Fill in Order Details

  • Submit paper details for free using our simple order form

Make Payment Securely

  • Add funds to your account. There are no upfront payments. The writer will only be paid once you have approved your paper

Writing Process

  • The best qualified expert writer is assigned to work on your order
  • Your paper is written to standard and delivered as per your instructions

Download your paper

  • Download the completed paper from your online account or your email
  • You can request a plagiarism and quality report along with your paper
Posted on by admin

Potential Malicious Attacks,threats and vulnerabilities

Identifying Potential Malicious Attacks, Threats and Vulnerabilities

Name:

Number:

Course:

Lecturer:

Attacks are threats which use a diversity of tools, scripts and programs to start attacks against networks and network devices. The end points like servers and desktops are some of the typical devices under attack. Threats are the people who are eager, willing and equipped to take advantage of every safety weakness with continual search for fresh exploits and weakness. Vulnerability is the weakness that is inherent in every network and device which includes routers, servers, desktops, switches including security devices themselves (Wasserman 2014).

The potential attacks include illegal access, denial of service attack (DoS) and worms, viruses, and Trojan horses. The illegal access in this case is the capability of unauthorized intruder to have access to device(s) for which he/she does not possess an account or password. This involves running a hack, script or tool that exploit called vulnerability of application of system. Denial of service attack (DoS) is where an attacker disables or corrupts networks, systems or services with intention of denying services to the target users. DoS involve crashing or slowing down the system to the point of it becoming unusable. It is the most feared as the attacker does not require prior access to the target since away of access is what is required. It involves running a hack or script. Worms, Viruses, and Trojan Horses involves malicious software introduced in the host with an intention of destroying the system, corrupting the system, replicating itself or deny service or access to the networks services or systems. The malicious software also permits sensitive information to be copied to other systems (Wasserman 2014).

The security controls to consider during implementation in order to protect against the potential malicious attacks include access controls, use of encryption well configuration of network equipment like firewalls, servers, FTP severs and other equipment. Other security controls to consider are use of updated antivirus software against viruses, secured user accounts, strong passwords, use of logical access controls, having disaster recovery plan among others (Wasserman 2014).

Potential concerns for data loss and data theft that may exist in the network are the increased level of skill for attackers as technology also continues to advance. Second id data latency whereby data transfer in wireless network is not as contiguous and consistent as it is in the case of dedicated wired local area network. Next is the sophistication of both security and privacy issues which are extra distributed in such a way that the user section for such services is constantly growing. As the increase of on-demand application usage takes place, the potential of cyber attacks also increases. In addition, the encryption and decryption of data when moving around unreliable and public networks, congestion and packet loss is a problem (Bhadauria et al., 2011).

The potential impact of data latency concern is that attack can take place at any point of the network that may not be certain, making security management difficult since data transfer is not sequential and not consistent. The sophistication of security and privacy concerns have the impact of increasing chances of attacks to the network in a wider range due to its nature of extra distribution. The encryption and decryption of data when moving around unreliable networks also increase the chance of data loss and theft by attackers who may take advantage of such unreliable networks (Bhadauria et al., 2011).

The security controls to consider during implementation in order to protect against the above concerns for data loss and data theft include proper encryption and decryption of files that travels across the network. The design of the security systems should also be improved in order to reduce the complexity of security and privacy issues. The inconsistency and contiguous data transfer experienced in data latency issue can also be controlled by improvement in the design of wireless security systems.

The concepts of information systems security

The information security can be understood from the perspective of concepts such as data/information protection using passwords, data encryption and decryption, access controls logical controls, computer lock and many more. Others include network security which can be achieved through installation and configuration of firewalls, virtual private network (VPNs), routers, and servers including the use of network layers for different types of data/information communication.

Principles of risk management, common response techniques, and issues related to recovery of IT systems.Risk management is the whole process of recognizing, controlling, and alleviating information system associated risks. It includes risk assessment; cost-benefit analysis as well as the choice, implementation, test, and security evaluation of safeguards. This general system safety review takes into an account the effectiveness and efficiency, including effect on the mission and limitations due to policy, regulations and law. The disaster planning and recovery are some of the issues related to recovery of IT systems. The common response includes the use of commercial computer incident/emergency response teams (Zissis & Lekkas, 2012).

How malicious attacks, threats, and vulnerabilities impact an IT infrastructure.

The malicious attacks, threats and vulnerabilities in that they make the IT network infrastructure insecure, weak, or even damage the network completely to an extent that data/ information transmission and reception may not take place at all by making it dysfunctional. If communication is to take place, then the information transmitted and received can be lost, destroyed or corrupted along during transmission at some point of the network infrastructure.

Means attackers use to compromise systems and networks, and defenses used by organizations.

The attackers use the concept of attack simulation that makes the extensive use of conservative attack graph (CAG). The CAG permits the attacker to know accurately where to attack in order to get its complete goal of attack. In CAG is where the attacker has to gain the continuous knowledge and privileges gotten via prior attacks. The component of attack employs CAG to guide the attack where that attack path may include penetration from internet to the target system. The defense mechanism include use of site scanning, use of digital forensics including network address space randomization(NASR) and DYNAT to thwart hit list worm and to make worms easier to detect. The defense can also use the defense component which consists of the configuration manager, hosts active virtual machines (VMs) which can be assigned to any host for the purpose of playing security roles (Rui Zhuang et al., 2013).

References

Bhadauria, R., Chaki, R., Chaki, N., & Sanyal, S. (2011). A survey on security issues in cloud computing. arXiv preprint arXiv:1109.5388.

Wasserman, M. (2014). Network Working Group S. Hartman Internet-Draft Painless Security Intended status: Experimental D. Zhang Expires: July 28, 2014 Huawei.

Rui Zhuang, Su Zhang, Scott A. DeLoach, Xinming Ou, and Anoop Singhal.(2013). Simulation-based Approaches to Studying Effectiveness ofMoving-Target Network Defense. Kansas State University,fzrui,zhangs84,sdeloach,xoug@ksu.edu,National Institute of Standards and Technology, psinghal@nist.gov.

Zissis, D., & Lekkas, D. (2012). Addressing cloud computing security issues. Future Generation Computer Systems, 28(3), 583-592.

ORDER A SIMILAR PAPER AND DELEGATE FULFILMENT OF YOUR ASSIGNMENT TO EXPERT ACADEMIC WRITERS. PLAGIARISM-FREE, GUARANTEED A, TIMELY DELIVERY.

strategic planning visioning session

WHAT OUR CURRENT CUSTOMERS SAY

  • Google
  • Sitejabber
  • Trustpilot
Zahraa S
Zahraa S
Absolutely spot on. I have had the best experience with Elite Academic Research and all my work have scored highly. Thank you for your professionalism and using expert writers with vast and outstanding knowledge in their fields. I highly recommend any day and time.
Stuart L
Stuart L
Thanks for keeping me sane for getting everything out of the way, I’ve been stuck working more than full time and balancing the rest but I’m glad you’ve been ensuring my school work is taken care of. I'll recommend Elite Academic Research to anyone who seeks quality academic help, thank you so much!
Mindi D
Mindi D
Brilliant writers and awesome support team. You can tell by the depth of research and the quality of work delivered that the writers care deeply about delivering that perfect grade.
Samuel Y
Samuel Y
I really appreciate the work all your amazing writers do to ensure that my papers are always delivered on time and always of the highest quality. I was at a crossroads last semester and I almost dropped out of school because of the many issues that were bombarding but I am glad a friend referred me to you guys. You came up big for me and continue to do so. I just wish I knew about your services earlier.
Cindy L
Cindy L
You can't fault the paper quality and speed of delivery. I have been using these guys for the past 3 years and I not even once have they ever failed me. They deliver properly researched papers way ahead of time. Each time I think I have had the best their professional writers surprise me with even better quality work. Elite Academic Research is a true Gem among essay writing companies.
Got an A and plagiarism percent was less than 10%! Thanks!
prevnext

ORDER NOW

CategoriesUncategorized

Consider Your Assignments Done

“All my friends and I are getting help from eliteacademicresearch. It’s every college student’s best kept secret!”

Jermaine Byrant
BSN

“I was apprehensive at first. But I must say it was a great experience and well worth the price. I got an A!”

Nicole Johnson
Finance & Economics

ORDER NOW

Our Top Experts

See Why Our Clients Hire Us Again And Again!


OVER

10.3k
Reviews

RATING
4.89/5
Average

YEARS
13
Mastery

Success Guarantee

When you order form the best, some of your greatest problems as a student are solved!

Reliable

Professional

Affordable

Quick

See our Results

ORDER YOUR ASSIGNMENT NOW

Using this writing service is legal and is not prohibited by any law, university or college policies. Services of Elite Academic Research are provided for research and study purposes only with the intent to help students improve their writing and academic experience. We do not condone or encourage cheating, academic dishonesty, or any form of plagiarism. Our original, plagiarism-free, zero-AI expert samples should only be used as references. It is your responsibility to cite any outside sources appropriately. This service will be useful for students looking for quick, reliable, and efficient online class-help on a variety of topics.