Docsity
Log inSign up
Docsity
Prepare for your exams
Prepare for your exams

Study with the several resources on Docsity

Earn points to download
Earn points to download

Earn points by helping other students or get them with a premium plan

Guidelines and tips
Guidelines and tips
Sell on Docsity
Sell on Docsity
Docsity AI
Docsity AI
Log inSign up

Prepare for your exams

Study with the several resources on Docsity

Find documents

Prepare for your exams with the study notes shared by other students like you on Docsity

Search for your university

Find the specific documents for your university's exams

Docsity AINEW

Summarize your documents, ask them questions, convert them into quizzes and concept maps

Explore questions

Clear up your doubts by reading the answers to questions asked by your fellow students

Earn points to download

Earn points by helping other students or get them with a premium plan

Share documents
download point icon20 Points

For each uploaded document

Answer questions
download point icon5 Points

For each given answer (max 1 per day)

All the ways to get free points
Get points immediately

Choose a premium plan with all the points you need

Study Opportunities

Choose your next study program

Get in touch with the best universities in the world. Search through thousands of universities and official partners

Community

Ask the community

Ask the community for help and clear up your study doubts

Free resources

Our save-the-student-ebooks!

Download our free guides on studying techniques, anxiety management strategies, and thesis advice from Docsity tutors

Network Security Essentials: IDS, IPS, and Network Protocols, Exams of Advanced Education

Harvard UniversityAdvanced Education

An overview of essential hardware and operating system concepts, focusing on network security and components. It covers intrusion detection and prevention systems (ids/ips), unified threat management (utm), aaa network security, and various network ports and devices like routers, switches, and gateways. Additionally, it explains networking models such as osi and tcp/ip, along with protocols like http, tcp, dhcp, arp and syslog. Designed to help students understand the fundamental aspects of network infrastructure and security. (410 characters)

Typology: Exams

2024/2025

Available from 07/11/2025

Smartsolutions
Smartsolutions 🇺🇸

3

(4)

18K documents

1 / 6

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
D386 HARDWARE AND OPERATING SYSTEMS ESSENTIALS WITH
100% VERIFIED SOLUTIONS!!
Intrusive detection system(IDS)
monitors the network to detect threats (passive listening)
- works well in tap mode (connected to network to view incoming/outgoing traffic)
- sends an alert to the administrator about suspicious behavior
Intrusion prevention system(IPS)
intercepts and blocks threats (acts)
- must be positioned in in-line mode (between device responsible for incoming/outgoing
traffic and computer)
- nodes use routed cables connected to IPS device to create a choke point
- appears invisible on the network
Unified Threat Management (UTM)
a combination of IDS, IPS, next-gen firewall (NGFW), antivirus, VPN, web-filtering, data
loss prevention, and anti-malware in a single device or service
- essentially does all the things
AAA Network Security: (Authentication, Authorization, and Accounting)
Authentication - the process of confirming a person's identify
- username and password
- 2-factor authentication
pf3
pf4
pf5

Partial preview of the text

Download Network Security Essentials: IDS, IPS, and Network Protocols and more Exams Advanced Education in PDF only on Docsity!

D 386 HARDWARE AND OPERATING SYSTEMS ESSENTIALS WITH

100 % VERIFIED SOLUTIONS!!

Intrusive detection system(IDS) monitors the network to detect threats (passive listening)

  • works well in tap mode (connected to network to view incoming/outgoing traffic)
  • sends an alert to the administrator about suspicious behavior

Intrusion prevention system(IPS) intercepts and blocks threats (acts)

  • must be positioned in in-line mode (between device responsible for incoming/outgoing traffic and computer)
  • nodes use routed cables connected to IPS device to create a choke point
  • appears invisible on the network

Unified Threat Management (UTM) a combination of IDS, IPS, next-gen firewall (NGFW), antivirus, VPN, web-filtering, data loss prevention, and anti-malware in a single device or service

  • essentially does all the things

AAA Network Security: (Authentication, Authorization, and Accounting) Authentication - the process of confirming a person's identify

  • username and password
  • 2-factor authentication
  • using a 3rd party ACS (access control system) server
  • biometrics (fingerprint scans, Face ID, retina scans, etc.) Authorization - determine what resources the user can access and the operations that can be performed Accounting - monitoring and capturing the events done by the user while accessing the network resources (it's just auditing)

Network Ports

Router directs network traffic based on destination addresses and preset rules,. Selects paths for data packets to cross networks and reach their destinations using IP addresses. These are usually situated between gateways/modems and switches

Switch simply connect multiple devices together on a network and forwards data packets to/from those devices

  • only sends data to the device it is intended for
  • contains memory and knows which node is on which port

Gateway connect a private network to the internet

  • can also just be a device that connects one private network to a larger private network

CAT 4 -16Mbps/100M CAT 5 -100Mbps/100M CAT 5e -1Gbps/100M CAT 6 -1Gbps/100M or 10Gbps/55M CAT 6a -10Gbps/100M CAT 7 -10Gbps CAT 8 -40Gbps

Networking Models: OSI:

  1. Physical Layer - responsible for the transmission and reception of unstructured raw data between a device and a physical transmission medium
  2. Data Link Layer - responsible for the reliable transmission of data frames between two adjacent modes connected by a physical layer
  3. Network Layer- responsible for the transmission of packets between nodes that are directly connected, and for routing packets to their destinations
  4. Transport Layer - responsible for the reliable delivery of data between end points and for error checking
  5. Session Layer - this layer is responsible for managing and coordinating communication sessions between applications on different devices
  6. Presentation Layer - This layer is responsible for data representation, compression, and encryption/decryption
  7. Application Layer - this layer provides services directly to the end user, such as file transfer, email, and remote login (it's what the user actually sees)

TCP/IP(Transmission Control Protocol/Internet Protocol) -TCP/IP is essentially just a broader version of OSI - OSI is the modern standard -Application Layer

-Transport Layer -Internet Layer -Network Access Layer

Protocols -Hypertext Transfer Protocol (HTTP) - an application layer protocol designed to transfer information between networked devices and runs on top of other layers of the network protocol stack -foundation of the WWW and used to load webpages using hypertext links -Transmission Control Protocol(TCP) - designed to send packets across the internet and ensure the successful delivery of data and messages over networks -Communications standard that enables application programs and computing devices to exchange messages over a network

Internet Protocol locates addresses to machines and networks for the exchange of information

  • serve two main functions: network interface identification, and locating addressing
  • these addresses are changed to human-readable formats instead of a series of numbers(for example, Wikipedia is the readable name attached to a series of number (IP) so that people can just type "Wikipedia" into their browser and the IP knows where to find it based on the assigned address)
  • the naming is performed by the domain name server(DNS)

Dynamic Host Configuration Protocol (DHCP)

  • network management protocol used to dynamically assign an IP address to any device, or node, on a network so it can communicate using IP
  • assigns new IP addresses in each location when devices are moved from place to place, which means network administrations do not have to manually configure each