UNIT – 3

Basics of Network
Security Concepts and
Its Importance
 • Network security refers to policies,
Introduction technologies, and practices designed to
protect network infrastructure and data
to Network from unauthorized access, cyber threats,
Security and breaches. It ensures confidentiality,
integrity, and availability of information.
 Key Concepts of Network Security
Network security is built on fundamental principles:

- CIA Triad: Confidentiality, Integrity, Availability

- Authentication and Authorization

- Encryption

- Firewalls and Network Monitoring

 Key Concepts of
Network Security
The CIA Triad
The CIA Triad forms the foundation
of network security:

• Confidentiality: Ensuring that only

authorized individuals have access
to sensitive data.

• Integrity: Maintaining the

accuracy and reliability of data,
preventing unauthorized
alterations.

• Availability: Ensuring that

network resources and services
are accessible when needed by
authorized users.
 Confidentiality

Ensures that only authorized

individuals can access data.
Examples:

- Data Encryption (AES, RSA)

- Access Control Policies

- Secure Authentication
Methods
 Integrity
Maintains accuracy and reliability of data.

Prevention Methods:

- Hash Functions (SHA-256, MD5)

- Digital Signatures

- Data Validation Techniques

 Availability
Ensures network resources are accessible when needed.

Protection Methods:

- Redundant Systems

- Load Balancing

- DDoS Mitigation Strategies

Authentication and Authorization
Authentication verifies user identity, while authorization determines
access levels.

Preventions Methods:

- Passwords and MFA

- Biometric Authentication

- Role-Based Access Control (RBAC)

 Encryption
• Encryption is the process of
converting readable data into an
unreadable format (ciphertext)
to protect it from unauthorized
access. It ensures secure
communication over networks.

• Examples include:
• AES (Advanced Encryption
Standard)
• RSA (Rivest-Shamir-Adleman)
• TLS (Transport Layer Security)
for secure web communications.
 Firewalls
Firewalls act as a security barrier between trusted and untrusted networks. They
inspect incoming and outgoing traffic based on predefined security rules.

Types of firewalls include:

- Packet Filtering

- Stateful Inspection

- Proxy Firewalls

- Next-Generation Firewalls (NGFW)

 IDS/IPS monitor and
prevent cyber threats in
Intrusion real time.
Detection
- IDS: Alerts on suspicious
and activity
Prevention
Systems - IPS: Blocks threats
automatically
 Encrypts internet
traffic for secure
communication.
Virtual
Private - Types: Remote
Access VPN, Site-
Networks to-Site VPN

(VPNs) - Protocols:
OpenVPN, IPsec,
PPTP
 Protocols ensure secure data
transmission:

- HTTPS (HyperText Transfer

Secure Protocol Secure) for encrypted

web communication

Network - SSH (Secure Shell) for secure

remote access.

Protocols
- IPSec (Internet Protocol Security)
for encrypted network traffic.

- TLS (Transport Layer Security) for

encrypting data in transit.
Common Network
Security Threats
 Various cyber threats target
networks:

Common - Malware Attacks

Network - Phishing Scams

Security
Threats - Denial-of-Service (DoS) Attacks

- Man-in-the-Middle (MITM)
Attacks
 Malicious software designed to
harm or exploit systems.

Common types of malware include:

Malware Viruses – Self-replicating programs

that spread between devices.

Worms – Standalone programs that

spread across networks.

Trojans – Malicious programs

disguised as legitimate software.

Ransomware – Encrypts files and

demands a ransom for decryption.
 Phishing Attacks
Phishing is a form of social engineering where attackers trick
users into revealing sensitive information (e.g., passwords,
credit card details) through fake emails or websites.

Social engineering attack where users are tricked into

providing sensitive data.

- Methods: Fake emails, websites, messages

- Prevention: Awareness training, email filtering

 Flooding a network/server
with excessive traffic to
Denial-of- cause disruption.
Service
(DoS) - DoS: Single source attack
Attacks

- DDoS: Multiple
compromised sources
(botnets)
 Attackers intercept and
alter communication
between two parties.

Man-in-the-
Middle - Examples:
(MITM) Eavesdropping on
Wi-Fi networks, session
Attacks hijacking

- Prevention: VPNs,
HTTPS, strong
encryption
 Employees or
contractors with access
to networks may pose
security risks.

Insider
- Intentional (Malicious)
Threats

- Unintentional
(Negligence, phishing
attacks)
 Importance of
Network Security
 Network security is essential to:

- Protect sensitive data

Importance
of Network - Prevent cyber threats
Security
- Ensure business continuity

- Comply with regulations

 Data security
prevents
unauthorized
access.

Protecting - Examples:
Sensitive Personal, financial,
and business data
Data protection

- Methods:
Encryption, access
control, secure
storage
 Strong security
measures reduce
the risk of cyber
attacks.

Preventing
- Impact: Financial
Cyber loss, reputation
damage
Attacks

- Solutions:
Firewalls, IDS/IPS,
security policies
 Security ensures
organizations can
operate without
disruptions.

Ensuring
- Preventing
Business downtime from
attacks
Continuity

- Disaster recovery
planning
 Organizations must
comply with legal security
requirements:

- GDPR (General Data

Compliance Protection Regulation)

with
Regulations - HIPAA (Health
Information Privacy)

- ISO 27001 (Information

Security Standard)
 Remote work
security is
essential due to
Securing increased risks.
Remote Work
Environments - Measures: VPNs,
endpoint security,
multi-factor
authentication
 Key strategies to enhance
security:

Best
- Regular updates and
Practices patch management

for
Network - Strong password policies
and MFA
Security
- Employee awareness and
training
 Keeping software
and systems
updated to fix
Regular vulnerabilities.
Security
Updates - Importance:
Patching security
holes to prevent
exploits
 Using complex
passwords and multi-
factor
Strong authentication.

Password
Policies - Examples:
Minimum 12-
character passwords,
2FA implementation
 Isolating critical
systems from
general networks
to limit threats.
Network
Segmentation
- Benefits:
Reduced attack
surface, improved
security controls
 Educating users
about cybersecurity
threats and best
Employee practices.

Training &
Awareness
- Topics: Phishing,
social engineering,
secure browsing
 Implementing
security tools for
monitoring and
Use of protection.
Security
Tools - Examples:
Firewalls, antivirus
software, security
analytics
 Data Regular data backups
to prevent data loss in
Backup cyber attacks.

and
Recovery - Best Practices:
Automated backups,
Plans secure storage, disaster
recovery plans
 Conclusion

Network security is a critical aspect of modern

digital infrastructure.

- Continuous monitoring and improvement are

necessary to protect against evolving threats.

- Organizations and individuals must implement

best practices to safeguard data and systems.