Contact us today!
217-428-6449

Network Solutions Unlimited Blog

A Brief Overview of Network Security

A Brief Overview of Network Security

The reliance the modern business has on its IT cannot be understated. As a result, to keep their computing network and infrastructure running efficiently, companies need to have a network and cybersecurity policy in place. With the development and use of organizational computer networks with multiple endpoints, understanding the basics of network security is helpful when implementing and employing network security systems. Today, we take a look at the parts of your network, their functions, and what you need to do to protect them.

Network Hardware
Your business’ computing network consists of, at the very least, two connected machines set up to share resources. Most of the time, a business network consists of centralized computers called servers, and endpoints called workstations. Major networking components (working backward from the endpoint) include, network switches (that allow multiple workstations to be connected in packets); a router (that allows for wired or wireless connection to the network); and the modem (that connects the network to the Internet). On your network can be all types of other accessories (printers, scanners, copiers, and more).

Today, wireless networks have been deployed to provide additional mobility. In this case the router, which would have to have Wi-Fi capabilities, allows mobile endpoints (laptops, smartphones, tablets, and IoT devices) to connect to, and share the files on, an organization’s network. This promotes mobility by allowing the sharing and use of files without being physically connected to the network.

Network Protocol
The network protocol is a set of rules that work to control communications between devices connected to the same network. They make connections and set rules for data packaging for both sent and received messages. Popular protocols include:

  • Transmission Control Protocol and Internet Protocol (TCP/IP)
  • Address Resolution Protocol (ARP)
  • Domain Name System (DNS)
  • Secure Shell (SSH)
  • File Transfer Protocol (FTP)
  • Dynamic Host Configuration Protocol (DHCP)
  • Hypertext Transfer Protocol (HTTP)
  • Hypertext Transfer Protocol Secure (HTTPS)
  • Internet Group Management Protocol (IMAP4)
  • Post Office Protocol version 3 (POP3)
  • Simple Mail Transfer Protocol (SMTP)

There are many more, and every protocol is basically the building blocks of a deliberate interaction. Each protocol works to connect one part of a computer to another. Much like a bank has procedures in place to help keep your money safe, protocols are the procedures at work to keep your data safe.

Securing TCP/IP is especially important. TCP/IP communications are made up of four layers that work together. When a user wants to send information across networks, the information is passed through each layer, each adding data. Each layer features a header and a payload. The header contains layer-specific information, while the payload consists of the information that has come from the layer above it. To illustrate this a little better, we’ll describe the four layers in TCP/IP communications:

  • Application Layer: This layer sends and receives the information for particular applications, with protocols such as DNS, HTTP, HTTPS, and SMTP. Each application has to have its own specific protocol.
  • Transport Layer: This layer of connected (or connectionless) services are for transporting application layer services between networks and works to assure that connections are reliable. TCP and User Datagram Protocol are commonly used in the transport layer.
  • Internet Layer: This layer routes the data packets across networks. Internet Protocol (IP) is at the heart of this layer. IP specifically allows information streams to be broken up into segments known as data packets (known mostly as “packets”) and works to define and establish the Internet, as we use it, through addressing and routing.
  • Network Access Layer: Finally, the network access layer is in place to define the method of use within the scope of the local network link. It adds the protocols used to define the relationships used to transmit and receive data packets from the other layers.

With so many moving parts every time you send and receive information over the Internet (and within your own Intranet), you can see how difficult it is to keep the network free from threats. Now that you’ve got a small introduction to what each layer in your TCP/IP-run command does, we can now look at the vulnerabilities (and fixes).

Vulnerabilities
The main security problem with any type of network is the dreaded “unauthorized user”. An attacker can connect through an unsecure hub/switch port. As a result, wireless networks traditionally are considered less secure than wired networks, as they can be accessed without a physical connection. Once in, a nefarious actor can steal valuable information, deny service to legitimate users, or spoof the physical identity of the network to steal more data. Here are a few TCP/IP vulnerabilities:

  1. ARP spoofing - Used to deliberately steal sensitive information, or to facilitate denial-of-service-attacks, session hijacking, man-in-the-middle attacks and more.
  2. Port scanning - Used to see what services are available to exploit.
  3. IP spoofing - Sending packets from what is seemingly a trusted address, while sending malware or stealing data.
  4. DNS spoofing - The Domain Name System associates domain names with IP addresses. So devices that connect to the Internet can have their DNS spoofed and reroute the info to a different IP address.

What to Do About It
Once the “bad” data has been sent to you there is very little you can do. That’s why we tell everyone that they need to be proactive about securing their IT. At Network Solutions Unlimited, we can help you meticulously maintain your software, monitor your files, permissions, and access, and deploy today’s strongest network and cybersecurity strategies to keep threats from hampering your business. For more information, contact us today at 217-428-6449.

Know Your Technology: Computer Forensics
How to Balance Your IT’s Value Against the Cost
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Saturday, October 20 2018

Captcha Image

Mobile? Grab this Article!

QR-Code

Tag Cloud

User Tips Shadow IT Data storage Black Market Wireless Charging Professional Services Benefits Ciminal Office Tips Solid State Drive Data Storage Maintenance Root Cause Analysis BYOD Productivity Accessory Automobile Technology FAQ Phone System Users OneNote App Monitor Devices Touchpad Identity Theft Tablets Students The Internet of Things Miscellaneous HIPAA Best Practices Mobile Security Information Technology Remote Monitoring Save Money WIndows Server 2008 Office Windows Business Intelligence WiFi MSP Loyalty PowerPoint File Sharing Two Factor Authentication Worker Commute Hybrid Cloud Network Rootkit Tech Support Managed Service Provider IT Support Worker Emails Charger Computer Care Vendor Management Battery Efficiency Cost Management Audit Computer Accessories Tech Term Saving Money Computing Business Technology Malware Connectivity Cloud VPN Applications Retail Internet Cloud Computing Information Networking Updates Computing Infrastructure Private Cloud Google Drive Humor Employer Employee Relationship Spyware User Error Windows 10 Relocation Disaster Recovery Cybersecurity Data Privacy Best Practice Cybercrime Patch Management Telephone Fraud Smartphone Commerce Virus Apps Big Data Identity Avoiding Downtime Bandwidth Backup Business Owner Language Wireless Technology Wasting Time Physical Security Wireless Internet Passwords Colocation Application Data Recovery Alexa for Business Twitter Quick Tips Monitoring IT Services Google Content Hiring/Firing Marketing Smartphones Business Password Content Filter Router Internet of Things Proactive IT Server Tip of the Week IT Management Wi-Fi VoIP Financial Technology Cache Emergency Files Screen Mirroring Communication Managed IT Service Outlook CrashOverride Settings Computer Fan Ransomware Safety Dark Web Smart Technology Unsupported Software Save Time PDF Audiobook Internet Exlporer Value IT solutions Meetings Cortana Device Security Legal Redundancy Video Games Employer-Employee Relationship Public Computer Peripheral Cleaning Mobile Unified Communications Display Management Alert Phishing Document Management Lifestyle Data Theft Gifts iOS Public Cloud Mobile Device Management Business Management Hardware Windows Ink Augmented Reality Television Hyperlink Unified Threat Management Co-Managed Services Word BDR Administration Gadgets HBO Chromebook Laptop Artificial Intelligence Windows 10 Office 365 Automation Managed Service Small Business Blockchain Health Camera Data Protection Computers Wasting Money Congratulations Upgrade Hard Drive Google Docs Bring Your Own Device Transportation Budget Browser Monitors Vendor hacker Mobile Devices Advertising Books Travel Work/Life Balance Gmail Analysis Troubleshooting Conferencing Recovery WPA3 Testing Data Management Government Consultant Update Managed IT Data Loss Collaboration Scalability Company Culture Websites Software Hosted Solutions Social Media Techology Evernote Vulnerability Virtual Assistant Credit Cards Chrome Hard Disk Drive Computer Licensing App store Business Continuity Adobe Data Breach History Managed IT Services Bluetooth HaaS USB Facebook Keyboard Innovation Microsoft Electronic Medical Records Nanotechnology Virtualization Flexibility Network Security Printers Remote Computing Assessment Training IT Support How to Google Maps Operating System Employee-Employer Relationship Windows 10s Windows 7 Outsourced IT Streaming Media Google Assistant Managed IT Services Thank You Internet exploMicrosoft Instant Messaging Law Enforcement Social Engineering Microsoft Office Mobility Two-factor Authentication Scam Hacking IT Solutions Sync Upgrades Sales Financial Software as a Service Going Green Microsoft Word Hard Drives Virtual Reality Privacy Data Backup Personal Information Firewall Sports Antivirus Data Security IT budget Samsung End of Support Productivity Managing Stress Telephone Systems Data Risk Management Regulation Spam Blocking Experience Memory Amazon Projects Security Mobile Device Communications Android eWaste Gamification Storage How To Specifications Encryption Hosted Solution Comparison WannaCry Project Management Legislation Identities Spam Workers Compliance Content Filtering File Storage IoT Politics Downtime Smart Tech NFL Wireless Proactive Chromecast Workplace Tips Printing Robot Webinar Excel Customer Search SaaS Reputation Shortcut Email Business Computing Hackers Microsoft Excel Education Money Touchscreen Holiday Cast Edge Computer Forensics iPhone Apple Entertainment intranet