4.0 Network+ Certification Cram Notes : Network Security

Network security is the process of protecting a computer network from unauthorized access, theft, and damage by implementing various technologies, policies, and procedures. It involves protecting all components of the network, including servers, switches, routers, firewalls, end-user devices, and the data stored and transmitted over the network. The goal of network security is to ensure the confidentiality, integrity, and availability of data and network resources, while preventing unauthorized access, modification, or destruction of network components. This can be achieved through a combination of hardware, software, and processes that are designed to detect, prevent, and respond to security threats and vulnerabilities.

4.0 Network Security

4.1 Explain common security concepts.
4.2 Compare and contrast common types of attacks.
4.3 Explain the following network hardening best practices..
4.4 Compare and contrast remote access methods and security implications.
4.5 Explain the importance of physical security.

4.1 Explain the following common security concepts.

1. Confidentiality, Integrity, Availability (CIA): Confidentiality refers to the protection of sensitive information from unauthorized access or disclosure. Integrity refers to the assurance that information has not been altered, tampered with, or destroyed in an unauthorized manner. Availability refers to the ability of authorized users to access information and systems when needed.

2. Threats: Threats to network security can come from internal or external sources. Internal threats refer to security breaches that occur within an organization, such as unauthorized access by employees, while external threats come from outside sources, such as hackers, cyber criminals, and nation-state actors.

3. Vulnerabilities: Vulnerabilities are weaknesses in a system that can be exploited by attackers to gain unauthorized access, steal data, or cause harm. Common Vulnerabilities and Exposures (CVE) is a list of standardized names for vulnerabilities that are maintained by the MITRE Corporation. Zero-day vulnerabilities are security vulnerabilities that are unknown to the vendor or the public, and are actively being exploited by attackers.

Exploits

Exploits refer to a specific way in which a vulnerability or weakness in a system is used to carry out unauthorized actions or gain access to sensitive information. An exploit is often created by a hacker or attacker with malicious intent.

Least privilege

Least privilege is a security principle that involves granting users and processes only the minimum level of permissions and privileges necessary to perform their jobs. This reduces the potential for security breaches and helps to minimize the damage that can be caused if a breach does occur.

Role-based access

Role-based access is a security model that grants access to specific resources and functions based on a user's role within an organization. This helps to ensure that users only have access to the information and systems they need to perform their jobs and can reduce the risk of security breaches.

Zero Trust

Zero Trust is a security approach that assumes that all network traffic is potentially dangerous and must be authenticated, authorized, and encrypted. It involves verifying the identity of all devices, users, and applications accessing a network, regardless of whether they are inside or outside the network perimeter. The goal of Zero Trust is to create a secure and resilient network environment that can withstand attacks and protect sensitive information.