1.4.2 Flashcards
what are the common prevention methods for network security?
-penetration testing
-network forensics
-anti malware software
-firewalls
-user access levels
-passwords
-encryption
-good network policy
describe penetration testing
-employ specialists to simulate attacks on their network
-used to identify security weak points
describe network forensics
-investigations to find cause of attacks
-after attack packets are analysed to discover how to prevent it recurring
describe anti malware software
stops malware damaging a network by destroying viruses
describe firewalls
-security which monitors incoming and ongoing data
-unauthorised access is blocked
describe user access levels
-controls user access
-limits peoples access to sensitive info to prevent insider attacks
describe passwords
-help prevent unauthorised access
-need strong passwords
describe encryption
when data is translated so that only the user with the correct key can access the data
describe good network policy
-regular testing finds security issues
-passwords prevent unauthorised access
-user access levels limited
-anti malware and firewall software installed
-encrypt all sensitive data
how can you prevent passive attacks?
encryption so the intercepted data cannot be understood
how can you prevent active attacks?
firewall and antivirus software
how can you prevent insider attacks?
user access levels to control how much data people can access
how can you prevent brute force attacks?
making passwords difficult to guess and locking accounts after failed attempts
how can you prevent denial of service attacks?
this attack is hard to prevent but a firewall can help
how can you prevent SQL injection attacks?
having strong validation on all input boxes so that only expected data can be entered
