Skip to Content (press Enter/Return)
preview

Nt1310 Unit 3 Term Paper

explanatory Essay
403 words
Open Document
403 words
  • Small
  • Normal
  • Large
  • Huge
bookmark

1. Frequently, a security audits do not contain a comprehensive risk assessment; audits are intended to evaluate policy compliance, determine the effectiveness of existing security, and identify unknown vulnerabilities. A risk assessment starts with an inventory of company assets, and it is followed by an analysis of possible threats to those assets. The consequences to the organization if a threat materializes is the probability that the threat could occur. Also, security controls available to mitigate the risk, and the organization’s acceptable level of risk. 2. The Kali Linux penetration testing platform contains a vast array of tools and utilities, from information gathering to final reporting, that enable security and IT professionals to assess the security of their systems. Metapackages give a user the flexibility to install specific subsets of tools based on your needs. Wireshark is a network protocol analyzer –popular for …show more content…

In this essay, the author

  • Explains that security audits do not contain a comprehensive risk assessment. they evaluate policy compliance, determine the effectiveness of existing security, and identify unknown vulnerabilities.
  • Explains kali linux penetration testing platform contains a vast array of tools and utilities that enable security and it professionals to assess the security of their systems.
  • Explains that wireless security is the prevention of unauthorized access or damage to computers using wireless networks.
  • Explains that wireless networks face different threats than wired networks. wireless networks do not have physical cabling to secure, so packets travel the airwaves and are vulnerable between transmitter and receiver.
  • Explains that it departments resisted the addition of mobile wireless devices to their areas of responsibility. while integration of laptops was unavoidable, many chief information officers and chief security officers were reluctant to include handheld devices under their supervision.

A wireless security is the prevention of unauthorized access or damage to computers using wireless networks. The most common types of wireless security are Wired Equivalent Privacy (WEP) and Wi-Fi Protected Access (WPA). WEP is a notoriously weak security standard. 4. A wireless networks face different threats than wired networks. Wireless networks do not have physical cabling to secure, so packets literally travel the airwaves and are vulnerable between the transmitter and receiver. If no encryption is used, everything is sent in cleartext, including passwords and confidential data. A key component of security is a wireless security policy. The best tool for ensuring physical security is to provide security awareness training for users. People can avoid many pitfalls of wireless security with careful planning. Changing Default Hardware and Software Settings. Default settings for hardware and software in wireless configurations create serious vulnerabilities, so you should change several settings before installing a new

Get Access
Check Writing Quality
Related
  • explanatory
  • comparative
  • Vulnerability Scanning
    explanatory essay
    This paper is being furnished to provide the CIO with a technology evaluation of vulnerability scanning. The information provided will ensure that the CIO has the required information to make the best decision in regards to this technology. This paper provides a brief understanding of vulnerability scanning, its many forms, the types of scanners available, the advantages and disadvantages, and the costs involved.

    In this essay, the author

    • Explains that the paper is being furnished to provide the cio with a technology evaluation of vulnerability scanning.
    • Explains that vulnerability scanning is an automated process that is conducted by an organization's it staff to identify any vulnerability that their information systems might possess and used to help "secure your own network."
    • Advises organizations to have an effective vulnerability assessment plan that includes regular scans of the network and annual penetration tests to prevent hackers from exploiting these flaws.
    • Explains that there are many different forms of vulnerability scanning, each of which provides a specific task to help an organization determine the security of their networks.
    • Explains the importance of an external vulnerability scan to ensure a secure system.
    • Explains that an internal vulnerability scan is designed to identify any vulnerability an organization might have within their internal network. these types of vulnerabilities are susceptible from attacks within an organizations network from employees or other individuals.
    • Explains that active vulnerability scanners send active signals throughout the network and evaluate the responses that were received. these responses help to identify any system vulnerability and allow these vulnerabilities to be mitigated before they become a threat.
    • Explains passive vulnerability scanners monitor the activity of a network without sending any signals.
    • Explains vulnerability scanning is the art of using one computer to look for weaknesses in the security of another computer. there are two types of vulnerability scanners used by information security specialists to scan an organization’s network, network and host based.
    • Explains that network based scanners are installed on a single workstation on an organization’s network to automatically scan the network.
    • Describes web server scanners that assess the possible vulnerabilities (e.g. potentially dangerous files or cgis) in remote web servers.
    • Recommends that web application scanners assess the security aspects of web applications running on web servers. additional manual checking, such as whether a login account is locked after invalid login attempts, might be needed.
    • Explains that a host based scanner only scans the workstation that it is located on. this type of scanner provides an "insight into risky user activities such as using easily guessed passwords or even no password."
    • Explains that a vulnerability scanner provides numerous advantages to any organization that implements an effective vulnerability scan program.
    • Opines that vulnerability scanners can simplify maintaining a network secure, but they cannot replace the knowledge of well-trained it staff.
    • Explains vulnerability scanners can only assess a "snapshot of time" in terms of system or network's security status, so scanning needs to be conducted regularly.
    • Opines that human judgment is needed in analyzing the data after the scanning process. vulnerability scanners can only report vulnerabilities according to plug-ins installed in the scan database.
    • Explains that a vulnerability scanner is designed to discover known vulnerabilities only and cannot identify other security threats, such as those related to physical, operational or procedural issues.
    • Explains that a scanner's vulnerability assessment is based on having an existing database of known vulnerabilities. these assessments require an organization’s it staff to think of methods he may use to attack the network and mitigate those threats.
    • Explains that the cost of vulnerability scanners ranges from free to tens of thousands of dollars. it is up to the ciso and it staff to assess what services they require and to choose a scanner that best fits their needs.
    • Explains that vulnerability scanners are not miracle workers and it staff must not assume that the network is secure just because a scan comes back safe.
    • Explains the hong kong special administrative region's an overview of vulnerability scanners.
    • Explains what is the difference between active & passive vulnerability scanners.
    1282 words
    Read More
  • Cis 513 Wireless Security Policy
    explanatory essay
    The deployed wireless network automatically disables rogue access points when required. In order to connect to the wireless network, all wireless laptops are required to be the current domain members. A group policy is enforced to all domain members so as to lock their system to SSID access point. For network layer protection, firewalls must be installed throughout the network. Wireless connections should always be WPA2 secured. All systems must have anti-virus software which provides protection from viruses. To ensure that only valid users access the network system, server certificates are installed in the

    In this essay, the author

    • Explains that all cisco wireless ap's would be configured with a dedicated ssid which would help provide separate connection to the faculty and guests.
    • Explains that random checks are performed at regular intervals to check for user activity. when any user breaks security code, an immediate action is taken to notify user about violation.
    • Explains that the deployed wireless network automatically disables rogue access points when required. wireless laptops must be current domain members to connect to the network.
    • Explains that users are required to be trained on network security issues and appropriate use of wireless network services. the training plan will outline the requirements, schedule and methods to provide training to employees at all levels at xyz institution about the wireless infrastructure.
    • Explains that 802.11a/b/g/n/ac is the wireless lan specification. a, b, g, n and ac standards for revisions with ac being the latest.
    • Cites cisco's aironet 3600 series access point white paper.
    663 words
    Read More
  • Security And Confidentiality On The Internet Case Study
    explanatory essay
    A Wireless is a wireless broadband connection, commonly referred to as WiFi, and is used recently in many households and offices. It is connected to a router that provides Internet signals to computers without any wire or cable.

    In this essay, the author

    • Explains the importance of security and confidentiality on the internet to a client.
    • Advises not to include personal information such as date of birth in passwords used on the internet.
    • Explains the dial-up connection method of connecting a computer to the internet network by dialing the phone number (access point) provided by the isp.
    • Explains that broadband is a service that enables high-speed data transfer by using wider bandwidth than traditional dial-up access.
    • Explains that wireless is a wireless broadband connection, commonly referred to as wifi, and is used recently in many households and offices.
    • Explains a domain name is part of the name that identifies each computer in the internet network. it is integrated management by icann (internet corporation for assigned names and numbers).
    • Explains hosting servers are servers used by multiple users and are used for publicly publishing web sites and web applications on the internet.
    • Explains that e-mail is a way of exchanging digital messages with people using digital devices such as computers and mobile phones.
    • Recommends ms moneypenny a suitable package for connecting to the internet.
    • Opines that google's search engine is the most popular in the world, so search results can be variety and reliable.
    • Explains which search terms were most and least successful. they explain why they chose each search term and modified them as they searched for relevant information.
    • Explains that before choosing this term, they have looked at similar terms. they were not able to get satisfactory results there, so they tried to put more concrete words about necessary information.
    • Explains that cybercrime is highly anonymous, does not suffer from geographical and temporal restrictions, and causes damage to unspecified large numbers of people in a short period of time.
    • Explains that an isp is a company that provides internet access to individuals and companies, and provides other related services such as connectivity to the internet.
    • Explains the superfast 240 mb broadband plan, which includes unlimited minutes phone call to irish mobiles and landlines, and 400 anytime minutes to 22 countries.
    • Explains that they chose junk mail because it seemed to be too common, and that the internet search is convenient, but it doesn't reach the information desired with just a few words.
    • Explains that the tops of search results showed many comparison sites, but in many cases it was not clear when the information was described. they checked the current information of the provider's original site.
    1152 words
    Read More
  • Wi-Fi Security
    explanatory essay
    Wi-Fi facilitates ease of use and is getting increasingly popular with homes and businesses. Multiple Wi-Fi Access Points can be located in a given area. Wi-Fi security issues continue to be a problem, as the number of Access Points grows.

    In this essay, the author

    • Explains that wi-fi facilitates ease of use and is becoming increasingly popular with homes and businesses.
    • Explains that war driving originated from the term war dialing, a technique popularized by the character in the movie ‘wargames’.
    • Explains that cracking into wi-fi gives them access to the internet and pcs that are currently connected to hacked networks. this poses a serious security issue for the users as malware will infiltrate another network when the laptop becomes part of another
    • Explains that wi-fi security is too sensitive to be left in the hands of users and mandating proper security practices with respect to such aps.
    • Explains that the research is based on the results of the war driving activities carried out in two major cities of india.
    • Explains that two cities in india (namely delhi and indore) were targeted for war driving.
    • Explains that residential and commercial areas were selected for the research.
    • Explains that potentially insecure = total number of wep ssid + total number of wps enabled
    • Explains that wep encryption was the easiest to exploit of all the encryption mechanisms. an average of 345000 ivs were captured on each access point that used it.
    • Explains that 13 wep passwords were found within 2 hours (out of the total 37 wep aps).
    • Explains that time taken to crack wep increased with the increase in distance from the access point.
    • Explains that the external registrar option does not require any kind of authentication apart from providing authentication.
    • Explains that an attacker can derive information about the correctness of parts of the pin from the ap's responses.
    • Explains that if the attacker receives an eap-nack message after sending m4, he knows that the 1 half of the pin was incorrect.
    • Explains that if the attacker receives an eap-nack message after sending m6, he knows that the 2 half of the pin was incorrect.
    • Explains that based on known design flaws in wps enabled networks, tests were carried out to estimate the time required to exploit such a weakness.
    • Explains that terrorism is a growing threat in modern times and requires communication to avoid being traced.
    • Explains that no actual penetration or cracking was performed during the research without consent. only ssids were noted along with the associated encryption mechanisms.
    • Analyzes how the time taken to crack wep decreased with the increase in data flow activity.
    • Analyzes data gathered from the war driving activity reveals a daunting need to tackle the issue of weak wireless ap security.
    1133 words
    Read More
  • Wireless Technology
    explanatory essay
    Wireless technology is just what its name implies, communicating or computing without wires and phone lines. Wireless technology uses a variety of different devices such as desktop and laptop computers, personal digital assistants (PDA’s), cell phones, and many others.

    In this essay, the author

    • Explains that wireless technology is an industry that has seen much growth and progress in the years following the inception of the internet and cell phones. business, travel, and everyday life are dependant on this technology.
    • Explains that wireless technology provides immediate access to resources and provides millions of users with flexibility that used to be limited by wires.
    • Explains that wireless technology works a lot like wired technology. the user inputs data onto the device, connection software translates the data, and transmission protocols determine the method and route.
    • Explains that wireless technology is important to business because it makes communication and integration of e-business easier to achieve. virtualization brings computing power to the consumer when they need it.
    • Explains that horizontal integration allows the consumer to connect with legacy systems, data, and custom business applications inside and outside of business.
    • Explains that wireless technology has led to the advent of pda-cell phone hybrids called smart phones. the combination cell phone and organizer also has web access, email and messaging capabilities, an mp3 player, bluetooth support, and a digital video camera.
    • Describes how palmsource made wireless device-to-device communication more popular by putting an infrared port on every palm os handheld.
    • Explains that bluetooth is a cable-replacement technology for passing information between devices, not unlike infrared. the advantage of bluetooth, is that devices don't have to be pointed at each other, the speed of transmission is much higher, and the data passed can be encrypted and secure.
    • Explains that bluetooth technology is being used to enhance connectivity and cooperation amongst palm handhelds, and establishes a common platform for communicating between different types of computing peripherals.
    • Explains that bluetooth is commonly used to securely communicate with the internet and corporate networks using bluetooth-enabled mobile phones or bluetooth network access points.
    • Explains that thin clients and wireless models have been introduced to the marketplace. tablet pcs are known for their portability and their ability to work off a central server.
    • Explains a wireless local area network (wlan) allows computers and workstations to communicate with one another using radio broadcast as the method of transmission.
    • Explains that wireless personal area networks (wpans) are very small networks within a limited space. ultra wideband (uwb) technologies are currently under development offering faster, short-distance connections.
    • Explains that broadband wireless enables a high speed connection directly to the information and key people that consumers need access to whenever they want it.
    • Describes how wireless technology is solving problems in classroom teaching at universities. the classroom performance system (cps) is a wireless response pad similar to television remote.
    • Explains that the cps pad solves a number of problems in the classroom that professors have been facing for years.
    • Explains that instructors have no way of assessing student comprehension of course material, other than reviewing test scores. in the classroom, it is difficult to estimate student understanding.
    • Explains that the response pads have labeled buttons that restrict the instructor to a yes/no or multiple-choice question format. the medium is effective with several question types.
    • Opines that the cps pad encourages all students to participate in class participation and interactivity.
    • Explains that the cps pad allows students to know where they stand with respect to other students and with course material. after student responses are recorded and the computer displays a histogram of answers, the instructor can indicate which answers are correct.
    • Opines that students who use the cps pads find that the questions posed are more representative of questions they may see on tests.
    • Explains that students feel that the cps pad helps them learn the material presented in class better than straight lecture.
    • Explains that wireless technology is an ever-improving necessity to business and the average consumer alike. without cell phones, pdas, and other mobile technology, our society would be without the immediacy, mobility and ubiquity that we have grown so accustomed to.
    • Opines that the future of wireless is impossible to interpret with how fast technology is changing. consumers will demand a seamless integration of as many wireless technologies as possible.
    • Cites woods, arthur, and chiu, charles, (sept/oct 2003). response to technology in college classrooms.
    1735 words
    Read More
  • Wireless Technology
    explanatory essay
    According to VoiceandData.com (2005), wireless "refers to communications, monitoring or control systems in which electromagnetic or acoustic waves carry a signal through atmospheric space rather than along a wire". In short, wireless access is a means in which one can connect to a Wireless Access Point (WAP), or WiFi spot without needing physical access.

    In this essay, the author

    • Explains that wireless technology is a booming business that is finding far reaching benefits. wireless fidelity (wifi) is the latest buzzword to capture the market in our individual quest for access anywhere at any time.
    • Cites macworld daily news' article, "on the buses - the next wifi hotspots."
    • Explains the layers of wireless access protocol and the origin of wap. wireless applications ranging from wireless wide area networks (wan) to voice over internet protocol (voip) are being used to facilitate constant access to the level of enterprise access.
    • Explains that wireless access has a strong market base, as evident by the advances and inventions that will continue to make our lives more convenient.
    • Opines that communication in all forms is a necessary evil of our society, but we are becoming more estranged from the general public.
    • Opines that the development of wifi hotspots on public transportation would enable mothers and fathers to wrap up any loose ends from work so that they would have more time to devote to their spouses and children.
    • Explains that the cost of home wireless is minimal, since most laptops and pcs come with integrated wireless cards. businesses can implement solutions as small and basic as those mentioned above to spend hundreds of thousands of dollars on wireless hardware and security devices.
    • Opines that wireless access is the current staple of our surroundings and the concentrated effort of many to have more readily available network access no matter where we are in or what means of travel we may choose.
    • Explains voice & data online's glossary of terms and acronyms.
    1450 words
    Read More
  • Wireless Communication Essay
    comparative essay
    Russ Housley, W. A. (2003). Security Problems in 802.11 Based Networks. Communications of the ACM, 5, 32-35.

    In this essay, the author

    • Compares 802.11a in authentication and encryption, but backwards compatible.
    • Explains that wep (wired equivalent privacy) was the original security tool, but is now obsolete as it lacked encryption during transmission and advanced techniques were developed that replaced it.
    • Explains wpa replaced wep with tkip (temporal key integrity protocol) and was considered a temporary fix while advanced measures were developed.
    • Explains that changing the default ssid is a first step in securing the network.
    • Explains how ssid beaconing can be turned off so a user can only access the network that already knows it by name. hackers can still find ways around this method through probe request and probe management frames.
    • Explains the use of mac address filtering to create an access control list of allowable addresses for the network.
    • Explains how to isolate the wlan from the corporate network by creating a wireless lan on its own subnet.
    • Explains how to configure access points and clients to encrypt transmissions. aes 256-bit encryption with per-user access is the best available at this time.
    • Recommends creating a hard to guess password that incorporates symbols, letters, numbers, and capitalization and is preferably more than 10 characters.
    • Explains that disabling dhcp creates the need to use a static ip and can create additional issues sometimes.
    • Advises users to be knowledgeable on risks and countermeasures and updated regularly in order to protect their systems. no one tool is reliable enough by itself and it is advised to employ several or more strategies to mitigate risk.
    • Explains that wireless communication has created an ever-evolving need for devices that are faster and applicable to a variety of lifestyle situations.
    • Explains that wireless networks are always open and vulnerable to a number of security breaches. hackers can connect to routers without any knowledge of the user's account.
    • Explains network auditing and intrusion detection systems, as well as physical ids, and sslvpn.
    • Explains that wimax technology is based on ieee 802.16. it is used for financial transactions, information gathering, and information sharing.
    • Explains beckman, mandal, shekar, tang, jindal, and loo's thoughts on wireless security.
    • Cites potter, b., housley, w.a. and saltzman, m.
    1494 words
    Read More
  • Computers and the Internet
    explanatory essay
    Sunday, A. N. (2008) “Wireless Local Area Network (WLAN): Security Risk Assessment and Countermeasures” Blekinge Institute of Technology, retrieved from http://www.bth.se/fou/cuppsats.nsf/all/2cf7d7f61e47ae4ec1257514004fce3f/$file/WLAN_Security%20Risk%20Assessment%20and%20Countermeasures.pdf on March 5, 2014

    In this essay, the author

    • Explains that cyber-attacks take place when malicious entities exploit security weaknesses, glitches, or flaws that are found in operating systems and software.
    • Explains the importance of a firewall to prevent malicious attackers from entering the system and networks. enabling encryption mitigates and sometimes completely eliminates attacks.
    • Explains the industry of cyber space security which provides services of software to make sure that viruses that have been discovered recently are identified and brought to the public.
    • Explains that firewall settings of operating systems are always activated by default, but they can be verified by physically looking.
    • Explains that browsers offer various privacy features that enable protection during browsing, but there are threats that can cause security issues while browsing on the internet.
    • Explains that a password is the most vulnerable and weakest point in the security of online accounts, particularly banking accounts.
    • Explains how an it professional reviewed the encryption techniques and security certificates used by the bank to ensure that the online banking site was encrypted.
    • Explains that patching software clients holds crucial significance, as it protects the systems from various types of threats and attacks.
    • Explains that computers are vulnerable to threats such as viruses, trojans, worms and malware. denial-of-service attacks, message modification, replay, and masquerading attacks can lead to downtime.
    • Advises parents to educate their 13-year-old son about social networking and cyberbullies.
    • Opines that every internet user should adopt appropriate security measures in order to counteract the issues posed by malicious entities.
    • Cites abdullah, w.r.w., and e.geier.
    • Cites lutis, d. p. (2010), “managing home networks security challenges, security issues and countermeasures” ieee, retrieved from http://ieeexplore.
    • Explains nicastro, m. f., "security patch management" second edition, retrieved from http://books.google.com/books?id=st8gsrwlmlec
    • Cites standard chartered's "guide to secure online banking" and "defense strategies against modern botnets".
    • Cites vines, d. r., retrieved from http://searchitchannel.techtarget.com/feature/securing-wireless-access-points-wlan-security-countermeasures
    2101 words
    Read More
  • Assignment 1: Vulnerability Assessments
    explanatory essay
    Starting with the current router, the NetGear WGR614 is an 802.11b wireless networking device originally released in 2002 and has an approximate 1650 Ft. range. Outside of no mention of the physical location of the device in the synopsis, which is concerning, a simple review of the device indicates that the device is technologically obsolete. For instance, the NetGear WGR614 came initially with wired equivalent privacy (WEP) only, and did not receive an update to provide it Wi-Fi Protected Access 2 - Pre-Shared Key, until 2 years after its release (). While the use of this router may deter the most basic intrusion attempts from individuals searching for quick access to a network. It was

    In this essay, the author

    • Explains that the netgear wgr614 is an 802.11b wireless networking device originally released in 2002 and has an approximate 1650 ft. range.
    • Explains that the motorola sb3100 cable modem is susceptible to arp spoofing attacks.
    • Opines that the lack of a standardized email system administered by the firm is concerning, as encryption of some standard email web browsers is not sufficient to ensure the proper safeguarding of email traffic.
    • Explains that email encryption is available for devices such as ipads and ensures that emails received are confidential and/or only received by appropriate individuals.
    • Explains that if there is no policy in place ensuring the standardization of computer systems to one type, there's no fool proof way to safe guard the network.
    • Opines that the current peer-to-peer network hinders the ability of a system administrator to ensure proper security and confidentiality.
    905 words
    Read More
  • essay
    explanatory essay
    From online networking to online banking, today most people use their smartphones in order to make their lives easier, but many don’t think to use their phones to make themselves safer. The world is getting more and more wireless; you can drive to any local restaurant or local hangout to find a place with WiFi. Today’s technologies are becoming so advanced that you can now use your wireless smartphone to control the appliances at home, close the garage door, lock the front door, and activate security cameras from miles away. There are many benefits to this type of security system including: noninvasive installation, a more advanced alert system, they are less vulnerable to system malfunctions, remote monitoring is possible, and overall they are just easier to use.

    In this essay, the author

    • Explains the benefits of using a wireless smartphone to control home appliances, close the garage door, lock the front door and activate security cameras from miles away.
    • Narrates how they slept over a friend's house while her security system was being installed, and if one of the dozen wires became disconnected, they had to redo the whole installation. today, wiring is intrinsic and communication is done over radio or wifi signals.
    • Explains that alarm systems can send you a text message if they detect carbon monoxide or smoke as well as alert ities.
    • Explains that all the wires in today's alarms are intrinsic and their power supply is also located inside. this makes them less vulnerable to system malfunctions due to power outages and disrupted phone lines.
    • Describes the most aesthetically pleasing aspects of a home security system, such as the ability to remotely monitor and control your home.
    • Explains that wireless security systems have an easy-to-use, user-friendly interface and remote technical support.
    596 words
    Read More
Get Access