Digital Securitiy Prevention Methods Flashcards
Anti-virus and anti-malware - Digital Security Prevention Methods
- Anti-malware software runs on the computer
- Large organizations need enterprise management
- Mobility adds to the challenge
Host-based firewalls - Digital Security Prevention Methods
- “Personal” firewalls - Software-based
- Stops unauthorized network access
- Stateful firewall
- Blocks traffic by application or port number
Network-based firewalls - Digital Security Prevention Methods
- Filters traffic by port number
- Can encrypt and proxy traffic across the network
- Most firewalls can be layer 3 devices (routers)
Multi-factor authentication - Digital Security Prevention Methods
- Something you are, something you have, something you know, somewhere you are
- Something you do
Directory permissions - Digital Security Prevention Methods
- NTFS permissions - Much more granular than FAT
* User permissions - Everyone isn’t an Administrator
VPN concentrator - Digital Security Prevention Methods
- Encrypt (private) data traversing a public network
- Concentrator - Encryption/decryption device
- Used with client software
Data Loss Prevention (DLP) - Digital Security Prevention Methods
- SSN, credit card numbers, medical records
- Stop the data before the bad guys get it
- Often requires multiple solutions
Disabling unused ports - Digital Security Prevention Methods
- This is a good best-practice
- Requires additional maintenance and vigilance
- Plan on periodic reviews
Access control lists (ACLs) - Digital Security Prevention Methods
• Permissions associated with an object
• Used in file systems, network devices, operating
systems, and more
Email filtering - Digital Security Prevention Methods
- Stop it at the gateway before it reaches the user
- On-site or cloud-based
- Scan and block malicious so ware
