Incident Preparedness and Response

One of the emerging issues in the field of digital crime and digital forensics is corporate preparedness in dealing with attacks on computer network security. Security attacks and breaches of an organization’s computer network can result in the compromise of confidential data, loss of customer confidence, poor public relations, disruption of business, and severe financial loss. Furthermore, loss of organizational data can present a number of criminal threats, including extortion, blackmail, identity theft, technology theft, and even hazards to national security. This chapter first examines the preparedness and response of three southwestern companies to their own specific threats to corporate cyber-security. Secondly, this chapter suggests that by developing an effective security policy focusing on incident detection and response, a company can minimize the damage caused by these attacks, while simultaneously strengthening the existing system and forensic processes against future attacks. Advances in digital forensics and its supporting technology, including intrusion detection, intrusion prevention, and application control, will be imperative to maintain network security in the future.

Download Full-text

Incident Preparedness and Response

Electronic Government ◽

10.4018/978-1-59904-947-2.ch077 ◽

2011 ◽

pp. 994-1015

Author(s):

Warren Wylupski ◽

David R. Champion ◽

Zachary Grant

Keyword(s):

Network Security ◽

Public Relations ◽

Cyber Security ◽

Security Policy ◽

Digital Forensics ◽

Computer Network ◽

Financial Loss ◽

Intrusion Prevention ◽

Confidential Data ◽

Emerging Issues

One of the emerging issues in the field of digital crime and digital forensics is corporate preparedness in dealing with attacks on computer network security. Security attacks and breaches of an organization’s computer network can result in the compromise of confidential data, loss of customer confidence, poor public relations, disruption of business, and severe financial loss. Furthermore, loss of organizational data can present a number of criminal threats, including extortion, blackmail, identity theft, technology theft, and even hazards to national security. This chapter first examines the preparedness and response of three southwestern companies to their own specific threats to corporate cyber-security. Secondly, this chapter suggests that by developing an effective security policy focusing on incident detection and response, a company can minimize the damage caused by these attacks, while simultaneously strengthening the existing system and forensic processes against future attacks. Advances in digital forensics and its supporting technology, including intrusion detection, intrusion prevention, and application control, will be imperative to maintain network security in the future.

Download Full-text

Research on Computer Network Security Policy of Cloud Computing

Journal of Physics Conference Series ◽

10.1088/1742-6596/1533/3/032044 ◽

2020 ◽

Vol 1533 ◽

pp. 032044

Author(s):

XiaoJing Wang

Keyword(s):

Cloud Computing ◽

Network Security ◽

Security Policy ◽

Computer Network ◽

Computer Network Security

Download Full-text

Personal Computer Network Security Prevention Research

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.971-973.1684 ◽

2014 ◽

Vol 971-973 ◽

pp. 1684-1687

Author(s):

Xiu Juan Sun

Keyword(s):

Network Security ◽

Security Policy ◽

Computer Network ◽

Safety Management ◽

Campus Network ◽

Defense System ◽

Security Threat ◽

Security Technology ◽

Security Issues ◽

Security Problem

this article from the various security threats facing the computer network, systematically introduces the network security technology. And in view of the campus network security issues, firstly analyzes the hidden dangers to the safety of network system in colleges and universities, and then from the build two aspects of security defense system and strengthen the safety management design of the campus network security policy. This paper study, the first thing I learned the main threat to the network security problem, and use the knowledge of security network security problems are analyzed. Secondly, based on the research of the network technology, campus network will also be faced with the security threat. Finally, the idea of established with P2DR model to establish campus network security defense system. And it is concluded that the building of a set of effective network security defense system is the solution Campus network main threats and hidden trouble of necessary ways and measures.

Download Full-text

Research on Security Issues Based on Campus CAN LAN

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.687-691.1884 ◽

2014 ◽

Vol 687-691 ◽

pp. 1884-1887

Author(s):

Yu Dong ◽

Jun Hua Guo

Keyword(s):

Network Security ◽

Security Policy ◽

Computer Network ◽

Local Area Network ◽

Rapid Development ◽

Local Area ◽

Rapid Expansion ◽

Area Network ◽

Campus Network ◽

Security Issues

With the rapid expansion of the rapid development of computer network technology and network coverage, campus network security issues are increasingly complex and outstanding looks up. In this paper, we have the analysis of the campus CAN security situation, put forward the principle of network security policy-making process to be followed, clearly a number of network security policy are also pointed out to build a more complete network security solution ideas. For the current campus CAN security issues, we discuss the principles and methods of the CAN network design process involved in the security system, and propose specific means for the campus CAN technology features. Meanwhile, we have researched and explored the characteristics and design of school network management, combined with the existence of the campus local area network insecurity, indicated security needs of the campus network, and to developed appropriate the security policy of campus network.

Download Full-text

Research on Security Management of Library Computer Network System

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.687-691.1720 ◽

2014 ◽

Vol 687-691 ◽

pp. 1720-1723

Author(s):

Xu Wang

Keyword(s):

Network Security ◽

Security Policy ◽

Computer Network ◽

Rapid Development ◽

Security Management ◽

System Security ◽

Network System ◽

Network Systems ◽

Computer Network Security ◽

The Impact

With the rapid development of network science and technology, people are dependent on the network and usage greatly improved, but the network to bring convenience, but it also brings a lot of network security issues, it has become a constraint library computer network construction greatest limiting factor. This paper describes the impact of the library computer network system security management of specific issues, according to the system requirements of practical application, in terms of the system operating environment, hardware systems, software systems, network systems and system data, such as design of the library computer network system security policy and implementation are discussed. Through the library computer network security threats faced by the system proposed safety management, regulations are important to ensure the development and implementation of computer network system security. Proposed library computer network system security management strategies, we hope to enhance the library computer network security have some help.

Download Full-text

Keamanan Jaringan dengan Cowrie Honeypot dan Snort Inline-Mode sebagai Intrusion Prevention System

Jurnal RESTI (Rekayasa Sistem dan Teknologi Informasi) ◽

10.29207/resti.v5i1.2825 ◽

2021 ◽

Vol 5 (1) ◽

pp. 180-186

Author(s):

Tati Ernawati ◽

Fikri Faiz Fadhlur Rachmat

Keyword(s):

Network Security ◽

Computer Network ◽

Security System ◽

Network Resources ◽

Process Data ◽

Network Systems ◽

Intrusion Prevention ◽

Prevention System ◽

Intrusion Prevention System ◽

Resources Sharing

Computer network systems have been designing to share resources. Sharing resources process, data security, and confidentiality are main issues in anticipating misuse of the access to information by unauthorized parties. The solution to anticipating these problems is the availability of a security system capable of handling various intruders who threaten the system and protect network resources. This study builds and analyzes the performance of computer network security using cowrie honeypot and snort inline-mode as an Intrusion Prevention System (IPS). The development process goes through the stages of analysis, design, implementation, and monitoring. The content analysis method has been using to explore the problems and requirements of the system built. The security system was build by configuring the IP address and network system devices (server, remote admin, client attacker). The test has been carrying out on 3 test parameters (confidentiality, availability, and integrity), comparison testing method has been using to test the integrity parameters. The test results indicate that the system functionality test for user needs have fulfilled, the results of the confidentiality test (83.3%), availability (93.3%), and the integrity of the inline-mode snort show faster response time (0.069 seconds on average) and more CPU resource usage efficient (0.04% average) than the cowrie honeypot. IPS snort inline-mode overall integrity parameter testing is more recommended for used network security systems than cowrie honeypots.

Download Full-text

Computer Local Area Network Security and Management

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.1079-1080.595 ◽

2014 ◽

Vol 1079-1080 ◽

pp. 595-597

Author(s):

Jian Hang Wang ◽

Hai Bo Wang

Keyword(s):

Network Security ◽

Security Policy ◽

Computer Network ◽

Local Area Network ◽

Local Area ◽

Area Network ◽

Control Mechanisms ◽

Network Technology ◽

Starting Point ◽

Security Control

Development of computer network technology has greatly improved the sharing rate and utilization of information resources, many areas are widely used local area network, widely used degree gradually expose their security and confidentiality issues. In particular, people lack knowledge on security policy and network security control mechanisms, leading network security becomes more complex. In this paper, the main problem with the current computer Local Area Network security and the starting point, the focus of the analysis and management of their security and confidentiality measures, hope to further enhance the computer LAN security.

Download Full-text

Statistical models for the number of successful cyber intrusions

The Journal of Defense Modeling and Simulation Applications Methodology Technology ◽

10.1177/1548512917715342 ◽

2017 ◽

Vol 15 (1) ◽

pp. 49-63 ◽

Cited By ~ 5

Author(s):

Nandi O Leslie ◽

Richard E Harang ◽

Lawrence P Knachel ◽

Alexander Kott

Keyword(s):

Network Security ◽

Count Data ◽

Security Policy ◽

Goodness Of Fit ◽

Linear Models ◽

Negative Binomial ◽

Computer Network ◽

Educational Institution ◽

The Mean ◽

Best Fit

We propose several generalized linear models (GLMs) to predict the number of successful cyber intrusions (or “intrusions”) into an organization’s computer network, where the rate at which intrusions occur is a function of the following observable characteristics of the organization: (i) domain name system (DNS) traffic classified by their top-level domains (TLDs); (ii) the number of network security policy violations; and (iii) a set of predictors that we collectively call the “cyber footprint” that is comprised of the number of hosts on the organization’s network, the organization’s similarity to educational institution behavior, and its number of records on scholar.google.com . In addition, we evaluate the number of intrusions to determine whether these events follow a Poisson or negative binomial (NB) probability distribution. We reveal that the NB GLM provides the best fit model for the observed count data, number of intrusions per organization, because the NB model allows the variance of the count data to exceed the mean. We also show that there are restricted and simpler NB regression models that omit selected predictors and improve the goodness-of-fit of the NB GLM for the observed data. With our model simulations, we identify certain TLDs in the DNS traffic as having a significant impact on the number of intrusions. In addition, we use the models and regression results to conclude that the number of network security policy violations is consistently predictive of the number of intrusions.

Download Full-text

A Step Forward to Revolutionise IntrusionDetection System Using Deep Convolution Neural Network

10.20944/preprints202007.0187.v1 ◽

2020 ◽

Author(s):

Samir Bandyopadhyay ◽

Ratul Chowdhury ◽

Arindam Roy ◽

Banani Saha

Keyword(s):

Neural Network ◽

Cyber Security ◽

Computer Network ◽

Information Gain ◽

Detection System ◽

Recognition Rate ◽

Convolution Neural Network ◽

Support Vector ◽

Construction Time ◽

Intrusion Prevention

Cyber security plays an important role to protect our computer, network, program and data from unauthorized access. Intrusion detection system (IDS) and intrusion prevention system (IPS) are two main categories of cyber security, designed to identify any suspicious activities present in inbound and outbound network packets and restrict the suspicious incident. Deep neural network plays a significant role in the construction of IDS and IPS. This paper highlights a novel IDS using optimized convolution neural network (CNN-IDS). An optimized CNNIDS model is an improvement over CNN which selects the best weighted model by considering the loss in every epoch. All the experiments have been conducted on the well known NSL-KDD dataset. Information gain has been used for dimensionality reduction. The accuracy of the proposed model is evaluated through optimized CNN for both binary and multiclass categories. Finally, a critical comparison has been performed with other general classifiers like J48, Naive Bayes, NB tree, Random forest, Multilayer Perceptron (MLP), Support Vector Machine (SVM), Recurrent Neural Network (RNN) and Convolution Neural Network(CNN). All the experimental results demonstrate that the optimized CNN-IDS model records the best recognition rate with minimum model construction time.

Download Full-text