See discussions, stats, and author profiles for this publication at: https://www.researchgate.

net/publication/326083990

A Review on Network Security

Article · May 2018

DOI: 10.23956/ijarcsse.v8i5.687

CITATIONS READS

3 2,002

2 authors, including:

Rizwan Khan
Galgotias University
106 PUBLICATIONS 894 CITATIONS

SEE PROFILE

All content following this page was uploaded by Rizwan Khan on 04 July 2018.

The user has requested enhancement of the downloaded file.

International Journals of Advanced Research in
Computer Science and Software Engineering Research Article May
ISSN: 2277-128X (Volume-8, Issue-5) a 2018

A Review on Network Security

Rahul Jain* Rizwan Khan
Scholar, Department of Computer Science & Engineering, Associate Professor, Department of Computer Science &
ABESIT, Ghaziabad, Uttar Pradesh, India Engineering, ABESIT, Ghaziabad, Uttar Pradesh, India
[email protected] [email protected]

Abstract— In Modern era Internet is expanding at a very fast pace, so as its security needs. Security is an important
concept because it contains certain rules, policies and provisions that are being adopted by a network admin to
prevent misuse of network accessible resources. It is necessary for both public and private network because there are
different type of work including transactions, business communications and government agencies. Network security
has become need to prevent information from various threats and viruses.

Keywords— Network Security, Internet, Threats, Firewall, IDS, IPsec.

I. INTRODUCTION
Network Security has become a challenging task for the network service providers to prevent security related
threats. Today we are totally dependent on network or we are surrounded by internet to make our day to day work
easy.
But this poses a challenge for organisations as there information on network can be accessed by any remote
computer who are not permitted to access those resources.
Network security is basically used to protect data on the network and devices on the network. Both the term
network security and information security are used to derive the same meaning.

II. BASIC NEEDS OF NETWORK SECURITY

Earlier hackers were skilled programmers who understood about computer systems and there vulnerabilities.
Today anyone can become hackers by downloading some attack tools that are open source on the internet.
Network security has three fundamental objectives:
a. Availability
b. Confidentiality
c. Integrity

Availability:
Data must be available to the authorised user whenever required. It is the duty of the server to maintain its data
using certain tools and techniques so that it is available to end users.
Data can be made available by regular backup and redundancy methods.

Confidentiality:
It is a process of allowing authorised users to access protective data. For ex while performing bank transactions
only you and the authorised user of the bank should maintain your record, but no one else.
Failure in this lead to theft and leak of protected data.

Figure1: Roles of Security

© www.ijarcsse.com, All Rights Reserved Page | 113

 Jain et al., International Journal of Advanced Research in Computer Science and Software Engineering 8(5)
ISSN(E): 2277-128X, ISSN(P): 2277-6451, pp. 113-115
Integrity:
Data integrity is maintained if data has not been altered or modified. For ex: price of e-commerce site being
altered or when user request to visit a site and malicious attacker redirects you to another site.

III. TYPES OF NETWORK SECURITY METHODS

There are two types of Network Security Methods:
a. WEP (Wi-Fi Equivalent Privacy).
b. WAP (Wi-Fi Protected Access).

A. WEP:
It is an older version of network security protocol. It is used before the WPA protocol and was available for
802.11a and 802.11b devices. WEP is encryption algorithm whose work is to setup network security key. This key
encrypts the information which is send on the network to remote devices.

B.WPA:
It is a newer version of the network security protocol. It is mandatory in the IPV6. The WPA encrypts
information and check whether the network security key is modified or not.
This is beneficial because it maintains authenticity. It is designed to work with most of the routing devices and
access points.

IV. PROBLEMS
As the internet is widely used medium to access and transfer information. There are various threats associated
with it, It is the responsibility of the network administrator to protect the websites and there data from these malicious
attackers.
There are two categories of attacks:
a. Active attacks
b. Passive attacks

a. Active attacks: Active attacks are those in which hacker or attacker attempts to make changes in the data over
the network. Active attacks include:
1. Pretence of someone’s identity as their own identity.
2. Modification in the transmitted message.
3. Replay of the previous message.
4. Denial of service attack.

b. Passive attacks: Passive attacks are those attacks in which communication or system is monitored. This can
be done by many ways including reading emails, tracking online activities or using another system microphone or camera
for spying. It looks less harmful but if information is any sensitive content than it is the most harmful one.
Passive attack include:
1. Monitoring the flow of traffic
2. Obtaining the contents of the message.
3. Eavesdropping.

V. COUNTERMEASURES
Network Security has become a challenging task for the network service providers to prevent security related
threats. Today we are totally dependent on network or we are surrounded by internet to make our day to day work easy.
But this poses a challenge for organisations as there information on network can be accessed by any remote
computer who are not permitted to access those resources.
Network security is basically used to protect data on the network and devices on the network. Both the term
network security and information security are used to derive the same meaning. If there is an attack we do have a
countermeasure for that for ex if someone is trying to find a path in the network for that we use Firewall to protect our
network. For the problem of buffer overflows we have Intrusion Detection system, for Denial of Service attack we have
Ingress Filtering and IDS.

© www.ijarcsse.com, All Rights Reserved Page | 114

 Jain et al., International Journal of Advanced Research in Computer Science and Software Engineering 8(5)
ISSN(E): 2277-128X, ISSN(P): 2277-6451, pp. 113-115
A. Firewall:
A Firewall is a system that is to be placed between the sites it is protecting and the rest of the network. This is
useful if we do not want certain external users to access some resources or services within a site.
In firewall table has 4 tuples that is IP address, TCP, port number of both sender and receiver.

Figure2: Firewall

B. Intrusion Detection System:

BARC has developed an Intrusion detection System for monitoring the security of routers and related software
packages on continuous basis. IDS can detect the attacks in real-time by maintaining various log files and signatures. It
helps the network administrator to take some protective steps before any information breach by alarming them before any
damage.

C. IPsec:
It is mandatory in IPV6 but was optional in IPV4. It is highly modular and allow user to select from various
cryptographic algorithms and protocols. It protects from narrow stream and wide stream.

VI. CONCLUSION
Network Security is an important concept that is gaining attention as more and more internet usage is increasing.
The security threats and various protocols were analysed to maintain the network security. When an attack become
sophisticated so does the technology becomes. Today biggest challenge is enforcing policies against these threats.

REFERENCES
[1] Carle E. Landwehr, “Security Issues in Networks with Internet Access”, Member, IEEE.
[2] http://whatis.techtarget.com/definition/Confidentiality-integrityand-availability-CIA
[3] Cryptography and network security: principles and practice, Second edition by William Stallings.
[4] Fundamentals of computer security technology by Edward G. Amoroso.

© www.ijarcsse.com, All Rights Reserved Page | 115

View publication stats