Analyse Network Performance

2.

· Unshielded Twisted Pair (UTP) Cables

· Shielded Twisted Pair (STP) Cable

· Coaxial Cable

· Fiber Optic Cable

· Cable Installation Guides

· Unshielded Twisted Pair (UTP) Cable

3. In this network we will use CAT5 and CAT6 patch. These closets should be used in the server room of the location at Atlanta location and we shall also create one at the Cincinati location due to the big number of hanging wires that we shall use.

4. Wireless networks are much more susceptible to unauthorized use than cabled networks. We should encrypt the network by putting a password to keep out unauthorized access that may lead to network attacks.

I recommend that we turn off all the remote control related features because hackers at times try to breach our network wirelessly. For an intrusion to occur, it can either be from within the organization or even other breaches that come from outside the organization.

I recommend that we put in place packet sniffing measures in our network in order to detect any attacks that are targeted to our network. These may include worms, Trojan horses, botnet, malicious malware etc. The packet sniffers will help us identify when someone is trying to hack into the network.

I also recommend network segmentation where by the network is split into different classifications. This eases the placing of security levels and policies on the network.

We should also put in place physical security in order to curb problems like break-ins in to the server rooms by attackers especially those working in the organization. We should do this by putting in place some policies and levels of restriction because it can lead to data loss.

We should put in place a Virtual Private Network. A virtual private network encrypts the connection from an endpoint to a network, often over the Internet. Typically, a remote-access VPN uses SSL to authenticate the communication between the devices and network.

I also recommend the use of firewalls in the network security module. Firewalls put up a barrier between your trusted internal network and untrusted outside networks, such as the Internet. They use a set of defined rules to block or to allow traffic. A firewall can be software, hardware, or both.

I also recommend the use of access control measures for example passwords, finger print scans, iris scans etc. Not every user should have access to your network. To protect yourself from potential attacks, you need to recognize each user and each device. Then you can enforce your security policies. You can also block out the noncompliant end-point devices or provide them with limited access. This process is referred to as network access control (NAC).

6. I recommend the use of an access server. An access server acts as a concentration point for dial-in and dial-out connections which is perfect for our network model.

I recommend the used of WAN Switch. A WAN switch is a multiport internetworking device used in carrier networks. These can be used to connect devices to other devices. They hold the configurations.

I recommend the use of modems. Modems are devices that interpret digital and analog signals by enabling data to be transmitted over voice-grade telephone lines in larger grids.

In this network I also recommend the use of Virtual Circuits. Virtual circuits are logical circuits created to ensure reliable communication between two network devices over a wide area.

7. In the data center we need to set up fire walls in order to protect our data from being breached. We also have to use wire closets in order to prevent confusion in case of any problem. Physical security should also be a must because at times threats come from within the organization. Use of bio metric scans can also be put in place to restrict access control.

8. The above recommendations have to been made as a way of ensuring that the network is safe and that it can be able to protect the organization from breaches. We have use fast Ethernet in each location so data recovery and access should also be made easier. The network will be able to defend its self from outside attacks due to the Intrusion detection modules that have been placed in the network. Firewalls are also a way of keeping out suspected attacks.

The systems must be organized in such a way that it has as hierarchy and define the level and rights possessed by pole so that delegations of access rights correspond to the modified right of ACL in a particular branch of the hierarchy. Therefore, the ACL hierarchy is required to reflect on the structure of the organization at large (Leibenger & Sorge, 2013). Capabilities also provide appropriate flexibility to delegate and grant access rights in that large scale open network, but only provide access to objects in the managing server. These capabilities do not have control access of the objects since it is transferred across the potential networks or in a temporarily cached of intermediate server (Yan, Geng, & Ding, 2014). Access control and reference monitoring are essential concepts in the access control whereby they are originally developed in the context of the centralized systems (Ferrara, Fuchsbauer, & Warinschi, 2015)

Conclusion

In Conclusion, Cryptography access control is an approach that secure data encrypted using key such that only the users that have the correct keys are in a position to decrypt the information and perform other encryptions, Cryptographic access control mechanism relies majorly to the very cryptography so as to guarantee confidentiality as well as the integrity of the object or the files that store potentially untrusted servers. The mechanism eliminates the necessity of invoking on the reference monitor on the server. hence users can access the files from user accounts as well as any machine that is connected to networks (Yan, Geng, & Ding, 2014). The mechanisms of Cryptographic Based Access Control is designed in such a way that it operates in an open network that establish the identities of clients, conveying less information about their possible behaviors of clients hence it become relevant to secure the operation of the serve

the application of Cryptographic access control limits its complexity by ensuring that the request strategy of user permissions is categorized depending on the role played by every role and permission of assigned to every role.

However the server delivers data to the requesting clients whereby the access control performs implicit on the machine used by the client and their ability to encrypt, decrypt or sign that data. This refers to the potentiality of the access control mechanism to perform a decentralized method for the clients without mainly relying on the trusted codes as well as tamper proof devices. The design and the implementation of the cryptographic access control are distributed in the file systems based on the standard of the server. The performance of the read and write operations shows that when small data are involved the process becomes faster that in large data size. The cost of the signature also increases in larger files as compared to small sized. Therefore, the security results of the server depend on the implementation process whereby the distribution of the key is what determines the ability of the information be protected accordingly or shared with many people. This method of data protection that uses the process of encryptions as well as decryption is necessary in controlling the access of information from unauthorized person as well as attackers. It helps in increasing confidentiality and the integration of the information from only the appropriate persons are able to access the data and read or write the information. The server is protected from leaking confidential information unauthorized persons hence every company, the government and military system that have confidential information that is at threat by attacker should utilize the method so as to protect the data. The administrator ensures that the information gets to the authorized persons only and any threats of attacks are involved. They manager of the server is not allowed to read or write information in the server

References