Network Security
Network Security
Over the last 10 years, computers have increased in speed and capacity while decreasing drastically in price. Computers that where once used in the corporate environment, are now slower than typical household computers. While this change occurred, telecommunications have improved to allow computers to communicate easily from remote locations, adding great opportunities for illegal activities. Data can be changed or destroyed, systems can be made to malfunction and long distance charges can be avoided. One of the biggest challenges today is to control the network security. Network security is having protection of networks and their services from unauthorized access, destruction, or disclosure. Malicious acts bring up the important topic of disaster recovery. Companies must have up to date copies of their important documents and software to prevent extended downtime. The saved information will let the company’s employees continue to work while the IT department deals the damaged media.
In 2002, computer virus attacks caused companies roughly $20 billion to $30 billion up from $13 billion in 2001. This number continues to grow as more computers are sold. Users must realize the risk of the internet and file sharing before the statistics can decline. Examples are peer-to-peer download software, instant messaging channels, and email. These examples sound like home user issues but the reality is that employees are always finding ways to use this software in the working environment. In the end, it jeopardizes the network and costs companies money. Software companies have developed ways to deal with computer viruses and email spam in an automated fashion. Some can be free for personal use and others are expensive intended for corporate level networks.
Confidentiality in computer systems prevents the release of information to unauthorized people. Individuals who trespass into someone else’s computer system or exceed their own authority in accessing certain information, violate the legitimate owner’s right to keep private information secret. Integrity of electronically stored information ensures that no one has tampered with it or modified it without authorization. Any unauthorized corruption, impairment, or modification or computer information or hardware constitutes an attack against the integrity of that information. Many of the malicious hacking activities, such as computer viruses, worms, and Trojan horses, fall into the integrity category. The same is true for individuals who purposefully change or manipulate data either for profit or some other motivation, such as revenge, politics, terrorism, or simply for a challenge.
Internal computer crimes are alterations to programs that result in the performance of unauthorized functions within a computer system. These offenses, usually committed by a computer programmers, require and extensive amount of computer knowledge. A programmer may change an existing program so that it appears to operate normally but in fact performs unwanted functions whenever logical conditions are satisfied. Under these conditions, the program may erase files, change data, or cause a system to crash. Viruses, the most recent type of internal computer crime are sets of instructions that secretly attach themselves to other programs. They can spread through a system and to other systems when the infected program is copied or transmitted. The destructive instructions can be embedded in other programs which may later be executed on other systems.
Companies such as Microsoft have struggled with security problems. Trustworthy Computing, was an attempt for Microsoft to employ better security and customer response. They even went as far as delaying shipments to review code and redo its development process. Half a dozen months after the release of Windows 2000, Microsoft released 32 updates while 21 were considered to be critical. Showing improvement