Embed Doc
Copy Link
Readcast
Collections

CommentGo Back

Download

An organization should strive to achieve the best and most affordable security protectionagainst data loss or damage to software and equipment. Network technicians and theorganization's management should work together to develop a security policy to ensurethat data and equipment have been protected against all security threats. A security policyincludes a comprehensive statement about the level of security required and how thissecurity will be achieved.You may be involved in developing a security policy for a customer or organization.When creating a security policy, you should ask the following questions to determinesecurity factors:Is the computer located at a home or a business?Home computers generally are more vulnerable to wireless intrusion than businesscomputers. Business computers have a higher threat of network intrusion, due to usersabusing their access privileges.Is there full-time Internet access?The more a computer is exposed to the Internet, the greater the chance of attacks fromother infected computers. A computer accessing the Internet should include firewall andanti-virus solutions.Is the computer a laptop?Physical security is an issue with laptop computers. There are measures to secure laptops,such as cable locks.After completing this section, you will meet these objectives:Outline a local security policy.Explain when and how to use security hardware.Explain when and how to use security application software.A security policy is a collection of rules, guidelines, and checklists. Network techniciansand managers of an organization work together to develop the rules and guidelines for thesecurity needs of computer equipment. A security policy includes the following elements:Defines an acceptable computer usage statement for an organization.Identifies the people permitted to use the computer equipment in an organization.Identifies devices that are permitted to be installed on a network, as well as the conditionsof the installation. Modems and wireless access points are examples of hardware thatcould expose the network to attacks.Defines the requirements necessary for data to remain confidential on a network.Determines a process for employees to acquire access to equipment and data. Thisprocess may require the employee to sign an agreement regarding the company rules. Italso lists the consequences for failure to comply.The security policy should also provide detailed information about the following issues incase of an emergency:Steps to take after a breach in securityWho to contact in an emergencyInformation to share with customers, vendors, and the mediaSecondary locations to use in an evacuation

Steps to take after an emergency is over, including the priority of services to be restoredCAUTION: A security policy must be enforced and followed by all employees to beeffective.The security policy should identify hardware and equipment that can be used to preventtheft, vandalism, and data loss. There are four interrelated aspects to physical security,which are access, data, infrastructure and the computer, as illustrated in Figure 1.Restrict access to premises with the following:FencesSecurity HardwareProtect the network infrastructure, such as cabling, telecommunication equipment, andnetwork devices:Secured telecommunications roomsWireless detection for unauthorized access pointsHardware firewallsNetwork management system that detects changes in wiring and patch panelsProtect individual computers:Cable locksLaptop docking station locksLockable casesSecured cages surrounding desktop casesProtect data with hardware that prevents unauthorized access or theft of media:Lockable HD carriersSecure storage and transport of backup mediaUSB security donglesThe Right Security MixFactors that determine the most effective security equipment to use to secure equipmentand data include the following:How will the equipment be used?Where is the computer equipment located?What user access to data is required?For instance, a computer in a busy public place, such as a library, requires additionalprotection from theft and vandalism. In a busy call center, a server may need to besecured in a locked equipment room.Where it is necessary to use a laptop computer in a public place, a security dongle, shownin Figure 2, ensures that the system locks if the user and laptop are separated.Security applications protect the operating system and software application data.

The following products and software applications can be used to protect network devices:Software Firewall – Filters incoming data and is built into Windows XPIntrusion Detection Systems (IDS) – Monitors and reports on changes in program codeand unusual network activityApplication and OS Patches – Updates applications and the operating system to repairsecurity weaknesses that are discoveredThere are several software applications available to protect computers from unauthorizedaccess by malicious computer code:Virus protectionSpyware protectionAdware protectionGrayware protectionIn small offices and homes, computers generally connect directly to the Internet ratherthan through a protected LAN that organizations use. This puts computers outside of aLAN at high risk for viruses and other attacks. At a minimum, these computers shoulduse anti-virus and anti-malware protection programs. Application software and theoperating system should be updated with the latest patches. A software firewall may alsobe part of the solution.The security policy should determine the level of security applications put in place. Eachstep that increases protection costs money. In developing a policy, management shouldcalculate the cost of data loss versus the expense of security protection and determinewhat tradeoffs are acceptable.A technician should determine the appropriate techniques to secure equipment and datafor the customer. Depending on the situation, more than one technique may be required.PasswordsUsing secure, encrypted login information for computers with network access should be aminimum requirement in any organization. Malicious software monitors the network andmay record plain-text passwords. If passwords are encrypted, attackers would have todecode the encryption to learn the passwords.Logging and AuditingEvent logging and auditing should be enabled to monitor activity on the network. Thenetwork administrator audits the log file of events to investigate network access byunauthorized users.Wireless ConfigurationsWireless connections are especially vulnerable to access by attackers. Wireless clientsshould be configured to encrypt data.Encryption