Final Project Plan

Infrastructure

Thien Thai

CIS599

Professor Wade M. Poole

Strayer University

March 1, 2020

Infrastructure

Introduction

The network infrastructure contains the hardware and software parts; the two components will help have a complete resource for the network and help have the network connectivity, communication, operations, and management of the system to be more comfortable. The infrastructure provides the communication path and the services that are shared within the network so that there can be complete communication with the end-users, processes, applications, and services that will help have the best end to end communication (Nelson, at el 2019). The infrastructure contains vulnerabilities, network security issues that should be taken into account so that there could be proper evaluation and management of the network. Security measures are supposed to be implemented as per the type of infrastructure that is laid in the organization.

The paper will also cover the cloud technology that has been the most trending technology that has been helping many organizations in storing their data since it provides a large storage space that helps the organization cover up their data. The paper will also focus on how cloud technology has benefited firms in providing cheap storage, the type of challenges that they are facing on the cloud technology and the type of advances that have taken place over the years on making sure that the technology meets the needs of the users. The paper will also cover virtualization for the networks and how well it has facilitated the advancements of technology and having the best ways of having many users accessing one resource from different points or internet protocols (Wei at el 2017).

The paper will also cover diagrams on the logical and physical diagrams of the infrastructure, explaining the tools that are involved in the topology and how they benefit the transmission of the network. The diagram will also have a wide view of how planning is important due to the implementation of networks in an organization and have the best ways of handling situations that have made the network to be vulnerable. The paper will also involve tools like servers, bridges, and switches on their importance in the infrastructure.

Possible network infrastructure vulnerabilities

Network vulnerability is things that can pose potential attacks or security issues towards the network infrastructure that has been in the recent trend. This can be a virus, incorrect configurations of the system, passwords that are written on sticky pads. Network vulnerability is a network exposure that will lead to security issues that will have a large impact when its breeched and have a big transformative way of having the process of putting the measures in an appropriate manner (Jenelius at el 2015).

Through the years, passwords have been points of vulnerability; this has been happening in a way that people do not make good passwords that would not be guessed, and they get it correctly. The system administrators provide mechanisms that will support the passphrase of passwords and having a way of containing securities of the infrastructures. Policy-based administration is one of the ways they passwords vulnerability is being handled through following the formats that are provided by the administrator (Nazarnia at el 2018). The infrastructure sometimes suffers denial of service attack through this mechanism; the user will find difficulties in accessing his space and getting the concept of having the manner in which his passwords have being incubated. The complex passwords can be obtained by getting the concept of network security maintenance that will help keep the passwords .

Data backup issues and user tracking has been another issue that has been paramount in the infrastructure and vulnerability of information. The ability to restore important files and system failure to prior state is crucial for the infrastructure to continue functioning appropriately. Having full disaster recovery either when the data is lost, corrupted, or encrypted in most cases, it requires the ability to start its operations when the disaster has happened and recover up to the normal standards. Backups are required infrequent intervals and frequent system testing that will help have the ability to restore the system files and cases that will make the sudden loss of large data frames that will lead to making incidents that have to ensure normal enclosure of responses (Corley, at el 2015). When coupled with good audit mechanisms and best ways of having disaster management to complete, the sudden ways of source failures will help cover up the vulnerabilities that may happen, thus having a complete disaster accountability system breech.

The security mechanisms that should be impacted in the systems should be improvised in a manner they are helping reduce losses and recovering the data that will be lost. Also, improvising sensors will help have alerts of the security intrusions of the infrastructure. Implementation of authentications and authorization mechanisms will help have the best way of monitoring the vulnerability of the infrastructure and having account of the system (Seo at el 2017). Through accountability, it will help have the exact measure and knowhow of how has been in the system and what he was doing when he was in the system. This will help have the monitoring and checking of the infrastructure, thus ensuring that all mechanisms are working appropriately. Installation of firewalls will help have the best way of ensuring Durex malware and Trojans are not intruding into the system and having the control. The firewall will have full prevention of the servers and other infrastructures that are mainly for data stores and data transfers since the firewall helps to filter and send alerts of any malicious intrusions that may happen to enter into the system without the administrator’s settings.

DHCP core

Public recourses

Mail/HTTPS

Logical topology

The structure shows how communication takes place from the servers to the users in public and the website that is presented in HTTPS and the mail server that stores the mail communications. The DHCP helps the communications and addressing the emails to the core.

PC1 PC2

PC3

Physical topology

Illustration

Security policy

Protect the company infrastructure and assets by applying the principals if the CIA

The CIA consists of the confidentiality, integrity, and availability of data in the system.

Confidentiality is all about having the information private and encrypted from unauthorized people (Ogie at el 2017). This can be achieved through having the information encrypted that it is only the owner of the information can be able to access the information. The encryption keys are private, and they would help have the best ways of having the details. The operating machine can be put under a hidden Mac address that will help have the non-traceable tracking of the activities that are taking place by the user in the infrastructure. The authentication and authorized people only will be allowed to access the system.

The principle has the integrity of the information; thus, the data must be kept in a trustworthy manner so that they can have a way of having the best validations of the infrastructure. The data that is transmitted within the infrastructure has to come from trustworthy sources. The data has to be stored in a place that it will not get tampered with thus increasing the integrity of the information. Through integrity, there is the employment of information security that will also help in making decisions over the resources that are stored in the data sets.

The availability of the data flow is another principle that allows the data to be available on the authorized people. This framework is done through having the best way of having users access the resources, and they must be authorized and maintain the integrity of the data that is flowing through the infrastructure (Bao-yang, 2015). The three factors mainly affect each other once one is violated; the other is affected in the same measure. Therefore, the principle has to be followed thoroughly so that they can have the best way of having the mandates of having data integrity and securities that will help have the best infrastructure.

Ethical aspects of employee behavior, contractors, password usage and access into the networked resources and information

Employees should handle the network with a lot of care so that they can have a continuous flow of data in their workplace. They should respect the security policies that are set by the organization and the manner they should take their considerations when there is a problem. The employees should ensure that the network and their data have passwords that are strong or passwords that are related and in the format that the network administrator has provided to them. Passwords are sensitive, and they have the key root to the safety of the data that they should be having within the infrastructure (CHEN, at el 2015). The passwords should not be written and left on the working desks because they will lead to someone who is not authorized to access the data or sabotage the details without the knowledge of the owner.

In conclusion, network infrastructure is a sensitive tool that should be taken into considerations when they are implementing the network. Network vulnerability has been the most recent aspect that has been serious in the security and infrastructure. Additionally, organizations should keep awareness to employees on the importance of network securities since they many get involved in some vulnerability that may cost the infrastructure to lose of data and other resources that will put the organization into risks. Confidentiality, availability, and integrity should be upheld in all costs so that there would be a good way of handling security vulnerabilities that may face the infrastructure.

Reference

Bao-yang, A. (2015). The governance of network ethics in Big Data Times. Studies in Science of Science, 33(05), 641-646.Retrieved from: http://en.cnki.com.cn/Article_en/CJFDTotal-KXYJ201505001.htm

CHEN, M. N., & ZHANG, L. (2015). Institutional Ethics Analysis of Mobile Ad hoc Network. Journal of Inner Mongolia University of Finance and Economics, (5), 14.Retrieved from: http://en.cnki.com.cn/Article_en/CJFDTotal-NMCJ201505014.htm

Corley, D. A., Feigelson, H. S., Lieu, T. A., & McGlynn, E. A. (2015). Building data infrastructure to evaluate and improve quality: PCORnet. Journal of oncology practice, 11(3), 204-206.Retrieved from: https://ascopubs.org/doi/abs/10.1200/JOP.2014.003194

Jenelius, E., & Mattsson, L. G. (2015). Road network vulnerability analysis: Conceptualization, implementation, and application. Computers, Environment and Urban Systems, 49, 136-147.Retrieved from: https://www.sciencedirect.com/science/article/pii/S0198971514000192

López, F. A., Páez, A., Carrasco, J. A., & Ruminot, N. A. (2017). The vulnerability of nodes under controlled network topology and flow autocorrelation conditions. Journal of Transport Geography, 59, 77-87.Retrieved from: https://www.sciencedirect.com/science/article/pii/S2212420915000126

Tanzania, H., & Sarmasti, H. (2018). Characterizing infrastructure resilience in disasters using dynamic network analysis of consumers' service disruption patterns. Civil Engineering Journal, 4(10), 2356-2372.Retrieved from: https://www.researchgate.net/profile/Hadi_Sarmasti/publication/328611578_Characterizing_Infrastructure_Resilience_in_Disasters_Using_Dynamic_Network_Analysis_of_Consumers'_Service_Disruption_Patterns/links/5be9ab0592851c6b27ba2f5c/Characterizing-Infrastructure-Resilience-in-Disasters-Using-Dynamic-Network-Analysis-of-Consumers-Service-Disruption-Patterns.pdf

Nelson, A., Lindbergh, S., Stephenson, L., Halpern, J., Arroyo, F. A., Espinet, X., & González, M. C. (2019). Coupling natural hazard estimates with road network analysis to assess vulnerability and risk: a case study of Freetown (Sierra Leone). Transportation research record, 2673(8), 11-24.Retrieved from: https://journals.sagepub.com/doi/abs/10.1177/0361198118822272

Ogie, R., Holderness, T., Dunbar, M., & Turpin, E. (2017). Spatio-topological network analysis of hydrological infrastructure as a decision support tool for flood mitigation in coastal mega-cities. Environment and Planning B: Urban Analytics and City Science, 44(4), 718-739.Retrieved from: https://journals.sagepub.com/doi/abs/10.1177/0265813516637608

Seo, J., Jin, J., Kim, J. Y., & Lee, J. J. (2016). Automated residential demand response based on advanced metering infrastructure network. International Journal of Distributed Sensor Networks, 12(2), 4234806.Retrieved from: https://journals.sagepub.com/doi/full/10.1155/2016/4234806

Wei, X., Liu, X., Cheng, L., Sun, L., Pan, Y., & Zong, W. (2017). Evaluating medical convenience in ethnic minority areas of Southwest China via road network vulnerability: a case study for Dehong autonomous prefecture. International journal for equity in health, 16(1), 206.Retrieved from: https://equityhealthj.biomedcentral.com/articles/10.1186/s12939-017-0702-z

Cloud server