Week 8 project

Running head: NETWORK PROTECTION AGAINST THREATS 1

NETWORK PROTECTION AGAINST THREATS 7

Threats, in the context of computer security, refers to any possible vulnerability to a computer system and has the potential to adversely affect the computer system and the stored data. Threats do not have to necessarily happen but in the event that they occur then there are huge losses to businesses and individuals, security is compromised and key data may be lost completely if no recovery methods had been put in place (Silberschatz et al., 2014). Cyber criminals are taking their malice to a new level every dawn and the rates at which they are accessing stored data in systems are a reason to get worried. The potential threats to the computer systems may be from viruses, back doors, Trojans and attacks from the system hackers. System developers have greatly being involved in devising mechanisms to address the issues related to network protection and some of the key solutions are authentication and identification, data encryption, and frequent system updates.

With this technique, the data can only be accessed by the required and the authorized personnel. Identification occurs when a unique name or an image is assigned to the users who interact with the information (White et al., 2017). Authentication is meant to ensure that the person who uses the data is verified as one of the authorized users. These techniques are used to allow or to deny access to data and can even involve authentication of the data and the hardware, and not just the user, through the use of passwords which are only shared with those that are intended to access the data. Data authentication has been adopted as a critical mechanism by organizations to ensure integrity of their systems and data stored in the systems.

The main purpose of the authentication systems is to make sure the user of a system is validated before they access stored data and information in a computer system. System authentication techniques have been used in ATM machines, in identifying the user of a home and also in clearance in computer systems (Smith, 2018). The technique, just like any other, has drawbacks but the advantages cannot go unmentioned especially with the ability to completely eliminate fraudsters in computer systems.

The use of passwords is the most common form of computer system authentication. Password based authentication has been embraced by most organizations especially because they are cheap and also very convenient (Kobayashi et al., 2018). With the password based authentication the user is required to provide and be able to remember a certain key that usually has the specified alpha and numeric characters. The alpha and the username are related to a username or an e-mail address which must be correctly entered when login into the system. The passwords can also be encrypted to ensure that there are no theft instances by the employees and also system hackers.

The device based authentication uses portable hardware devices which are usually small in use; the size of a credit card. The devices have a magnetic strip that holds data. The devices hold both private and public certificate information (Kobayashi et al., 2018). They are usually carried by the user and inserted into a card reader which is attached to the computer system. The devices contain a PIN that the user enters to get access into a system. A certain number of trials are stated so that if the PIN is tried for unreasonable number of times the system locks down. Stealing of the stored data and information becomes hard.

With the biometric authentication, a user of a system is identified using unique characteristics and measurements which are stored in the system or the program server. The biometric authentication eliminates the need for identification cards and the passwords. The biometric authentication technique uses physiological characteristics such as facial recognition, fingerprints or iris and retina scan. The possible behavioral biometrics which are sometimes used are keystroke scans, voice recognition and signatures.

Data encryption is a technique that has been used by system users and developers to ensure that data cannot be accessed by unauthorized persons. Data encryption translates the data into other codes or forms and a secret key is put in place. The persons who have information about the secret key are the only ones who can successfully use the data (Siowiorek & Swarz, 2017). The information, after being translated into codes and other forms cannot be read (ciphertext). The users then will use the secret key to unencrypt the data into readable and understandable forms (plaintext). Data encryption is one of the most effective data and system protection methods used by organizations especially due to the fact that the data can only be read by those who have the key and even if fraudsters get access to the data, they cannot understand.

Data encryption is the only way to ensure that data and information being shared is protected at all times. No matter how many times the data is used and shared, the users are assured of the data safety (Kobayashi et al., 2018). The only users with the key can use the data on transit or be able to translate the data into forms that can be understood. All sensitive data in the systems and across all devices is free from fraudsters and system hackers. In most cases, data and sensitive information are most vulnerable while on transit.

The future of encryption is promising especially because there is the need to counter the savvy, sophisticated system hackers. Security professionals are up to better, more effective data and information protection techniques (Iyengar et al., 2018). The already proposed techniques whose appearance is anticipated in data and system security are Elliptic Curve Cryptography (ECC), homomorphic and quantum encryption. ECC is an encryption technique is meant to ensure easier, safer and faster encryption and decryption of data without any data loss. Homomorphic encryption would allow calculations on the encrypted data without requiring the users to first decrypt the data (Perera et al., 2015). There will be greater, enhanced security and privacy of users and the systems and will ensure that encryption for data in the cloud systems is possible. Quantum computation is also another encryption technique that will ensure generation of random codes that are virtually unbreakable. Attempted hacking will be signaled to both the sender and the receiver. Data will also be stored in multiple states and such will allow fast computations.

There are new versions of the systems and the applications in use which are being developed occasionally. These new updates come with advanced features meant to increase the security of the systems (Bhargava & Reese, 2015). The responsibility is now vested on the system users to ensure that the systems in use are updated and have all the new features. Using outdated versions of the systems only places them at a disadvantage of possible attacks by viruses and cyber criminals. Organizations lose data into the hands of these criminals thinking that system updates are costly. Doing the updates are far much better than having to comprise security and privacy due to the inability to ensure that the systems are up to the standards that are recommended by the system developers.

Upgrading the systems ensures that the data stored and the systems are not subjected to any type of vulnerabilities. There are additional protectors to ensure that the systems are free from emerging system threats (Horvitz & Mulligan, 2015). Malware and hackers attack the most vulnerable systems. Hackers are always in a hunt for new ways of executing their plans and will attack any system that has been abandoned or uses outdated security applications. In response, the businesses, with the help of the IT team should invent new ways, frequently to safeguard their systems. Ensuring the systems are free from any unknown malware or form of attack, the simple step would be to having the latest tools in place to keep the software up-to-date.

Frequent system upgrades also ensure that the system failures are minimized. Malware are some of the top causes of system failures (Iyengar et al., 2018). System failures are common and compromise the performance of the systems. In addition to ensuring the security of the systems, the frequent upgrades are essential in ensuring that the systems function as expected and that the positivity of the firm. Today’s competitive business environment would require computer systems that are efficient and also reliable. Frequent system upgrades would save the organization the failures which result from outdated system software.

The system upgrades also ensures that the firm focuses on newer technologies. The system upgrades give the organization an opportunity to focus on the emerging technologies rather than doing frequent repairs on the existing software (Davidson & Roy, 2017). New technologies such as Internet of Things, analytics, machine learning, and automation are essential in today’s business operations. A firm that does frequent system upgrades adopts such technologies with much ease.

In conclusion, network threats are occurrences that are happening every day, costing businesses dearly. Lose of data to persons who are not authorized to access the information can be traumatizing especially when the data is sensitive. Data getting into the hands of fraudsters means that privacy and the security of the data owners are greatly risked. System developers have come in to save the day. Various techniques have been developed to reduce the threats resulting from system vulnerabilities. Organizations should put such into place. Frequent system upgrades, data authentication and data encryption are three essential data and system security measures for any firm.

References

Bhargava, R., & Reese, D.P. (2015). U.S. Patent NO. 8, 938, 800. Washington, DC: U.S. Patent and Trademark Office.

Davidson, S.B., & Roy, S. (2017). Provenance: Privacy and Security

Iyengar, A., Kundu, A., & Pallis, G. (2018). Healthcare Informatics and Privacy. IEEE

Internet Computing, 22(2), 29-31.

Horvitz, E., & Mulligan, D. (2015). Data, privacy and the greater good. Science,

349(6245), 253-255.

Kobayashi, S., Kane, T.B., & Paton, C (2018). The privacy and security implications of

Open data in healthcare. Yearbook of medical informatics.

Perera, C., Ranjan, R., Wang, L., Khan, S.U., & Zomaya, A.Y. (2015). Big data privacy

In the internet of things era. IT Professional, 17(3), 32-39.

Silberschatz, A., Galvin, P.B., & Gagne, G. (2014). Operating system concepts and essentials. John Wiley & Sons.

Siowiorek, D., & Swarz, R. (2017). Reliable computer systems: Design and evaluation. Digital Press.

Smith, R. (2018). Crime in the digital age: Controlling telecommunications and cyberspace illegalities. Routledge.

White, G.B., Fisch, E.A., & Pooch, U.W. (2017). Computer system and network security. CRC Press.