2006-06-16 00:46:06 · 4 answers · asked by Anonymous in Computers & Internet ➔ Security
That is quite a large question. I am a CISSP and will do my best to answer. Network security, in general, is locking down your computer network to prevent unlawful or undesired usage of your network resources. Network Security is handled on multiple levels. Usually the first level is through the use of firewalls and filters (e.g. on a router). All network traffic can be funneled through a firewall. The firewall contains a set of rules (based upon the security policies of the network owner) that deny unwanted traffic in or out of the network (e.g. www.pornosite.com) Different firewalls have different capabilities and ways of lookign at the traffic. Some just filter things like web addresses while others do much, much more.
Another device used for network security is called IDS which is intrusion detection system. An IDS box looks for known traffic patterns that are known to be associated with malicious or unwated behaivor such as port scanning. An IDS alerts an administrator when malicious or unwanted traffic is detected. One step up from that is Intrusion Protection (IPS) which can be confiugred to actually shut down the offending data stream automatically.
Good Network Security also includes system security such as passwords, virus checks, educated users, etc.
There are lots and lots of ways to handle network security but the primary model is called defense in depth. This model puts in multiple layers of protection onto the network. Think of a secured building - a secured building has multiple layers of defense such as a perimeter fence, armed guards, dogs, cameras, badge readers, combination locks on exterior and interior doors, etc, etc. Network Secuity can be handled much the same.
In the end, Network Security will start with a sound Security Policy. You must first define what is allowed and what is not allowed behaivor before you can start throwing systems at it.
2006-06-16 04:52:47 · answer #1 · answered by Madhouse 3 · 5⤊ 1⤋
2
2016-08-24 23:12:05 · answer #2 · answered by ? 3 · 0⤊ 0⤋
it's network securty !!
it's policies , permisions , crtificates , protocoles ,user accounts , and many more things that don't let any one acces any thing that should not ;)
2006-06-16 00:53:18 · answer #3 · answered by neotoop 3 · 0⤊ 0⤋
Securing the network from malicious attacks such hackers or virus ets DUH!!!!!!!!!!
2006-06-16 00:51:44 · answer #4 · answered by Chris 2 · 0⤊ 0⤋