|
|
|
|
|
Network Securtiy
|
|
|
An overview into the world of network security Prashant K Singh and Rohit Kamboj Department of computer engineering, Dr. Babasaheb Ambedkar Technological university Lonere-402 103, Raigad, Maharashtra. Abstract In this paper we have tried to demonstrate the sensitivity of transferring data in a network. In doing so we have emphasized on the type of problems one could face while transferring the data in a network. Further we have tried to stress on the different types of security measures available to make the data transfer a secure phenomena on a network. In the present paper we have also listed some of the most common methodologies available for secure routing of information on a network. Introduction: The term computer network means a large number of inter-connected autonomous computers. Two computers are inter-connected if they are able to exchange information with each other. With the advancement of technology computer network has become a widespread source of delivering data to individuals at home and at workplace. With the enormous use of computer network it is required to make the communication between the destination host and the source host a secure method. The topic of network security is a vast topic that covers a multitude of sins. Network security in its simplest form means that nosy people cannot read the message, or worse cannot modify the message meant for other recipient. It is concerned with people trying to access the remote services that they are not authorized to use. Network security also deals with problems of legitimate messages being captured and replayed, and people trying to deny that they sent the message. Most of the network security problems are caused by malicious people trying to gain some benefit or harm someone. A few most common perpetrators of network security are as follows: · Students: Trying to have fun by snooping on people’s email. · Hackers: To test someone’s security system and try to steal data. · Business representatives: To get strategic plans of rivals. · Spy: To learn enemies military strength. · Conman: To steal credit card numbers. Of all the above lawbreakers, hackers are the real enemies who try to destroy the entire network. The internet protocol system is based on two types of the protocol model. The first type is known as the International Standard Organization’s Open System Interconnection Reference Model (OSRIM). The second type is known as TCP/IP internet layering Model. ISO seven layer Open System Model (OSI): LAYER FUNCTIONALITY 7 Application 6 Presentation 5 Session 4 Transport 3 Network 2 Data link(Network interface) 1 Physical hardware connection · Physical layer: This is the first layer and specifies the physical layer interconnection including electrical/photonic characteristics. · Data link layer: This is the second layer and specifies how the data travels between two end points of a communication link. · Network layer: The network layer comprises the third layer and defines the basic unit of transfer across the network and includes the concept of multiplexing and routing. · Transport layer: This is the layer four and provides end to end reliability by having the destination host communicate with the source host to compensate for the fact that the multiple networks with different qualities of service may have been utilized. · Session layer: This layer describes how protocol software can be organized to handle all functionality needed by the application programs. · Presentation layer: This the sixth layer in ISO-OSI model and includes the function required for the basic encoding rules used in transferring information. · Application layer: Layer seven is the application layer and includes the application programs such as electronic mail or file transfer programs. In the application layer there is a need for support protocols to allow real application function. The first real application is security, which is not a single protocol, but a large number of concepts and protocols that can be used to ensure privacy where needed. The second is DNS, Domain Name System, which handles the naming within the Internet. The third support protocol is for network management. Earlier, corporate employees used network for sharing printers and further used network for sending email. Under these conditions security didn’t get much of attention. With the advancement of technologies, ordinary people used computer network for banking, shopping, filling tax returns etc. Under these conditions the network security is looming on horizon as a potentially massive problem. Routing sensitive data over Internet as shown in fig.1 is problematic for two main reasons: · It is difficult to maintain privacy between to computers that are not directly connected. · Third parties can illegally pose as computer in a conversation or transaction and intrude and eavesdrop on the information. This is known as spoofing. The client also sends and receives data The server sends and receives information via the internet without SSL and advanced security, any computer on the SERVER network can intercept the information as it routes from the server to the client and back Fig.1: Routing information on the Internet The Internet does not provide inherently secure communication between the web browser and the web server. Often this lack of security is the cause of concern. With the advanced use of Internet there is a demand of secure routing of information. There are several techniques being developed to address this problem. Two different protocols have been developed for the enhanced web security.
|
|
|
|
Still Can't Find What Your Looking For? Then Try a Essay Search!
|
