
S1S2 B.Arch MGU - HOA1&2 Module 3 -Temple Architecture of Kerala.pptx
S1S2 B.Arch MGU - HOA1&2 Module 3 -Temple Architecture of Kerala.pptxS1S2 B.Arch MGU - HOA1&2 Module 3 -Temple Architecture of Kerala.pptx
S1S2 B.Arch MGU - HOA1&2 Module 3 -Temple Architecture of Kerala.pptx
 
Generative AI or GenAI technology based PPT
Generative AI or GenAI technology based PPTGenerative AI or GenAI technology based PPT
Generative AI or GenAI technology based PPT
 
kiln thermal load.pptx kiln tgermal load
kiln thermal load.pptx kiln tgermal loadkiln thermal load.pptx kiln tgermal load
kiln thermal load.pptx kiln tgermal load
 
Hospital management system project report.pdf
Hospital management system project report.pdfHospital management system project report.pdf
Hospital management system project report.pdf
 
School management system project Report.pdf
School management system project Report.pdfSchool management system project Report.pdf
School management system project Report.pdf
 
Verification of thevenin's theorem for BEEE Lab (1).pptx
Verification of thevenin's theorem for BEEE Lab (1).pptxVerification of thevenin's theorem for BEEE Lab (1).pptx
Verification of thevenin's theorem for BEEE Lab (1).pptx
 
"Lesotho Leaps Forward: A Chronicle of Transformative Developments"
"Lesotho Leaps Forward: A Chronicle of Transformative Developments""Lesotho Leaps Forward: A Chronicle of Transformative Developments"
"Lesotho Leaps Forward: A Chronicle of Transformative Developments"
 
Computer Networks Basics of Network Devices
Computer Networks Basics of Network DevicesComputer Networks Basics of Network Devices
Computer Networks Basics of Network Devices
 
Double Revolving field theory-how the rotor develops torque
Double Revolving field theory-how the rotor develops torqueDouble Revolving field theory-how the rotor develops torque
Double Revolving field theory-how the rotor develops torque
 

Network Security of Data Protection

  • 1. NETWORK SECURITY & DATA PROTECTION A FOCUS ON ORGANIZATIONAL THREATS AND POSSIBLE SOLUTIONS
  • 2. 1. There is a Hacker Attack Every 39 Seconds. Security Magazine 2. According to Mcafee, 300,000 New Malwares are created everyday. 3. According to FBI report in 2019 Cybercriminals earned about $3.5 Billion. bbc.com 4. 75 Records are stolen every second by Hackers. Breach Level Index 5. 66% of Businesses attacked by hackers were not confident of recovery. hostingtibunal.com 6. In 2019, 187.9Million ransomware attacks took place worldwide. statista.com 7. According to selfkey.org about 16 Billion records have been exposed through Data breaches between 2019 and June 2020 8. According to data from Juniper Research, the average cost of a data breach will exceed $150 million by 2020 2 WHY IS THIS IMPORTANT?
  • 3. DEFINITIONS WHAT IS NETWORK SECURITY? Network security consists of the policies and practices adopted to prevent and monitor unauthorized access, misuse, modification, or denial of a computer network and network-accessible resources. Network security involves the authorization of access to data in a network, which is controlled by the network administrator. Users choose or are assigned an ID and password or other authenticating information that allows them access to information and programs within their authority. Network security covers a variety of computer networks, both public and private, that are used in everyday jobs: conducting transactions and communications among businesses, government agencies and individuals. Networks can be private, such as within a company, and others which might be open to public access. Network security is involved in organizations, enterprises, and other types of institutions 3
  • 4. DEFINITIONS WHAT IS DATA PROTECTION? Data protection is the process of safeguarding important information from corruption, compromise or loss. The importance of data protection increases as the amount of data created and stored continues to grow at unprecedented rates. The context of data protection varies and the methods and extent also vary for each; there is data protection on the personal level, business or public entities, and that of data so highly classified that it should never fall into the hands of others aside from its owners. Consequently, a large part of a data protection strategy is ensuring that data can be restored quickly after any corruption or loss. 4
  • 5. HOW CAN NETWORK SECURITY IMPROVE DATA SECURITY 5 CONVENTIONAL SOLUTIONS Firewalls put up a barrier between your trusted internal network and untrusted outside networks, such as the Internet. They use a set of defined rules to allow or block traffic. A firewall can be hardware, software, or both Email gateways are the number one threat vector for a security breach. Attackers use personal information and social engineering tactics to build sophisticated phishing campaigns to deceive recipients and send them to sites serving up malware. An email security application blocks incoming attacks and controls outbound messages to prevent the loss of sensitive data. "Malware," short for "malicious software," includes viruses, worms, Trojans, ransomware, and spyware. Sometimes malware will infect a network but lie dormant for days or even weeks. Good Anti-Malwares not only scan for malware upon entry, but also continuously track files afterward to find anomalies, remove malware, and fix damage. FIREWALLS EMAIL GATEWAYS ANTI-VIRUS & ANIT-MALWARES Cloud security is a broad set of technologies, policies, and applications applied to defend online IP, services, applications, and other imperative data. It helps you better manage your security by shielding users against threats anywhere they access the Internet and securing your data and applications in the cloud. CLOUD SECURITY
  • 6. HOW CAN NETWORK SECURITY IMPROVE DATA SECURITY 6 CONVENTIONAL SOLUTIONS Not every user should have access to your network. To keep out potential attackers, you need to recognize each user and each device. Then you can enforce your security policies. You can block noncompliant endpoint devices or give them only limited access Cybercriminals are increasingly targeting mobile devices and apps. Within the next 3 years, 90 percent of IT organizations may support corporate applications on personal mobile devices. Of course, you need to control which devices can access your network. You will also need to configure their connections to keep network traffic private A virtual private network encrypts the connection from an endpoint to a network, often over the Internet. Typically, a remote-access VPN uses IPsec or Secure Sockets Layer to authenticate the communication between device and network ACCESS CONTROL MOBILE DEVICE SECURITY VIRTUAL PRIVATE NETWORK Wireless networks are not as secure as wired ones. Without stringent security measures, installing a wireless LAN can be like putting Ethernet ports everywhere. To prevent an exploit from taking hold, you need products specifically designed to protect a wireless network WIRELESS SECURITY
  • 7. SECURITY FOCUS-1 ORGANIZATIONAL BEHAVIOUR Individuals make up every Organization. Therefore their individual responses to security protocols will collectively determine how secured or porous an organizational network will be and consequently, the security of Data. Irrespective of the investment an organization make in securing its Data, as long as employers and employees do not recognize the need to intentionally follow Security Protocols, it will be a daunting task to win this Cyber War. Therefore Network Administrators, Data Managers and end user employees MUST engage in frequent trainings, both in Data Security and Management and to be individually responsible in looking out for the Safety of the Organizations’ Data Base. Remember, “HACKERS ARE HUNTERS WHO OBSERVE THEIR PREYS DAILY BEHAVIOURS UNTIL THEY FIND A WEAKNESS TO ATTACK” 7
  • 8. SECURITY FOCUS-2 ETHICAL HACKING Ethical Hacking is an authorized practice of bypassing system security to identify potential data breaches and threats in a network. . Remember the Saying: “It takes a thief to Catch a thief”? Its time Organizations take serious, engaging the services of Ethical Hackers. Ethical Hackers aim to investigate the system or network for weak points that malicious hackers can exploit or destroy. They collect and analyse the information to figure out ways to strengthen the security of the system, network and applications. By doing so, they can improve the security footprint so that it can better withstand attacks or divert them. NOTE: Before engaging Ethical Hackers, the Organization MUST go into a Non Disclosure Agreement and any other Data Protection Policy in order to safeguard their Data Privacy and Integrity. 8
  • 9. SECURITY FOCUS-3 BAN USE OF PIRATED SOFTWARE Do you know that every Pirated Software Installed is embedded with Malwares?. Cybercriminals are increasingly using this medium to infect computers, steal information, create botnets and carry out other illegal activities. The means through which people acquire pirated software has changed over time, with downloads from peer-to-peer networks such as BitTorrent becoming increasingly popular. Therefore the temptation to acquire them is high. Organizations must therefore take the bold step in getting rid of any sharp practices of using Pirated Software for their businesses because it’s a case of “Penny Wise Pound Foolish” The Cost of Data breaches can in no way justify the Cost of Acquiring counterfeit application programs. One of the most effective way for users to stay safe is to use genuine application programs, operating system and anti-virus software, which are updated and patched regularly. 9
  • 10. SECURITY FOCUS-4 NEXT-GENERATION ALL-IN-ONE ENDPOINT SOLUTIONS A Next-Generation Anti-Virus, Endpoint Detection and Response and a 24/7 Managed Threat Hunting Service running on One Platform is the Future to Combat Cyber Threats. These Endpoint Solutions are built around behavioral-based proprietary machine learning and Indicator-of-Attack (IOA) methodology, the solution prevents attacks pre-execution and is particularly effective at stopping new, polymorphic or obfuscated malware, which is often missed by legacy Anti-Virus solutions. These Endpoint Solutions are embedded with features that acts like a DVR on the endpoint, recording activity to catch incidents that evaded prevention measures. It ensures customers have comprehensive, real-time visibility into everything that is happening on their endpoints from a security perspective — eliminating the risk of “silent failure,” which allows intruders to remain in your environment undetected. Best of all, this technology can be fully deployed and operational in hours with zero maintenance costs or end-user impact. Some of these Solutions takes up just 40Mb disk storage and less than 3% CPU, with no rebooting or scanning required 10
  • 11. TECHNICAL ISSUES THAT CAN INTERFERE WITH THE WIRELESS NETWORK’S PERFORMANCE. I. It can be a problem if several employees in the building are using wireless networks. II. Wired networks can also interfere with a wireless signal. While rare, the interference can result in the loss of communication capabilities over the wireless network. Coverage Interference I. It can be slower if the organization has a large wireless network. II. To prevent this, many companies also use a wired or fiber-optic network as a “backbone”. I. It isn’t always as broad as you might need, especially if the building has a reinforced steel structure. This can cause “black spots”. II. These are areas where a wireless signal is not available Transmission speeds 11
  • 12. WEP was developed by the Wi-Fi Alliance in the late 1990s. It was the first encryption algorithm developed for the 802.11 standard, and it had one primary goal – to prevent hackers from accessing any data that was transmitted.  Unfortunately, by 2001, cybersecurity experts had found several flaws in the algorithm’s security. This led to cybersecurity experts recommending that consumers and organizations phase out WEP from their devices.  In 2009, it became apparent that WEP was not as effective as developers had stated when the massive cyberattack against TJ. Maxx was launched. The data breached comprised customers’ credit card accounts and cost the retailer $9.75 million in legal To authenticate users, WEP uses the Rivest Cipher 4 (RC4). The original model used a 40-bit encryption key, though it has been upgraded to a 104-bit key that is manually entered by the administrator. The key is used with a 24-bit IV (Initialization Vector) that helps to strengthen the password/encryption. The problem that often occurs is that due to the IV’s small size, administrators are likely to use the same keys. This makes the encryption easier to hack. WEP might have been the original algorithm for wireless networks, but over time it has shown that it is vulnerable to cyberattacks.  This is why other security protocols have been developed since the issues with WEP were discovered. 12 WIRED EQUIVALENT PRIVACY (WEP)
  • 13. WI-FI PROTECTED ACCESS (WPA) Once the flaws were discovered, and made public, in WEP the process to create a new wireless protocol was started. It takes time to write a replacement. To ensure that wireless network users still had protection, the Wi-Fi Alliance released WPA as a temporary replacement in 2003.  This gave the Institute of Electrical and Electronics Engineers Inc. (IEEE) time to create a viable replacement for WEP. Even though WPA is considered an interim security algorithm, it is an improvement over WEP. It has discrete modes for personal and business use for improved security.  In personal mode, preshared keys are used to make it easier to implement and manage the network among employees and consumers. Business or enterprise mode requires an administrator to authenticate a device before it can access the network. This allows larger companies to have more control over who has access to the data. WPA is based on the RC4 cipher like its predecessor WEP, only it uses TKIP (temporal key integrity protocol) to boost wireless security. This includes, Using 256-bit keys to reduce keys being reused Generating a unique key for a packet by key mixing per packet Automatically broadcasting updated keys and usage Integrity checks of the system IV size increased to 48 bits Since WPA was designed to be compatible with WEP, IT professionals found that they could easily update to the interim security protocol for their wireless network. All they needed was a simple firmware update. While switching protocols was simple this also created potential security risks since it was not as comprehensive as developers and users hoped it would be. 13
  • 14. WI-FI PROTECTED ACCESS 2 (WPA2)  The replacement for the interim WPA, the IEEE released WPA2 in 2004. There are still some security vulnerabilities with WPA2, but it is still considered one of the most secure wireless network protocols available for personal and business use.  While like WPA, it also offers users personal and enterprise/business modes. WPA2 also has several security improvements.  These include replacing TKIP and the RC4 cipher with stronger authentication and encryption mechanisms – CCMP (Cipher Block Chaining Message Authentication Code Protocol) and AES (Advanced Encryption Standard).  If your device cannot support CCMP, the security algorithm is still compatible with TKIP. This helps to ensure that WPA2 is compatible with all devices and wireless networks.  AES was originally developed by the United States government to protect classified data from foreign and domestic hackers. It uses three symmetric block ciphers with each one encrypting and decrypting incoming and outgoing data using 128, 192, and 256-bit keys.  This security protocol for wireless networks does use  CCMP prevents everyone except for authorized users to receive data by using cipher block chaining. This helps to ensure the integrity of the message.  WPA2 also allows for more seamless roaming from one access point to another without having to reauthenticate user access. This can improve productivity and client relations. Data can be transferred seamlessly, without having to take extra authentication steps.  After reviewing the three security protocols for wireless networks, WPA2 is a welcome replacement for WEP and the temporary algorithm WPA. Knowing which protocol provides the best wireless security is helpful, but so is knowing exactly how it works. If you know how threats are being blocked, you’ll be better equipped at recognizing any issues that might get through 14
  • 15. HOW SECURITY PROTOCOLS FOR WI-FI WORK When WPA2 was created to replace WEP and WAP, it was thought that this security protocol was almost impossible for hackers to crack. With its larger IV size to prevent key reuse and other improvements, companies and individuals began to believe that their wireless networks were safe. In 2017, this changed when a vulnerability in the protocol was discovered. Hackers could take advantage of a system weakness by posing as an access point. This would allow them to access the data and this breach is known as a Key Reinstallation Attack (KRACK). This vulnerability did cause concern with wireless network uses, and patches were created to prevent data from being stolen. The only problem with this remedy is that not everyone may have gotten the patches installed in time or even be aware that their wireless network might be at risk. This particularly applies to public wi-fi hotspots and companies with older networks. To understand how wireless security protocols can be vulnerable, it’s helpful to know how encryption codes work. 15
  • 16. UNDERSTANDING ENCRYPTION WEP: I. As previously mentioned, WEP has the weakest security since it uses radio waves to transmit messages. II. This already makes it easy for hackers to steal the information as it travels. III. It will still be encrypted when it reaches an unauthorized party, but WEP uses the same encryption key for all messages making it easy for hackers to crack. IV. There is software available that can crack WEP encryption in minutes. WPA: I. This interim security protocol uses TKIP (temporal key integrity protocol) for wireless protection. II. It is an improvement over WEP since it resolved two problems associated with the old protocol. The key length is increased and a unique 48-bit number is assigned to each message. III. This makes it more difficult for hackers to break the encryption code. IV. While TKIP did fix some of the security issues with WEP, it was still vulnerable since it was only created to be a temporary patch. WPA2: I. The replacement for WEP and WPA, this security protocol is compatible with TKIP and the stronger AES encryption. II. Older computer systems might not be compatible with AES, so TKIP can be back-ended for encryption. III. The main security issue with TKIP is that any authorized computer can access messages. 16
  • 17. 17
  • 18. 18 3. Findings and Conclusion  Need to develop a human induced sinkhole risk index (SRI).  Use of a WSN system to find a method more reliable, energy efficient, and time-saving.  Application of previous WSN method for underground pipeline monitoring for sinkhole monitoring, detection, and prevention.  Pipeline property measuring sensors must replace soil property measuring sensors: water content, soil bearing capacity, and pH.  Sewer pipelines need more concentration to prevent sinkhole.  A lot of water distribution system management methods actual field implementation is less than consideration.  So to find out the real field implementation, water providing agencies, and research institutes must collaborate to overcome this gap.  The findings from each analysis and literature review show that previous researchers have not contributed considerably to overcome the issue of the sinkhole caused by the fault in the underground water distribution system.
  • 19. 19  Steps  Instructions  Concept/Main Purpose[Abstract/Introduction]  Problem[technological significance or any problem solved→ look in the Introduction part of this paper]  Solutions[Experiment/Methodology+ Discussion]  Discussion[Conclusion] o C1;P2;L3;S4 Review Paper
  • 20. THANK YOU NETWORK SECURITY & DATA PROTECTION