Assignment............, Thesis of Information Technology

Assignment 1 Sucurity............

Typology: Thesis

2022/2023

Uploaded on 08/07/2023

nguyen-quoc-thang-btec-ct
nguyen-quoc-thang-btec-ct 🇻🇳

4 documents

1 / 58

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
BTEC FPT INTERNATIONAL COLLEGE
INFORMATION TECHNOLOGY
ASSIGNMENT 1
UNIT 5: Security
STUDENT : NGUYEN QUOC THANG
CLASS : IT05101
STUDENT ID : BC00057
SUPERVISOR : NGUYEN MINH TRIET
CanTho, February 2023
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25
pf26
pf27
pf28
pf29
pf2a
pf2b
pf2c
pf2d
pf2e
pf2f
pf30
pf31
pf32
pf33
pf34
pf35
pf36
pf37
pf38
pf39
pf3a

Partial preview of the text

Download Assignment............ and more Thesis Information Technology in PDF only on Docsity!

BTEC FPT INTERNATIONAL COLLEGE

INFORMATION TECHNOLOGY

ASSIGNMENT 1

UNIT 5 : Security

STUDENT : NGUYEN QUOC THANG

CLASS : IT

STUDENT ID : BC

SUPERVISOR : NGUYEN MINH TRIET

CanTho, February 2023

ASSIGNMENT 1 FRONT SHEET Qualification BTEC Level 5 HND Diploma in Business Unit number and title Unit 5 : Security Submission date Date received (1st submission) Re-submission date Date received (2nd submission) Student name

NGUYEN QUOC

THANG

Student ID BC Class IT05101 Assessor name NGUYEN MINH TRIET Student declaration I certify that the assignment submission is entirely my own work and I fully understand the consequences of plagiarism. I understand that making a false declaration is a form of malpractice. Student’s signature: Grading grid

 Summative Feedbacks:  Resubmission Feedbacks:

Grade: Assessor Signature: Date: Internal Verifier’s Comments: Signature & Date:

Table of content

  • P1 P2 P3 P4 M1 M2 D1 D
  • I. Introduction
  • security breach and discuss its consequences (P1) II. Identify types of security threat to organizations. Give an example of a recently publicized
  • 1.1 Definition threat
  • 1.2 Identify threats agents to organizations
  • 1.3 List type of threats that organization will face
  • 1.3.1 Insider threat
  • 1.3.2 Viruses and worms
  • 1.3.3 Ransomware
  • 1.3.4 Botnet
  • 1.4 What are recent security related? List and give an example with dates
  • 1.5 Discuss the consequences of this breach
  • 1.6 Suggest solutions to organizations
  • III. Describe at least 3 organizational security procedures (P2)
    1. Security procedure definition
    1. Describe at least 3 organizational security procedures
  • 1.6.1 Authentication method
  • 1.6.2 Access control
  • and IDS(P3) IV. Identify the potential impact to IT security of incorrect configuration of firewall policies
  • 1.7 Firewall
  • 1.8 How does a firewall provide security to a network?
  • 1.9 How firewall works
  • 1.10 IDS
  • configured in a network 1.11 .The potential impact (Threat-Risk) of a firewall and IDS if they are incorrectly
  • can improve Network Security V. Show, using an example for each, how implementing a DMZ, static IP and NAT in a network
  • 1.12 Define and discuss with the aid diagram DMZ
  • 1.13 Define and discuss with the aid of diagram static IP
  • 1.14 Define and discuss with the aid of diagram NAT
  • VI. Propose a method to assess and treat IT security risks.(M1)
    1. Necessary methods for security threat assessment and some examples.
    1. The organization's current weakness or threat.
    1. Tools for dealing with IT security risks.
  • 3.1. OpenVAS
  • 3.2. Nikto
  • 3.3. Burp Suite
  • (M2) VII. Discuss three benefits to implement network monitoring systems with supporting reasons.
  • VIII. Investigate how a ‘trusted network’ may be part of an IT security solution.(D1)
  • CONCLUSION
  • References
  • Figure 1 Threat List of Figures
  • Figure 2 Viruses
  • Figure 3 Worms
  • Figure 4 Ransomware
  • Figure 5 Botnet
  • Figure 6 Spam
  • Figure 7 Internet access is not secure
  • Figure 8 negligence security incident
  • Figure 9 security and lost USB stick
  • Figure 10 the convenience of information technology
  • Figure 11 Cheating CEO
  • Figure 12 Stealing customer information
  • Figure 13 Authentication process
  • Figure 14 3 most popular authentication methods today
  • Figure 15 authorization process
  • Figure 16 another example is in discord app
  • Figure 17 Firewall
  • Figure 18 IDS
  • Figure 19 DMZ
  • Figure 20 Static IP
  • Figure 21 Network Address Translation (NAT)
  • Figure 22 Security planning.
  • Figure 23 Risk management.
  • Figure 24 Risk Assessment Table.
  • Figure 25 Example of Solarwinds
  • Figure 26 Solarwinds summary
  • Figure 27 Example Microsoft network monitor.
  • Figure 28 Basic components of a general Zero Trust network model.
  • Figure 29 Zero Trust network model for on-premises web applications.
  • Figure 30 Using firewall to protect DMZ
  • Figure 31 Example using NAT to Allow Internal Users Access to the Internet.
  • Figure 32 Example model of Trusted – Un-Trusted network.

I. Introduction

I work as an intern IT security specialist at FPT Information Security, one of the top security consulting firms in Vietnam (FIS). The business conducts medium-scale business in Vietnam, providing technical consulting and implementation for potential IT security issues. many of Due to a lack of technical expertise, customers have outsourced due to security concerns. My manager, Jonson, requested that I give a presentation as part of my responsibilities to aid with training educating subordinates on relevant instruments and methods for calculating security risks in addition to your company's standards for protecting your data and devices.

II. Identify types of security threat to organizations. Give an example of a

recently publicized security breach and discuss its consequences (P1)

1.1 Definition threat

Sometimes, cyber threats are confused with vulnerabilities. Looking at the definitions, "potential" is the key phrase. The threat does not originate from a security hole in a process or organization. Something may choose to bypass security. This may correspond to a vulnerability that is a real defect that can be exploited. In general, the threat persists despite all possible defenses. However, there are ways to reduce the likelihood that it will be understood.

1.2 Identify threats agents to organizations

Figure 1 Threat

  • Worms: A worm is a computer software that spreads on its own without user intervention or internal replication. A worm that enters the system begins to multiply immediately, infecting unsecured networks and machines. Figure 3 Worms 1.3.3 Ransomware Figure 4 Ransomware During a ransomware attack, the victim's PC is usually encrypted and locked, preventing the victim from using the device or the information stored on it. Victims must pay programmers to regain access to the device or information usually in virtual currency like Bitcoin. Through malicious email connections, corrupted software programs, infected external storage devices, and compromised websites, ransomware can spread.

1.3.4 Botnet Figure 5 Botnet Botnets are a group of Internet-connected devices such as computers, mobile phones, servers, and Internet of Things (IoT) devices that have been infected and relatively restricted by a common form of malware. Botnet malware often searches the internet for vulnerable utilities. Audience of risky entertainers It would be wise to avoid contaminating any similar utilities when building botnets since subscription rights and other features of these services are not usually set by the user. known. These botnets are controlled by dangerous entertainers who are often cybercriminals. They use them to spread denial of service attacks, spam, click fraud, and generate harmful traffic. 1.3.5 IT security and spam/phishing The oldest computer security problems still exist in many places. Businesses experience significant losses as a result of these behaviors every year. Examples include asking about attachments from enigmatic senders or tapping the "Not for this Purpose" section at the top. Figure 6 Spam

1.3.8 Security^ IT^ and^ lost^ USB^ stick Have you ever encountered a stuck USB? Am I merely a strange stick lying around or am I something that has become lost? Correct? Are you wondering and have you added it to your computer? If so, you're not the only one. To see what would happen, more than 300 USBs were "accidentally" misplaced as part of the study. Nearly all sticks were chosen by searchers, and 45% of stored files were opened. Figure 9 security and lost USB stick 1.3.9 IT security loses to convenience The most recent Windows updates must be installed before the computer may be restarted. However, in instances like these and others, the machine lags due to malware scanning. Lazy workers decide to discontinue these operations totally. If an antivirus scanner or update offers the choice to deactivate it, it will also do so. The cost of IT security is very high. Figure 10 the convenience of information technology

1.3.10 IT security and CEO fraud In the so-called CEO scam, the criminal calls or emails the victim posing as the business director. They make sure a worker transfers a big chunk of money to another country. After being confused by the other party's authority, the employee approves the transaction. This deception might easily result in damage worth millions of dollars, with major consequences for everyone concerned. Figure 11 Cheating CEO 1.3.11 If you change employment, steal customer information Providing sensitive customer information to potential employees seems to be standard procedure across several industries. Everyone is aware of salespeople who have changed employers. Soon later, in an effort to resurrect the company, he contacted us. Yet in this case, we're discussing typical thievery. The problem gets even trickier if the employee keeps using the company laptop after his employment ends. Figure 12 Stealing customer information

  • LikedIn: Nearly 93% of the people in the business, or 700 million LinkedIn users, had access to their personal information online. With testing from 2020 and 2021, the information gave off the impression of being more recent. However, the data did not include login It included personal information that could be used to judge a person's character, such as full names, phone numbers, physical addresses, email addresses, geolocation records, usernames and profile URLs from LinkedIn, personal and professional foundations, genders, and other online media accounts and usernames. In an explanation to Fortune, a LinkedIn representative debates this, saying, "We've explored, and there is no proof that this is new information or that the information is from 2020 and
  1. LinkedIn's present examination demonstrates telephone number, orientation, gathered compensation, and actual location in this informational index didn't come from LinkedIn."

1.5 Discuss the consequences of this breach

A data breach might have as many distinct effects as there are types of breaches. It might only involve one worker learning the salary of his coworkers and threatening to file a lawsuit to demand a raise. In contrast, it may be as serious as cybercriminals or Your system's files are accessed by hackers, who then encrypt them before requesting a ransom. If you keep up with the news, you may have noticed that a number of data breaches have recently made the news. These breaches frequently include gaining access to consumer data, including addresses, names, social security numbers, and even credit card numbers. The impacted organizations may have to pay millions of dollars in legal fees and lost revenue as a result of these breaches. After a breach occurs, an organization can have a long and laborious process to identify, identify, and recover from the incident. For larger organizations, the consequences of this type of leaks can be devastating, but they can mark the end for a small business. The best course of action is to plan for it in advance and try to avoid it altogether.

1.6 Suggest solutions to organizations

Some solutions for organizations to avoid data breaches: Inform everyone of their role: It is crucial to make sure that every employee is aware of what to do in the event of a security danger. Additional benefits include lowering the risk of information breaches brought on by employee error, as employees will be able to recognize the damage that a mistake may do. Additionally, it's critical to make sure staff members are aware of how to report security issues and who is in charge of following up on security breaches. This will assist the business in identifying and fixing any program flaws so that you can take charge of a breach when it happens. Control access to data sensibly: Take reasonable measures to keep the data secure once you've determined that you have a business need to retain it. Your staff members do not all require unrestricted access to your network and the data stored there. your network, To restrict access to the locations where personal data is held or to Regulate who can use specific databases, take into account measures like creating separate user accounts. A secured file cabinet could serve as an access control for paper documents, external drives,

User provides login information (username and password) or other authentication information (eg PIN code OTP code still hand face voice smart card...). The system or application checks if this login or other credentials is valid. If this information is not valid, the system will deny access and ask the user to provide login information or other authentication information. If the login or other credentials are valid, the system will create a session for the user and allow access to system or application features. During use of the system or application the user may be asked to re-authenticate (for example, after a period of inactivity when performing important operations when logging in from a new device) ...). When the user ends the session, the system will cancel this session and ask the user to re- authenticate the next time he wants to access the system or application. Elements needed for authentication Authentication Password and Pin Password is an extremely simple authentication method, easy to deploy, so it is widely used and popular. Every time a user accesses, each system will save the password in the form of one-way encryption (encryption types can be md5, sha1, or homemade,...). This is a feature that will ensure that even if the password is hacked, it cannot be restored to the original string. This is a method with many different variations such as: designed in the form of a Swipe Pattern PIN or a one-time password (it's specialized for important functions). Figure 13 Authentication process

Biometrics (Biology) Using irises, fingerprints or faces is one of the methods of authentication based on a person's unique factors. This method has the advantage that the “ID” and “password” will always go together so you absolutely do not need to worry about forgetting or losing it. Every time you want to log back in, just actively use these authentication factors easily, without any difficulty. Although there are many methods to authenticate an account, however, you will not be able to avoid risks such as: lost password, stolen fingerprint, lost private key, ... If you apply authentication on the website, the password method is easier to implement and offers more advantages than the screen operations. You can completely improve your own security system with: login habits, locations, browsers, one-time passwords,… Using the key (Public-key cryptography ) This is a method that relies on public and private key encryption algorithms for authentication. To log in to the system, you just need to have the private key on the machine and then log in to the system without having to remember login information such as using a password. Often, server administration systems will often apply this measure. Authentication will be done After understanding what Authentication is and its nature, then how will Authentication perform? The nature of the HTTP request is seen as a message represented by text. It needs an agreed upon signature so that our application can recognize which user it came from. The user's identifiers are anything characteristic such as: username, password, string containing encrypted information, random string of characters. User identification will be anywhere in the HTTP message: URL, Header (cookie header, Authorization header, custom header), body (form field).