Skip to main content

Firewell security

Firewall is a barrier between Local Area Network (LAN) and the Internet. It allows keeping private resources confidential and minimizes the security risks. It controls network traffic, in both directions.
The following diagram depicts a sample firewall between LAN and the internet. The connection between the two is the point of vulnerability. Both hardware and the software can be used at this point to filter network traffic.
internet_technologies_tutorial
There are two types of Firewall system: One works by using filters at the network layer and the other works by using proxy servers at the user, application, or network layer.
Key Points
  • Firewall management must be addressed by both system managers and the network managers.
  • The amount of filtering a firewall varies. For the same firewall, the amount of filtering may be different in different directions.

Comments

Post a Comment

Popular posts from this blog

AES

The AES is likely to be the commercial-grade symmetric algorithm of choice for years, if not decades. Let us look at it more closely . The AES Contest In January 1997, NIST called for cryptographers to develop a new encryption system. As with the call for candidates from which DES was selected, NIST made several important restrictions. The algorithms had to be ·  Unclassified ·  publicly disclosed ·  available royalty-free for use worldwide ·  symmetric block cipher algorithms, for blocks of 128 bits ·  usable with key sizes of 128, 192, and 256 bits AES is based on a design principle known as a  substitution-permutation network, combination of both substitution and permutation, and is fast in both software and hardware. Unlike its predecessor DES, AES does not use a  Feistel network.   AES is a variant of Rijndael which has a fixed  block size  of 128  bits,  and a  key size...
Post a Comment
Read more
Principle security There are five principles of security. They are as follows: ·  Confidentiality: The principle of confidentiality specifies that only the sender and the intended recipient should be able to access the content of the message.               Integrity: The confidential information sent by A to B which is accessed by C without the permission or knowledge of A and B.   ·  Authentication: Authentication mechanism helps in establishing proof of identification. ·  Non-repudiation: ·  Access control: Access control specifies and control who can access what. ·  Availability: It means that assets are accessible to authorized parties at appropriate times. Attacks We want our security system to make sure that no data are disclosed to unauthorized parties. Data should not be modified in illegitimate ways   Legitimate user can access the data ...
Post a Comment
Read more