ScholarQuill logoScholarQuillUniversity Notes
  • Notes
  • Past Papers
  • Blogs
  • Todo
Login
ScholarQuill logoScholarQuillUniversity Notes
Login
NotesPast PapersBlogsTodo
More
SubjectsDiscussionCGPA CalculatorGPA CalculatorStudent PortalCourse Outline
About
About usPrivacy PolicyReportContact
Notes
Past Papers
Blogs
Todo
Analytics
    Current Subject
    🧩
    Cyber Security
    COMP3143
    Progress0 / 21 topics
    Topics
    1. Introduction to Cyber security2. Networks and the Internet3. Cyber threat landscape4. Understanding security and information security principles5. Information Security Terminology6. Who are the attackers and Advanced Persistent Threat (APT)7. Malware and types of malware8. Attacks using malware and Malware Attack Lifecycle9. Social engineering attacks and types of payload10. Industrial Espionage in Cyberspace11. Basic cryptography12. Web application attacks13. Database security14. Cyber kill chain15. Privacy and anonymity16. Network security17. Software security18. Mobile device security and Mobile app security19. Cyber Terrorism and Information Warfare20. Introduction to Digital Forensics21. Digital Forensics Categories
    COMP3143›Network security
    Cyber SecurityTopic 16 of 21

    Network security

    3 minread
    514words
    Beginnerlevel

    Network Security

    1. What is Network Security?

    Network Security refers to the strategies, technologies, and policies used to protect the integrity, confidentiality, and availability of data as it is transmitted across or accessed through a network.

    It ensures that networks are safe from unauthorized access, misuse, attacks, and disruptions.


    2. Objectives of Network Security

    1. Confidentiality – Only authorized users can access sensitive information.
    2. Integrity – Ensuring data is not altered or tampered with during transmission.
    3. Availability – Network services and data are accessible to authorized users when needed.
    4. Authentication – Verifying the identity of users and devices.
    5. Authorization – Granting users permission to access resources based on roles.
    6. Non-repudiation – Ensuring actions or communications cannot be denied.

    3. Types of Network Security Threats

    1. Malware Attacks – Viruses, worms, trojans that disrupt network services.
    2. Denial of Service (DoS/DDoS) – Flooding networks to make services unavailable.
    3. Man-in-the-Middle (MitM) Attacks – Intercepting and altering communications.
    4. Phishing and Social Engineering – Deceiving users to reveal credentials.
    5. Eavesdropping / Sniffing – Unauthorized interception of network traffic.
    6. Unauthorized Access / Hacking – Exploiting vulnerabilities to access network resources.
    7. Rogue Devices and Insider Threats – Malicious insiders or unauthorized devices on the network.

    4. Network Security Components and Techniques

    A. Firewalls

    • Act as a barrier between internal networks and external networks.
    • Can be hardware-based or software-based.
    • Filter traffic based on IP, ports, protocols, and content.

    B. Intrusion Detection and Prevention Systems (IDS/IPS)

    • IDS: Monitors network for suspicious activity and alerts administrators.
    • IPS: Actively blocks or prevents detected threats.

    C. Virtual Private Networks (VPNs)

    • Secure encrypted tunnels for data transmission over public networks.
    • Protects data confidentiality and integrity.

    D. Network Access Control (NAC)

    • Restricts network access to authorized devices based on policies.

    E. Encryption

    • Protects data in transit using protocols like TLS/SSL and IPSec.

    F. Anti-malware and Endpoint Security

    • Protect network devices from viruses, worms, and ransomware.

    G. Security Information and Event Management (SIEM)

    • Centralizes monitoring, logging, and analysis of network activity for threats.

    H. Segmentation and VLANs

    • Divides networks into smaller segments to contain attacks and improve security.

    5. Best Practices for Network Security

    1. Regularly update and patch all network devices.
    2. Use strong authentication and multi-factor authentication (MFA).
    3. Implement firewalls, IDS/IPS, and VPNs.
    4. Monitor network traffic continuously for anomalies.
    5. Encrypt sensitive data both in transit and at rest.
    6. Educate users about phishing and social engineering attacks.
    7. Limit access using the principle of least privilege.
    8. Backup critical network configurations and data.

    6. Network Security Models

    • Defense in Depth: Multiple layers of security controls for redundancy.
    • Zero Trust Model: Trust no device or user by default; verify every access request.

    7. Summary Table

    Component Function
    Firewall Filters and controls network traffic
    IDS/IPS Detects and prevents intrusions
    VPN Encrypts data over untrusted networks
    NAC Controls which devices can access the network
    Encryption Protects data in transit
    SIEM Centralized monitoring and threat analysis

    Conclusion

    Network security is essential for protecting data, systems, and services from cyber threats. By combining firewalls, encryption, intrusion detection, access controls, and monitoring, organizations can maintain the confidentiality, integrity, and availability of their networks.

    Previous topic 15
    Privacy and anonymity
    Next topic 17
    Software security

    Past Papers

    Open this section to load past papers

    Click on Show Past Papers to see past papers.
    On This Page
      Reading Stats
      Est. reading time3 min
      Word count514
      Code examples0
      DifficultyBeginner