Computer Data Security and vulnerability

Network Layer of IP

There are many key security risks associated with the network layer and the most specific is the denial of service. The other security issues are

• IP spoofing is a way of fooling a host by spoofing the address and tricking the host into thinking that the communication is with a trusted host.
• RIP attacks: Routing Information Protocol helps in routing data via the shortest path to the end system. The attacker system claims to the shortest path and so the data is routed to it. The attacker system can even change the IP address to claim it is the host.
• ICMP attacks are primarily denial of service attacks which uses the “Time exceeded" or "Destination unreachable" messages to cause a DoS attack using forged ICMP messages.
• PING Flood (ICMP flood) The ICMP sends an echo request for a connection to be made. A DoS attack would be sending a large number of echo requests that will slow or crash the system.
• Ping of Death attack is causing the system to crash or reboot due to an ICMP echo request packet that is larger than usual. The crash occurs due to the inability of the system to reassemble the packets.
Rate this Article
  Excellent

  Good

  Average

  Bad

  Terrible



Current Rating

• Tear drop attack is named after the program that sends IP fragments that is not possible to reassemble. It will cause a halt or reboot of the system.
• Packet Sniffing is a tool that sniffs the packets sent over the internet. Most internet communication is in the form of packets where the information is not encrypted but plain text. In case of passwords or other crucial information being sent the attacker latches on to this for dubious ends.

Transport layer of IP

There are two different protocols that are deployed in the transport layer; TCP- Transmission Control Protocol and UDP-User Datagram Protocol. This layer is vulnerable to Denial of Service attacks.

• TCP "SYN" attack is also known as SYN Flooding and is an exploit of a flaw in TCP three way handshake causing DoS.
• SSL Man-in-the-Middle Attacks is caused by the attacker getting access to a faulty CA-signed certificate.
• Land Attack is a means of crashing the system by sending TCP SYNC packets with the same source destination addresses and port numbers.
• TCP Connecting Hijacking is also known as Man-in-the-Middle attack and is achieved during the TCP three way handshake or the desynchronized state in TCP communication.
• UDP Flood Attack is achieved by sending a UDP packet to a random port on the system. This caused the system to look for the application and in case it cannot find an application it send an ICMP to the address of the sender (which is invalid).Many UDP packets with forged address can crash the system
• Port Scan Attack is done using a IP port scanner or TCP port scanner software. There are many hacking port scanners available that scan the TCP and UDP ports that are open on a system. Once the port scanners identify the open port these are used probe for further attacks or even drop Trojans.

Network Devices that can affect your Network Security

The server is always the main target of information with respect to computer data security and it is from the server that the attacker will seek to find out more information and even attack the clients. The devices that usually compromise the server are the client machine, Routers, Gateways, Printers and other communication devices. It is usually the loopholes in software and communication protocols that are exploited.

Home computing can be another major problem from where an affected computer can contribute to the office computer being affected. For example: A Wireless device that is not secure or is compromised and is connected to the network. This is a problem in the absence of secure methods for transfer of data and prevention of intrusion.

Mobiles and Wireless problems

Mobile Phones are soon becoming a target for mal ware that can crossover to the network and cause a breach in security. A vulnerability was recently observed in Microsoft’s Active Sync program that synchronizes Windows smart phones with PC’s. Crossover is a proof of concept virus written to show the existence of a possibility. Wireless devices have long been a problem especially with the various ports being open and the ease of tapping into a wireless conversation.

Perimeter security and computer physical security has been means in the past but with the internet replacing many private network connections as a means of communication computer security breach is a common happening.

Related Articles

Essentials of a Network: Network Security
How Secure is your Windows Network?
Network Security and Linux: Is it really better?
Is your Home Network Safe From Viruses and Hackers?
How Secure is Your Wireless Network?

Bookmark this page Email this to your friend Add this page to del.icio.us