Network Security Jobs
It is essential to understand the fundamental concept of computer networks in order to grasp the principles of network security. A network comprises of the infrastructure components through which computer systems and shared peripherals communicate with each other. The Internet is considered as the world’s largest network of networks. When a person accesses the resources presented by the Internet, he/she does not gets connected to the Internet rather a connection is established with a network that is finally connected to the Internet backbone. It is obvious that larger the network larger the risk of network threat.
Transmission Control Protocol/Internet Protocol (TCP/IP) is considered as the language of Internet. This protocol is an “open” protocol and any one is free to implement it. The IP layer is a “network layer” and allows the host to communicate with each other. The IP layer is responsible for carrying out datagram’s, mapping the Internet address to a physical network address, and routing. The IP is very much prone to attacks since it does not provide a strong mechanism for authentication. Some common IP attacks are IP Spoofing and IP Session Hijacking. TCP is a transport layer protocol and sits on top of IP.
Network Security is the phenomenon of protecting the network and network-accessible resources from unauthorized access. Network security starts from authenticating any user. Once authenticated, a firewall administers access policies that are allowed to be accessed by the network users. Though firewalls prevent unauthorized access, but it fails to check potentially harmful contents such as computer worms from being transmitted over the network. An intrusion prevention system (IPS) is used to detect and prevent such malware. There are three types of firewalls application gateways, packet filtering and hybrid systems. The application gateways run at the application layer of the ISO/OSI Reference model. In packet filtering, routers having Access Control Lists (ACL) are turned on.
Firewalls provide only one entry point to the network. Modems answering to incoming calls are more prone to an attack. To avoid this problem certain secure network devices like secure modems, dial-back systems, crypto-capable routers, virtual private networks (VPN) are used. Crypto-Capable Routers have the capability of using session encryption between specified routers in order to ensure a secure connectivity. VPNs provide direct connectivity between two offices in a manner to a private leased line. The link between the two users is completely encrypted. Decoy network-accessible resources like Honeypots, could be deployed in a network for surveillance and early-warning of a threat. Techniques used by the attackers that attempt to compromise these decoy resources are studied during and after an attack to keep an eye on new exploitation techniques. Such analysis could be used to further tighten security of the actual network being protected by the honeypot.
KoreOne has a huge resources for job seekers in Network Security profession and the companies. Job seekers could get the right information about job resources and the employers can get the right information about the Network Security skilled professionals.
|
