Attack Prevention Article Evaluation - Essay Example

The User Domain, one of seven domains in an IT infrastructure, is considered to be the domain most at risk for attack and compromise, primarily due to the inherent weakness of the human interaction element. There are several types of attacks on the User Domain that are prevalent, as they can be quite successful against an uninformed or untrained employee. By implementing good company policies and ensuring that best practices against these attacks are used, an organization should be able to mitigate the risks found in the User Domain.

The whole focal point of User Domain is to ensure that segregation of duties is conducted in computer’s main frame. Before attempting to observe the issue, it is essential to understand the focal point of user domain itself. This is a huge focal point in managing security in IT networks. In essence, user domain is defined as set of objects that allow a user to have controls and permissions. In essence, user domains can overlap. Another element of user domains is the fact that is allows users to possess segregation of duties.

Segregation of duties allows users to have separate domains and grant permissions. User domains can range from simple user access accounts or it can be a specific domain such as sales, marketing, and managers. Unlike traditional firewalls that only guard the parameters of the traditional IT infrastructure, virtualization firewalls provide comprehensive security measures that monitor activity within clients. If one machine is to be attacked by a host, the other machine automatically copies data in almost dynamic time that the user is not aware of the situation.

Clearly, that is a huge benefit for organizations since it allows them to have a safety net in case of an attack. The Intrusion Detection System (IDS) is a critical precautionary tool that monitors the network through monitoring packets that are passed within users. The first and easiest application of virtualization for security purposes is known as application isolation. This is a huge component towards the security aspect because it allows IT managers to gain leverage over application stability and application allocation.

One of the worst vulnerabilities for user domains are insider attacks. Insider attacks occur. For instance, denial of service and spoofing are one the most common themes that occur. The problem is the fact that intercepting authentication or other sensitive information can be executed with the current WAN technology since it utilizes the traditional TCP/IP in user domains.A huge problem with human engineering is avoiding SQL Ad hoc injections. The fourth element that important to address was to rectify the SQL ad hoc injections.

In essence, the intruder can easily get access to the SQL and execute queries to derive personal information. In any given website, sensitive information may be present such as password and usernames, which can lead to further information. The first remedy to this solution is to place this network in a private server that saves all the sensitive information. Moreover, it embeds hierarchy of database permissions that build a layer of security within SQL. For instance, if the user table would not succeed in running a query, it will only allow SELECT access command instead of update/delete.

This means that the intruder cannot modify the contents within the SQL.Lastly, this article talked about updating the OS to ensure that security risks are rectified.In order to ensure that vulnerabilities are addressed, certain elements need to be addressed. First and foremost, OS has to be updated in regards of software Vulnerability. Updating to the new OS ensures that the system is not outdated and seals doors for advanced intruders. Furthermore, an effective patch management process can close vulnerabilities before malicious users or worms have an opportunity to exploit them.

Works Cited10 security best practice guidelines for businesses | ZDNet. (n.d.). ZDNet. Retrieved April 20, 2014, from http://www.zdnet.com/10-security-best-practice-guidelines-for-businesses-7000012088/