Major Importance of Network Security - Research Paper Example

? Full Paper Network Security In a world where information flows incessantly, companies usually spend a lot of in their endeavor to attain secure computer systems, including servers, firewall and security software, in addition to other areas of computer security such as the physical space and the rules of access. In this respect, owning the latest technology of software protection and operating system monitoring software are not very efficient if a malicious employee can access critical information on the system and divulge it off the premises of the workplace. Hence, security of a system is an integral package of restriction of physical and virtual access to the system. Security requirements have substantially changed recently. Traditionally, securing a system was provided by preventing access (physical and ethically) to the secure system. However, with the introduction of computer technology, there was a need to develop automated security appliances for protecting the network and data of an organization. Due to vast rise in threats, vulnerabilities, hacking and cyber crimes, firewalls become mandatory as the first choice to implement for securing the network and data for every computer network. Firewalls Computer Security is the general term for a set of resources designed to help protect data and ruin the efforts of hackers. Moreover, it is a set of measures to protect data during transmission over a set of interconnected computer systems. Hence, security is a set measures for deterrence, prevention, detection and correction of security threats that can damage or divulge information either locally or when transmitted. Hence, certain security mechanisms that are designed to detect, prevent and restore security after an attack. Consequently, many network appliances are invented to secure a network. The most popular network security appliance that is used in almost every small or corporate network to provide security is a firewall. Firewall is defined as “a combination of hardware, software, and procedures that controls access to an intranet. Firewalls help to control the information that passes between an intranet and the Internet. A firewall can be simple or complex, depending on how an organization decides to control its Internet traffic. It may, for example, be established to limit Internet access to e-mail only, so that no other types of information can pass between the intranet and the Internet” (Firewall.2007). Firewalls are network security devices that are categorized in hardware-based firewalls and software-based firewalls. The hardware-based firewalls are more secure, as they are not dependent on the operating system. On the other hand, software-based firewalls are dependent on the operating system that may demonstrate risks. The choice from these options depends on the cost as well. However, a full features firewall may protect the computer network from hackers or cyber criminals. It will detect, block and quarantine viruses and malicious codes that tries to enter in the network. Moreover, configuration on the local area network demonstrates a graphical user interface to ensure that each preventive measure is active and running (Agnitum outpost persona firewall pro 2.0.2004). Benefits Constant monitoring of security is achievable via a firewall implementation. As all modifications and logs are stored in a firewall, that are divergent of distribution on hosts on the network. Firewall also provides the protocol-filtering capability as it filters protocols and services associated with them in order to secure them from exploitation. Moreover, firewall hides inbound communication of the network from the outbound network that is also called a wide area network (ADVANTAGES OF FIREWALL). Furthermore, the use of computer networks and communication lines require protecting data during transmission. In addition, firewalls also provide centralized management for the network. This is an ultimate advantage for the network security staff within an organization as the management and configuration of the overall network is possible by accessing a device. Security and access policies can also be configured centrally on the device, as the firewall is the first point of contact for data packets before making their presence to the inbound network of an organization. Facilitating Network Administration and Configuration Network administrators or security specialists conduct the administration and configuration of a firewall. Later, these concerned personnel monitors and modify changes as per the requirements of business processes and policies of an organization. The features of a typical firewall facilitates security specialist with a great extent. Many products in the market are designed to offer more than one WAN port connections as they are categorized in low bandwidth usage and high bandwidth usage. Consequently, administrators can connect a lower bandwidth connection in the low bandwidth usage port and high bandwidth connection can be used to connect high profile users who require high bandwidth Internet connectivity. As two connections can be terminated on the firewall, load-balancing features are also achievable. Moreover, if any connection from the two mediums goes offline, the firewall switches the traffic on the other medium that is operational resulting in efficient WAN network connectivity (Soho firewalls.2002). Supports Packet Filtering Furthermore, firewalls are integrated with proxy servers to provide an optimum level of security for the network. Although, some configuration procedures are mandatory to follow in order to establish firewall security based on configurations. A typical packet filtering firewall is required. The packet filtering firewalls judge the behavior of each packet and then verifies the rule base that includes exceptions and firewall security policies in order to deny or grant permission to a particular data packet. After receiving a data packet, the firewall will determines whether the packet requires proxy filtering. Consequently, firewall plays a role as a dynamic filter on a control channel linking the application layer and the proxy layer. This combined security mechanism significantly amplifies security for the network (Nelson, 1998). Acts as a Circuit Level Gateway Firewall also operates as a circuit level gateway. As per network dictionary, it is defined as “A circuit level gateway is sometimes described as a second generation firewall. It is a fast unrestricted passage through the firewall based on predefined rules maintained in the TCP/IP kernel.” The architecture of a circuit level gateway analyzes handshaking of packets in a data communication channels or sessions on the network, to verify whether the channel is genuine or not. The traffic is filtered by analyzing rule base on the arrival of each packet. Moreover, circuit level gateway provides enhanced security by hiding particulars of workstations that have established a remote session from any computing device outside the network. The computing device outside the network will receive only the gateway address i.e. the firewall. Acts as an Application Gateway As per network dictionary, application gateway is defined as “Application Level Gateway (ALG), also known as Application Layer Gateway, is a type of gateway that consists of a security component that augments a firewall or NAT employed in a computer network. It allows legitimate application data to pass through the security checks of the firewall that would have otherwise restricted the traffic for not meeting its limited filter criteria”. The application gateways are also categorized as software-based firewalls. These types of firewalls provide advantages in terms of securing a personal computer located at home from hackers and intruders. Moreover, application gateway also facilitates parents to incorporate parental controls for children. These firewalls provide in depth level of security and access control for the organizations. Likewise, these firewalls do not allow granting permission to any data packet related to COM and EXE extensions. In addition, to provide enhanced security, the firewall does not allow direct session of data communication with any node on the inbound network. Consequently, application gateway firewall protects the network of an organization with viruses, malicious codes, Trojans, unauthorized access and denial of service attacks (ADVANTAGES OF FIREWALL). Advanced Firewalls named as Intrusion Detection Systems Currently there are two conventional methods to detect threats and vulnerabilities on the network i.e. anomaly based IDS and signature based IDS. The signature based IDS analyze and identify specific patterns of attacks that are recognized by raw data that is in terms of byte sequences called strings, port number, protocol types etc. Likewise, apart from the normal operational pattern, signature based firewall detects any activity that is unusual from previously defined patterns. Moreover, the patterns are monitored with strict control algorithms. The signatures are stored in a signature repository. The prime object of a ‘signature based IDS’ is to search signatures in order to detect a threat or vulnerability that is similar to antivirus software that also detects viruses. The functionality includes the detection of attacks that are initiated directly towards the network. Moreover, firewall tries to identify as many events as possible and therefore generate logs. The detection engine compares predetermined rules in order to deny or accept packets. The rules are categorized in two domains i.e. Chain headers and Chain options. The structure of a signature contains the following attributes: Identification number, Messages and Rules. This particular firewall adds optimal levels of security as it concentrates on network activities constantly. Work Cited ADVANTAGES OF FIREWALL Retrieved 5/4/2011, 2011, from http://www.scribd.com/doc/22594454/ADVANTAGES-OF-FIREWALL Firewall. (2007). Bloomsbury Business Library - Business & Management Dictionary, , 3113-3113. Agnitum outpost persona firewall pro 2.0. (2004). District Administration, 40(2), 68-68. Soho firewalls. (2002). PC Magazine, 21(1), 29. Nelson, M. (1998). Two faces for the firewall. InfoWorld, 20(41), 1. Circuit level Gateway/Firewall. (2007). Network Dictionary, , 99-99. Read More