Cyber Security Assignment | Homework Help Websites
Respond to student……support your response….100 min
IPS can be crippling to an organization if it isn’t tuned properly. If it isn’t tuned properly it can deny the flow of legitimate traffic through the system and cripple it. IPS is the better choice in my opinion because it can not only detect threats but it can prevent them as well.
An IPS is similar to an IDS, except that they are able to block potential threats as well. They monitor, log and report activities, similarly to an IDS, but they are also capable of stopping threats without the system administrator getting involved. If an IPS is not tuned correctly, it can also deny legitimate traffic, so they are not suitable for all applications. (Rapid7, 2017)
It is imperative that whomever is in charge of the system updates the signature library as much as possible. This will lead to less false positives in the system and allow better flow of traffic.
Rapid7. (2017). The pros and cons of intrusion detection systems. Retrieved from https://blog.rapid7.com/2017/01/11/the-pros-cons-of-intrusion-detection-systems/
Invensys. (2018). Process control network security: Intrusion prevention in a control systems environment. Retrieved from https://www.chemicalprocessing.com/assets/Media/MediaManager/Invensys_Intrusion_Prevention.pdf
Respond to student support your report… min 100 words
This is because physical access controls are integrating with logical security technologies. The convergence of the IP network and the migration of legacy sensors and appliances to TCP/IP have helped drive this transformation. Cameras are now IP-based; card readers use the IP network instead of a proprietary network; and access lists, policies, and procedures are stored and generated by computers. If attackers gain physical access, it is really easy to go further and commit cybercrime. As a result, their integration is very important to advance the security system at large. Any device present that is connected to the network must be protected to ensure that it cannot be turned into a tool to be used in an attack (Carney, 2011). Therefore, in order to narrow the security gap both professionals must work hand in hand. At the same time, this integration may be overwhelming for the IT staff or the logical security professionals as they were separated systems before.
Carney, J. (2011). Why Integrate Physical and Logical Security? Retrieved from https://www.cisco.com/c/dam/en_us/solutions/industries/docs/gov/pl-security.pdf
Respond to student …support your response…..100 min.
Physical access controls are important, while most attacks happen over the wire physical security protects the physical devices and information. With most organizations going to the cloud it is important to keep in mind the devices that are present. Routers, firewalls, and desktop devices can all be breached physically installing backdoors, the most important reason for physical security is the employees that are working in the building. Although it is important to establish and keep physical security it could be overwhelming for security teams in budget and resources.
Some challenges that come with physical security is the flow of people going in and out, as well as manning these areas. Mantraps have to be manned and managed; mantraps are only successful if there is a person to manage traffic and make sure there is not tailgating happening. When I worked for ADP there was only one entrance, this entrance had several gates (6 or 7 glass doors with card readers). Only one person per glass door was allowed and security personnel was always present to make sure this policy was implemented, visitors had to sign in and wait for a sponsor to escort them to their destination.
Another similar example is proximity card readers to enter special areas. This s a great security control but it has several vulnerabilities such as tailgaters, and one important issue presented by Covington, R. is off-the-shelf hardware and software to capture badge data. (2015). He presented an example of an auditor that used this technology to ride and follow employees and eventually gathered all the data needed to access and enter any building. Having a good budget and resources to man and enforce physical security policies is very important.
Covington, R.(2015). Physical security: the overlooked domain, CSO from IDG. Retrieved from https://www.csoonline.com/article/2939322/security/physical-security-the-overlooked-domain.html