Security
Network security refers to any activity or measure designed to protect the usability and integrity of a network and its data. It involves preventing unauthorized access, misuse, or disruption of network resources. Effective network security:
- Includes both hardware and software technologies
- Targets a variety of threats
- Stops threats from entering or spreading on your network
- Manages access to the network
The following table describes some of the key threats that can affect the site.
Table 6-2 Key Threats to Security
| Threat | Description |
|---|---|
| Service disruption | Threats such as botnets, malware, adware, spyware, viruses, denial-of-service (DoS) attacks (including buffer overflows and endpoint exploitation), Layer-2 attacks, and distributed denial-of-service (DDoS) attacks on services and infrastructure can disrupt site operations. |
| Unauthorized access | Threats include intrusions, unauthorized users, privilege escalation, IP spoofing, and unauthorized access to restricted resources. |
| Data disclosure and modification | Threats such as packet sniffing and man-in-the-middle (MITM) attacks can compromise or alter data while it is in transit. |
| Network abuse | Includes peer-to-peer and instant messaging abuse, out-of-policy browsing, and access to forbidden content. |
| Data leak | Data can be leaked from servers and user endpoints, affecting both data in transit and data at rest. |
The following are key requirements for a secure site design:
- Service availability and resiliency
- Prevent unauthorized access, network abuse, intrusions, data leaks, and fraud
- Ensure data confidentiality, integrity, and availability
- Ensure user segmentation
- Enforce access control
- Protect the endpoints
- Protect the infrastructure