Please enable JavaScript.
Coggle requires JavaScript to display documents.
GROUP 8 : SECURITY TO PROTECT NETWORK PART 3 : SECURITY TO PROTECT…
GROUP 8 : SECURITY TO PROTECT NETWORK
PART 3 : SECURITY TO PROTECT NETWORK
DATA LOSS PREVENTION
IMPLEMENTATION
Can be endpoint-based (monitoring user activity on workstations), network-based (inspecting network traffic), or database-based (monitoring data access). Uses techniques like content filtering, fingerprinting, and watermarking.
EXAMPLE
Blocks emails containing credit card numbers, prevents copying sensitive files to USB drives, monitors database access for unauthorized queries.
FUNCTION
Prevents sensitive data from leaving the organization's control.
FIREWALL
FUNCTION
-Control network traffic based on pre defined rules.
-Act as a barrier between the internal network and the internet
I
MPLEMENTATION
-Can be hardware or software based
-Should be configured to allow only necessary traffic
EXAMPLE RULES
Allow HTTP/HTTPS to web servers in the DMZ (demilitarized zone) firewall,allow SMTP (Simple Mail Transfer Protocol) to mail server,deny all other inbound traffic from the internet
TRAFIC FILTERING
FUNCTION:
Traffic filtering helps manage and block harmful or unnecessary data from entering or leaving the network.
This reduces security risks.
Deep Packet Inspection (DPI)
What It Does:
Looks inside data packets to check for malicious content (e.g., viruses or attacks).
Why It’s Useful:
Detects hidden threats in network traffic that simple firewalls might miss.
URL Filtering
What It Does:
Blocks access to harmful or inappropriate websites.
Why It’s Useful:
Prevents access to phishing sites, malware, or time-wasting websites.
Bandwidth Control
What It Does:
Manages how much data certain traffic types use (e.g., prioritizes important work apps).
Why It’s Useful:
Keeps the network running smoothly by preventing congestion and ensuring important traffic gets priority.
SECURE PROTOCOLS
FUNCTION
Secure protocols protect data during transmission by ensuring encryption and authentication.
HTTPS (SSL/TLS)
What It Does:
Encrypts web traffic to secure sensitive data like passwords or credit card numbers.
Why It’s Useful:
Ensures that any sensitive data sent over websites is encrypted and protected from eavesdropping.
SSH (Secure Shell)
What It Does:
Allows secure remote access to servers and devices.
Why It’s Useful:
Prevents hackers from intercepting login credentials or commands when managing devices over a network.
IPSec (VPN)
What It Does:
Secures communications between devices, often used in VPNs to protect data over the internet.
Why It’s Useful:
Provides a secure, encrypted connection for users or offices to access the network remotely.
FTPS (Secure FTP)
What It Does:
Encrypts file transfers to secure sensitive data being sent over the internet.
Why It’s Useful:
Protects files from being intercepted while transferring between a client and server.
NETWORK INTRUSION DETECTION SYSTEMS
EXAMPLE
Detects port scans, denial-of-service attacks, or attempts to exploit known vulnerabilities.
IMPLEMENTATION
Can be placed inline or passively monitoring and alerting
FUNCTION
Monitors network traffic for malicious activity