Access Control
PEER POST 1
Naga Venkata Durga Dilip Teja Atmuri
Week 7 Discussion
Top of Form
A virtual private network (VPN) refers to the secure method of hiding an individual UP address, thus shielding the users from being tracked. On the other hand, hypertext transfer protocol secure (HTTPS) offers affirmation that the website being visited is safe from individuals with malicious intent (Miller et al., 2018). Regardless, HTTPS and VPN offers consumers different levels of safety but based on the factor’s: identification, authenticity, authorization, cost, reliability and interoperability. Therefore, I would prefer VPN as it has better consideration of the previously identified factors. A VPN allows users to mask their geographic location while using the internet. IT also allows users to avoid online control in a manner different from the requirements of HTTPS.
Identification, Authentication, Authorization
Considering both security features, they are intended to offer online security, but VPNs hide individual geo-locations, as previously mentioned. It allows for more challenging identification by online criminals or hackers (Miller et al., 2018). Moreover, compared to HTTPS, VPNs offering more security when transmitting information between the client’s device and the network. Finally, VPNs employ AES (Advanced Encryption Standard), promoting higher authentication and authorization as users exploit the internet (Miller et al., 2018). In contrast, HTTPS provides security to clients as they transfer information between their devices and a specific website. Though VPNs offer the consumer more control over their online activities, the administrator does similar activities in HTTPS sites.
Cost, Scalability, Reliability, Interoperability
When addressing costs, VPNs are safer as they have monthly charges of between $6 to $30 depending on the provider and the additional services included. Thus, numerous services are offered by VPNs but at a consume friendly cost. VPNs also offer profound information transfer limits that allow users to smoothly engage in their activities (Talkington et al., 2020). VPNS offers safe admittance to business resources as they build encryption channels for the user using the internet from a reliability perspective. In other words, the internet’s ubiquity, coupled with the functionality of the internet, allows users to operate reliably from any location at a reasonable cost (Talkington et al., 2020). Finally, VPNs exploit AES encryption and previously mentioned that secures users’ online activities and private data when addressing interoperability. VPNs' strategy is to allow users to access geolocation-controlled content (Talkington et al., 2020). By offering easy access, data can be transferred without limitations as the process is seamless and practical. Overall, VPNs disguise the users’ IP address and location and scramble the network service to the users’ data by exploiting AES encryption.
References
Miller, S., Curran, K., & Lunney, T. (2018). Multilayer Perceptron Neural Network for Detection of Encrypted VPN Network Traffic. 2018 International Conference On Cyber Situational Awareness, Data Analytics And Assessment (Cyber SA). https://doi.org/10.1109/cybersa.2018.8551395
Talkington, J., Dantu, R., & Morozov, K. (2020). Detecting Devices and Protocols on VPN-Encrypted Networks. 2020 Sixth International Conference On Mobile And Secure Services (Mobisecserv). https://doi.org/10.1109/mobisecserv48690.2020.9042946
PEER POST 2
Jyothirmai Chatrathi
Remote Access Control
Top of Form
Using the VPN Instead of HTTPS Remote Access Solutions
Using a VPN instead of HTTPS is more logical since it is more secure. While HTTPS is a good solution, it only encrypts data between a specific website and the user's computer device. When a client needs to access a particular webpage safely, this is an ideal solution. I choose a VPN over HTTPS because a VPN encrypts communication between computers connected to the internet very securely than HTTPS (Anderson et al., 2019). A VPN is simply a method of improving security and gaining access to services on a network to which a client is not physically connected. It is a method of connecting with an internet link remotely to the appropriate network, from the apartment or wherever the user might be. Keep in mind that using IPSec for a VPN can encrypt the traffic. The Client can use a free VPN, but it will not be as effective as a paid VPN because it trusts all of the information transferred through it. Besides, a free VPN has a greater chance of capturing activities and displaying customized advertisements.
User authentication is used to demonstrate that a user or entity has been granted permission and thus provides a form of access control. When the users sign in to a Windows machine and select login information from the login panel, they will have prompted a self-authentication. Authentication methods used in site-to-site VPN gateways include a pre-shared key and a cryptographic digital signature (Crawshaw, 2020). Pre-shared key authentication is performed with access, which is not a versatile option in large systems. A digital certificate appears to be a scalable option that must be acquired from a Certification Authority such as Verisign.
A VPN authentication server has three essential functions: an authentication mechanism to correctly identify the user, an authorization feature to determine if the Client appears to have the authority to use the appropriate service following both the user's agreement and an accounting mechanism to monitor the usage. A VPN authentication system equipped with any of these features can authenticate clients, determine whether or not the user should also access a specific service, and preserve usage histories for all devices (Crawshaw, 2020). Despite that most VPN authentication schemes use only a user ID and password to authenticate and encrypt, rising security issues are prompting calls for the use of additional authentication requirements, such as access control line validation, in addition to the login name and credential.
Paying for VPN services are usually provided as part of a subscription for a fee. Users will investigate solutions for about $10 per month or about $70 per year. If the consumer requires additional encryption or protection, commercial packages are available. In comparison, this could boost the expense to about $100 a year, depending on the service provider. It is secure to use a reputable VPN, and it is a simple way to connect to the internet. The Client would use a fast VPN service to protect online data and confidentiality. Using a VPN does not make the users invincible online, but it does make their data and privacy safer (Crawshaw, 2020). VPN is a trustworthy security mechanism. To test the secured interoperability of VPN between two different provider gateways connected by a site-to-site VPN network, that data can be securely transmitted back and forth through the semi-secure web network system.
References
Anderson, B., Chi, A., Dunlop, S., & McGrew, D. (2019). Limitless HTTP in an HTTPS World: Inferring the Semantics of the HTTPS Protocol without Decryption. In Proceedings of the Ninth ACM Conference on Data and Application Security and Privacy (pp. 267-278). https://doi.org/10.1145/3292006.3300025
Crawshaw, D. (2020). Everything VPN is new again: The 24-year-old security model has found a second wind. Queue, 18(5), 54-66. https://doi.org/10.1145/3434571.3439745
Bottom of Form