Abdelkhalik Mosa, profile picture
Uploaded byAbdelkhalik Mosa
PDF, PPTX1,093 views

Accessing the WAN: Ch4 - Network Security

The document discusses network security, emphasizing the importance of a formal security policy that defines rules for protecting technology and information assets. It identifies common threats and vulnerabilities, including physical threats to infrastructure, social engineering, and various types of network attacks. The document also highlights general mitigation techniques, such as intrusion detection systems and network admission control.

Embed presentation

Download as PDF, PPTX
Save a tree. Please, don't print these slides unless it's necessary. Accessing the WAN: Chapter 4 Abdelkhalik Elsaid Mosa All pictures are copied from Cisco CCNA Exploration: Semester 4 – Accessing the WAN
If you found any mistake’s’ on these slides or if you have any other questions or comments, please feel free to email me at: abdu.elsaid@gmail.com or abdu.elsaid@yahoo.com Thanks, Abdelkhalik Elsaid Mosa Suez Canal University – Faculty of Computers & Informatics Cisco Local Academy – Ismailia - Egypt
Why is Network Security Important?
The Increasing Threat to Security White hat Hacker Black hat Cracker PhreakerSpammer Phisher
Think like an attacker • Step 1. Perform footprint analysis (reconnaissance). • Step 2. Enumerate information. • Step 3. Manipulate users to gain access. • Step 4. Escalate privileges. • Step 5. Gather additional passwords and secrets. • Step 6. Install backdoors. • Step 7. Leverage the compromised system.
Open versus Closed Networks
Open versus Closed Networks
Open versus Closed Networks
Open versus Closed Networks
Developing a Security Policy • Security Policy is a formal statement of the rules by which people who are given access to an organization's technology and information assets must abide. • A security policy meets these goals: 1. Informs users, staff, and managers of their obligatory requirements for protecting technology and information assets. 2. Specifies the mechanisms through which these requirements can be met. 3. Provides a baseline from which to acquire, configure, and audit computer systems and networks for compliance with the policy. • ISO/IEC 27002: a guideline for developing organizational security standards. Risk assessment - Security policy - Organization of information security - Asset management - Human resources security - Physical and environmental security - Communications and operations management - Access control - Information systems acquisition, development, and maintenance - Information security incident management - Business continuity management, Compliance
Common Security Threats: Vulnerabilities • Threats are the people interested and qualified in taking advantage of each security weakness. • Vulnerability is the degree of weakness which is inherent in every network and device. This includes routers, switches, desktops, servers, and even security devices. 1. Technological weaknesses
Common Security Threats: Vulnerabilities 2. Configuration weaknesses 3. Security policy weaknesses
Common Security Threats: Threats to Physical Infrastructure • The four classes of physical threats are: 1. Hardware threats-Physical damage to servers, routers, switches, cabling plant, and workstations 2. Environmental threats-Temperature extremes (too hot or too cold) or humidity extremes (too wet or too dry) 3. Electrical threats-Voltage spikes, insufficient supply voltage (brownouts), unconditioned power (noise), and total power loss 4. Maintenance threats-Poor handling of key electrical components (electrostatic discharge), lack of critical spare parts, poor cabling, and poor labeling
Common Security Threats: Threats to Physical Infrastructure
Common Security Threats: Threats to Physical Infrastructure
Common Security Threats: Threats to Physical Infrastructure
Common Security Threats: Threats to Physical Infrastructure
Common Security Threats: Threats to Networks
Common Security Threats: Social Engineering
Types of Network Attacks
Types of Network Attacks: Reconaissance
Types of Network Attacks: Access Attacks
Types of Network Attacks: Access Attacks
Types of Network Attacks: Access Attacks
Types of Network Attacks: Access Attacks
Types of Network Attacks: DoS and DDoS
Types of Network Attacks: DoS and DDoS
Types of Network Attacks: DoS and DDoS
Types of Network Attacks: DoS and DDoS
Types of Network Attacks: DoS and DDoS
Types of Network Attacks: Malicious Code Attacks
General Mitigation Techniques
General Mitigation Techniques: IDS, IPS
General Mitigation Techniques: Common Security Appliances & Applications Network admission controlAdaptive Security Appliances
Accessing the WAN: Ch4 - Network Security

More Related Content

PPTX
Network Fundamentals: Ch8 - Physical Layer
byAbdelkhalik Mosa
 
PPTX
LAN Switching and Wireless: Ch7 - Basic Wireless Concepts and Configuration
byAbdelkhalik Mosa
 
PPT
Network topology and cable's
byzahid6
 
PDF
W-LAN (Wireless Local Area Network)
byParvesh Taneja
 
PPTX
Computer network
byManash Kumar Mondal
 
PPT
Wireless lan
bySajan Sahu
 
PPTX
01 coms 525 tcpip - networking concepts review
byPalanivel Kuppusamy
 
PPTX
Cn fundamentals of networks
byAravindh Saivaraju
 
Network Fundamentals: Ch8 - Physical Layer
byAbdelkhalik Mosa
 
LAN Switching and Wireless: Ch7 - Basic Wireless Concepts and Configuration
byAbdelkhalik Mosa
 
Network topology and cable's
byzahid6
 
W-LAN (Wireless Local Area Network)
byParvesh Taneja
 
Computer network
byManash Kumar Mondal
 
Wireless lan
bySajan Sahu
 
01 coms 525 tcpip - networking concepts review
byPalanivel Kuppusamy
 
Cn fundamentals of networks
byAravindh Saivaraju
 

What's hot

PDF
Ccna (200 125)
byshajeeha khalid
 
PPTX
Ethernet - Networking presentation
byViet Nguyen
 
PPTX
Ieee standards
byBisma Sajid
 
PDF
WLAN AND IEEE STANDARDS
byInocentshuja Ahmad
 
PDF
Ieee 802
byAnkita Tiwari
 
PPTX
Network topology (Details Descriptions with Examples)
byAbdullah Moin
 
PPTX
WLAN
byvivek patel
 
PDF
IEEE 802 Standard for Computer Networks
byPradeep Kumar TS
 
PDF
Wireless ethernet
byJaviTorres13
 
PDF
Introduction of Networking
byNetwax Lab
 
PPTX
Wireless Local Area Networks
byDilum Bandara
 
PDF
IEEE 802 Standards
byVersa Technology
 
PPTX
IEEE 802 standards
byRosie Jane Enomar
 
PPT
Advance Network Technologies
byDr Shashikant Athawale
 
PPTX
Wlan architecture
byVishal Verma
 
DOCX
Wireless lan
byFʑɭ Rɘʜɱʌŋ
 
PPT
Computer networks basic network_hardware_1
byAneesh Nelavelly
 
PPTX
2nd lec wireless terminologies
byInocentshuja Ahmad
 
PPTX
Wireless local area netwok slide
byFʑɭ Rɘʜɱʌŋ
 
PPTX
Wlan
bySandeep Kamath
 
Ccna (200 125)
byshajeeha khalid
 
Ethernet - Networking presentation
byViet Nguyen
 
Ieee standards
byBisma Sajid
 
WLAN AND IEEE STANDARDS
byInocentshuja Ahmad
 
Ieee 802
byAnkita Tiwari
 
Network topology (Details Descriptions with Examples)
byAbdullah Moin
 
WLAN
byvivek patel
 
IEEE 802 Standard for Computer Networks
byPradeep Kumar TS
 
Wireless ethernet
byJaviTorres13
 
Introduction of Networking
byNetwax Lab
 
Wireless Local Area Networks
byDilum Bandara
 
IEEE 802 Standards
byVersa Technology
 
IEEE 802 standards
byRosie Jane Enomar
 
Advance Network Technologies
byDr Shashikant Athawale
 
Wlan architecture
byVishal Verma
 
Wireless lan
byFʑɭ Rɘʜɱʌŋ
 
Computer networks basic network_hardware_1
byAneesh Nelavelly
 
2nd lec wireless terminologies
byInocentshuja Ahmad
 
Wireless local area netwok slide
byFʑɭ Rɘʜɱʌŋ
 
Wlan
bySandeep Kamath
 

Viewers also liked

PPTX
Unit 0 introduction
byVishal kakade
 
PPTX
Routing Protocols and Concepts: Ch5 - Routing Information Protocol (RIP v1)
byAbdelkhalik Mosa
 
PDF
Academic Poster Design, Review and Presentation
byAbdelkhalik Mosa
 
PPT
Chapter 1 - Introduction
byWayne Jones Jnr
 
PDF
A new precision peak detector full wave rectifier
byVishal kakade
 
PPTX
Unit 1 network models & typical examples(part b)
byVishal kakade
 
PPT
Analog communications lab
byVishal kakade
 
PDF
Analog communications lab
byVishal kakade
 
PPTX
Unit 1 network models & typical examples(part a)
byVishal kakade
 
PPT
Pulse amplitude modulation
byVishal kakade
 
PDF
Pulse amplitude modulation & demodulation
byVishal kakade
 
PPT
Pulse modulation (pam)
byVishal kakade
 
PPTX
Unit 2 data link control
byVishal kakade
 
PDF
Data communication lab manual
byNafe Singh Yadav
 
PDF
Pulse amplitude modulation
byVishal kakade
 
DOCX
Ccn(Data communication and networking) edited solution-manual suitable to be ...
byVishal kakade
 
PPTX
Network Fundamentals: Ch11 - Configuring and Testing your Network
byAbdelkhalik Mosa
 
PPTX
P3 m2
byMatthew Horrigan
 
PPTX
Network Fundamentals: Ch6 - Addressing the Network IP v4
byAbdelkhalik Mosa
 
PPTX
IPv6
byAbdelkhalik Mosa
 
Unit 0 introduction
byVishal kakade
 
Routing Protocols and Concepts: Ch5 - Routing Information Protocol (RIP v1)
byAbdelkhalik Mosa
 
Academic Poster Design, Review and Presentation
byAbdelkhalik Mosa
 
Chapter 1 - Introduction
byWayne Jones Jnr
 
A new precision peak detector full wave rectifier
byVishal kakade
 
Unit 1 network models & typical examples(part b)
byVishal kakade
 
Analog communications lab
byVishal kakade
 
Analog communications lab
byVishal kakade
 
Unit 1 network models & typical examples(part a)
byVishal kakade
 
Pulse amplitude modulation
byVishal kakade
 
Pulse amplitude modulation & demodulation
byVishal kakade
 
Pulse modulation (pam)
byVishal kakade
 
Unit 2 data link control
byVishal kakade
 
Data communication lab manual
byNafe Singh Yadav
 
Pulse amplitude modulation
byVishal kakade
 
Ccn(Data communication and networking) edited solution-manual suitable to be ...
byVishal kakade
 
Network Fundamentals: Ch11 - Configuring and Testing your Network
byAbdelkhalik Mosa
 
P3 m2
byMatthew Horrigan
 
Network Fundamentals: Ch6 - Addressing the Network IP v4
byAbdelkhalik Mosa
 
IPv6
byAbdelkhalik Mosa
 

Similar to Accessing the WAN: Ch4 - Network Security

PDF
Ch1-Modern Network Security Threats - CCNA SEC.pdf
byOhmRon
 
PPT
Network Security for Computer science and Engineering.ppt
byAkfeteAssefa
 
PPTX
Cloud Security.pptx
byBinod Rimal
 
PPTX
Network security (syed azam)
bysayyed azam
 
PDF
Vulnerability threat and attack
bynewbie2019
 
PPT
Material best practices in network security using ethical hacking
byDesmond Devendran
 
PDF
RFC 2196 Site Security Handbook
byDavid Sweigert
 
PPT
IT Application and its security awareness
byumanggargcse
 
PPT
IT-Security Awareness and Training session
bysameerroushan
 
PPT
Security Of Information Assets and why it matters.ppt
byhellasassin
 
PDF
Network Security Fundamentals
byRahmat Suhatman
 
PPTX
Presentation1 A.pptx
byRabinBidari
 
PPTX
Network security - Defense in Depth
byDilum Bandara
 
PPT
CCNA_Security_01.ppt
byveracru1
 
PPT
Chapter 1 overview
byali raza
 
PPTX
Seucrity in a nutshell
byYahia Kandeel
 
PDF
Ccna sec 01
byEduclentMegasoftel
 
PDF
Information Security Risk Management
byipspat
 
PPT
Security practivce and their best way to lear
byrahulshah641439
 
DOCX
Riordan Network VulnerabilitiesVulnerabilityThreatProbabil.docx
byjoellemurphey
 
Ch1-Modern Network Security Threats - CCNA SEC.pdf
byOhmRon
 
Network Security for Computer science and Engineering.ppt
byAkfeteAssefa
 
Cloud Security.pptx
byBinod Rimal
 
Network security (syed azam)
bysayyed azam
 
Vulnerability threat and attack
bynewbie2019
 
Material best practices in network security using ethical hacking
byDesmond Devendran
 
RFC 2196 Site Security Handbook
byDavid Sweigert
 
IT Application and its security awareness
byumanggargcse
 
IT-Security Awareness and Training session
bysameerroushan
 
Security Of Information Assets and why it matters.ppt
byhellasassin
 
Network Security Fundamentals
byRahmat Suhatman
 
Presentation1 A.pptx
byRabinBidari
 
Network security - Defense in Depth
byDilum Bandara
 
CCNA_Security_01.ppt
byveracru1
 
Chapter 1 overview
byali raza
 
Seucrity in a nutshell
byYahia Kandeel
 
Ccna sec 01
byEduclentMegasoftel
 
Information Security Risk Management
byipspat
 
Security practivce and their best way to lear
byrahulshah641439
 
Riordan Network VulnerabilitiesVulnerabilityThreatProbabil.docx
byjoellemurphey
 

More from Abdelkhalik Mosa

PPTX
LAN Switching and Wireless: Ch1 - LAN Design
byAbdelkhalik Mosa
 
PPTX
Network Fundamentals: Ch7 - Data Link Layer
byAbdelkhalik Mosa
 
PPTX
Network Fundamentals: Ch3 - Application Layer Functionality and Protocols
byAbdelkhalik Mosa
 
PPTX
Network Fundamentals: Ch9 - Ethernet
byAbdelkhalik Mosa
 
PPTX
Network Fundamentals: Ch4 - Transport Layer
byAbdelkhalik Mosa
 
PPTX
LAN Switching and Wireless: Ch3 - Virtual Local Area Networks (VLANs)
byAbdelkhalik Mosa
 
PPTX
Cloud computing and Cloud Enabling Technologies
byAbdelkhalik Mosa
 
PPTX
LAN Switching and Wireless: Ch2 - Basic Switch Concepts and Configuration
byAbdelkhalik Mosa
 
PPTX
LAN Switching and Wireless: Ch4 - VLAN Trunking Protocol (VTP)
byAbdelkhalik Mosa
 
PPTX
Routing Protocols and Concepts: Ch9 - EIGRP
byAbdelkhalik Mosa
 
PPTX
Network Fundamentals: Ch5 - Network Layer
byAbdelkhalik Mosa
 
PPTX
Towards a Cloud Native Big Data Platform using MiCADO
byAbdelkhalik Mosa
 
PDF
Virtual machine consolidation for cloud data centers using parameter based ad...
byAbdelkhalik Mosa
 
LAN Switching and Wireless: Ch1 - LAN Design
byAbdelkhalik Mosa
 
Network Fundamentals: Ch7 - Data Link Layer
byAbdelkhalik Mosa
 
Network Fundamentals: Ch3 - Application Layer Functionality and Protocols
byAbdelkhalik Mosa
 
Network Fundamentals: Ch9 - Ethernet
byAbdelkhalik Mosa
 
Network Fundamentals: Ch4 - Transport Layer
byAbdelkhalik Mosa
 
LAN Switching and Wireless: Ch3 - Virtual Local Area Networks (VLANs)
byAbdelkhalik Mosa
 
Cloud computing and Cloud Enabling Technologies
byAbdelkhalik Mosa
 
LAN Switching and Wireless: Ch2 - Basic Switch Concepts and Configuration
byAbdelkhalik Mosa
 
LAN Switching and Wireless: Ch4 - VLAN Trunking Protocol (VTP)
byAbdelkhalik Mosa
 
Routing Protocols and Concepts: Ch9 - EIGRP
byAbdelkhalik Mosa
 
Network Fundamentals: Ch5 - Network Layer
byAbdelkhalik Mosa
 
Towards a Cloud Native Big Data Platform using MiCADO
byAbdelkhalik Mosa
 
Virtual machine consolidation for cloud data centers using parameter based ad...
byAbdelkhalik Mosa
 

Recently uploaded

PPTX
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
PDF
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
PDF
Security Forum Sessions from Houston 2025 Event
byMark Simos
 
PDF
December Patch Tuesday
byIvanti
 
DOCX
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
PDF
Cybersecurity: Safeguarding Digital Assets
byYasir Naveed Riaz
 
PPTX
Data Privacy and Protection: Safeguarding Information in a Connected World
byYasir Naveed Riaz
 
PDF
The year in review - MarvelClient in 2025
bypanagenda
 
PDF
Internet_of_Things_IoT_for_Next_Generation_Smart_Systems_Utilizing.pdf
byRoshanSyed12
 
PPTX
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
PDF
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PPTX
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
PDF
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
PDF
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
PDF
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
PPTX
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
PDF
Energy Storage Landscape Clean Energy Ministerial
bySurajitBanerjee38
 
PDF
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
PPTX
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
PPTX
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
Security Forum Sessions from Houston 2025 Event
byMark Simos
 
December Patch Tuesday
byIvanti
 
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
Cybersecurity: Safeguarding Digital Assets
byYasir Naveed Riaz
 
Data Privacy and Protection: Safeguarding Information in a Connected World
byYasir Naveed Riaz
 
The year in review - MarvelClient in 2025
bypanagenda
 
Internet_of_Things_IoT_for_Next_Generation_Smart_Systems_Utilizing.pdf
byRoshanSyed12
 
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
Energy Storage Landscape Clean Energy Ministerial
bySurajitBanerjee38
 
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 

Accessing the WAN: Ch4 - Network Security

  • 1.
    Save a tree.Please, don't print these slides unless it's necessary. Accessing the WAN: Chapter 4 Abdelkhalik Elsaid Mosa All pictures are copied from Cisco CCNA Exploration: Semester 4 – Accessing the WAN
  • 2.
    If you foundany mistake’s’ on these slides or if you have any other questions or comments, please feel free to email me at: abdu.elsaid@gmail.com or abdu.elsaid@yahoo.com Thanks, Abdelkhalik Elsaid Mosa Suez Canal University – Faculty of Computers & Informatics Cisco Local Academy – Ismailia - Egypt
  • 3.
    Why is NetworkSecurity Important?
  • 4.
    The Increasing Threatto Security White hat Hacker Black hat Cracker PhreakerSpammer Phisher
  • 5.
    Think like anattacker • Step 1. Perform footprint analysis (reconnaissance). • Step 2. Enumerate information. • Step 3. Manipulate users to gain access. • Step 4. Escalate privileges. • Step 5. Gather additional passwords and secrets. • Step 6. Install backdoors. • Step 7. Leverage the compromised system.
  • 6.
  • 7.
  • 8.
  • 9.
  • 10.
    Developing a SecurityPolicy • Security Policy is a formal statement of the rules by which people who are given access to an organization's technology and information assets must abide. • A security policy meets these goals: 1. Informs users, staff, and managers of their obligatory requirements for protecting technology and information assets. 2. Specifies the mechanisms through which these requirements can be met. 3. Provides a baseline from which to acquire, configure, and audit computer systems and networks for compliance with the policy. • ISO/IEC 27002: a guideline for developing organizational security standards. Risk assessment - Security policy - Organization of information security - Asset management - Human resources security - Physical and environmental security - Communications and operations management - Access control - Information systems acquisition, development, and maintenance - Information security incident management - Business continuity management, Compliance
  • 11.
    Common Security Threats:Vulnerabilities • Threats are the people interested and qualified in taking advantage of each security weakness. • Vulnerability is the degree of weakness which is inherent in every network and device. This includes routers, switches, desktops, servers, and even security devices. 1. Technological weaknesses
  • 12.
    Common Security Threats:Vulnerabilities 2. Configuration weaknesses 3. Security policy weaknesses
  • 13.
    Common Security Threats:Threats to Physical Infrastructure • The four classes of physical threats are: 1. Hardware threats-Physical damage to servers, routers, switches, cabling plant, and workstations 2. Environmental threats-Temperature extremes (too hot or too cold) or humidity extremes (too wet or too dry) 3. Electrical threats-Voltage spikes, insufficient supply voltage (brownouts), unconditioned power (noise), and total power loss 4. Maintenance threats-Poor handling of key electrical components (electrostatic discharge), lack of critical spare parts, poor cabling, and poor labeling
  • 14.
    Common Security Threats:Threats to Physical Infrastructure
  • 15.
    Common Security Threats:Threats to Physical Infrastructure
  • 16.
    Common Security Threats:Threats to Physical Infrastructure
  • 17.
    Common Security Threats:Threats to Physical Infrastructure
  • 18.
    Common Security Threats:Threats to Networks
  • 19.
    Common Security Threats:Social Engineering
  • 20.
  • 21.
    Types of NetworkAttacks: Reconaissance
  • 22.
    Types of NetworkAttacks: Access Attacks
  • 23.
    Types of NetworkAttacks: Access Attacks
  • 24.
    Types of NetworkAttacks: Access Attacks
  • 25.
    Types of NetworkAttacks: Access Attacks
  • 26.
    Types of NetworkAttacks: DoS and DDoS
  • 27.
    Types of NetworkAttacks: DoS and DDoS
  • 28.
    Types of NetworkAttacks: DoS and DDoS
  • 29.
    Types of NetworkAttacks: DoS and DDoS
  • 30.
    Types of NetworkAttacks: DoS and DDoS
  • 31.
    Types of NetworkAttacks: Malicious Code Attacks
  • 32.
  • 33.
  • 34.
    General Mitigation Techniques:Common Security Appliances & Applications Network admission controlAdaptive Security Appliances