dependable expert writers

With experience gained since 2003, EssayPride successfully completes 98% of all incoming orders. Select options, proceed, and consider your paper done!

Assignment type

Deadline (UTC)

Pages

Search our huge database of over 200,000 free example essays and research papers nearly on any topic imaginable!

Data Security On The Web In Workplaces example essay topic

1,779 words

the practice of information security has become much more complicated and the need for qualified information security professionals has become critical. During this time, the International Information Systems Security Certification Consortium (ISC 2) has made significant progress in testing and certifying information security practitioners as Certified Information System Security Professionals (CISSP's). Currently, almost 1000 practitioners have achieved certification and several hundred sit for the examination annually. Data secutiry The purpose of this document is to illustrate the importance of "data security on the web in workplaces". It outlines the essential security measures implemented by workplaces to prevent hackers from the outside world ( ) to gain unauthorised access to sensitive data and other resources and tampering with it. In preventing from such attacks in the workplace, which can cost a company dearly, this document analysis the network infrastructure design and software that can enhance workplace data security.

It discusses such things as FTPS (secure file transfer protocol), HTTPS / SSL (secure hyper text transfer protocol / Secure Socket Layer), PKI (Public Key Infrastructure), firewalls, EFS (encryption file system) and VPN (virtual private networks). Workplaces around the world lack data security in terms of transactions over the web / Internet, which is why organisations are now taking greater security measures to ensure hackers do not gain unauthorised access to sensitive data. Researcher found that the. ".. highest percentage of companies that had been attacked by hackers in 2001 (44 percent) were in the enterprise space, which In-Stat / MDR defines as companies with more than 1,000 employees" [Tom Smith - Internetweek. com, 04 April 2002]. With such a high percentage, businesses are deploying as a standard to make transactions and data transfers more secure by implementing FTPS and HTTPS as appose to FTP and HTTP. Many organisations dealing with clients / customers transfer data of some sort from one another over networks. The mediums of such transfers are through "e-mails" which is unsecure and limited by size, "ISDN file transfer" (FTP) which is not secure for transferring sensitive data, or by copying data to "CD" and sending it, which is costly and time consuming.

Due to new. ".. strict regulations and changes in privacy policies in the finance sector... workplaces are required to encrypt sensitive data transfers" [Samuel Byrne - AFR, 13 April 2002]. This statement has drawn concern in workplaces to get their act together and transfer data more securely using FTPS and HTTPS. FTPS is a process that provides secure encrypted file transfers between local and remote computers that allows bi-directional transfer of binary (images) and ASCII (data) files between computers. Software packages such as McAfree E-business Encryption. ".. simplifies protecting files, file transfers, and application data while improving security" [McAfree, 2002] at the same time protects data when using FTPS. This automates securing transactions and data files for transfer to only authorised users. Such a solution protects clients / customer and business data from malicious or unintentional misuse in particular to external parties over the web.

Since there are so many Internet users on the, how do businesses differentiate from authenticated users to those who are not? With the growth in business use of the Internet, network security is rapidly becoming crucial to the development of the. Many Internet sites now use the HTTPS protocol (also known as Secure Socket Layer - SSL) for handling secure transactions and this is becoming increasingly common for accessing bank account balances and similar confidential data. This allows businesses to control who can access certain information by issuing certificates to authorised users, which is what SSL relies on. "SSL security protocols are used widely by Internet browsers and servers for authentication, message integrity, and confidentiality" [Microsoft Windows 2000 Server Resource Kit. Microsoft Press, 1999].

Workplaces can configure SSL security features to verify the integrity of data, verify the identity of users, and encrypt network transmissions. This reduces the risk of security breaches by unauthorised people over the Internet. That's why customer based businesses that make transactions or transfer personal data over the web are required to use HTTPS as the standard mean of communication. A lot of business networks consist of both intranet and extranets, all of which are susceptible to access by unauthorized hackers who may maliciously view or alter digital information data assets. Although its evolution has been slow, another solution for workplaces at high risk of potential hackers is to implement PKI - Public Key Infrastructure.

PKI is a system that makes use of. ".. digital certificates, certification authorities, and other registration authorities that verify and authenticate the validity of each party involved in an electronic transaction" [Exam Cram Network Design - Kim Simmons, Jarret W. Buse & Todd B. Halpin - 2000]. For the effectiveness of PKI, user authentication or identification must be coupled with the encryption and data transmission processes to be certain that confidential data is delivered only to authorised parties. A well organised PKI can help secure data and distribute and manage identification credentials across a network security architecture in the workplace. "Standards for PKI are still evolving, even though they are being widely implemented as a necessary element of electronic commerce" [Microsoft Windows 2000 Server Resource Kit.

Microsoft Press, 1999]. The need for PKI is beginning to show and many of the major software vendors are starting to support PKI. "Companies in the financial services, health-care and government sectors -under pressure to meet stricter privacy and data security regulations - are also beginning to adopt PKI's" [Kelly Jackson Higgins - Internetweek. com, 21 November 2001]. Because of this factor, greater data security measures in particular over the web are an essential part of preventing unauthorised access to networks. "A recent study from Dataquest says that while only 23 percent of 86 IT managers surveyed had PKI products installed, 69 percent said they are now evaluating PKI products" [Kelly Jackson Higgins - Internetweek. com, 21 November 2001]. Hence increasing businesses moving forward are looking towards PKI as a solution.

Due to hackers all over the world the deployment of security solutions has never been greater. "The Internet connects 300 million computer users in a maze of networks and connections. But the Internet also exposes us to the threat of fraud and to an invasion of privacy" [Paula Hawkins, Channel 4 UK, January 2002]. To screen such a wide are network of potential hackers, companies are implementing more secure firewalls, such as SPINACH (Secure Public Internet Access Handler), making it a lot harder for hackers to break into. In practice workplaces only want authorised individuals to access certain networks to transfer data; SPINACH provides such a security measure as describe by researched at Stanford University. "The SPINACH system has two major functions: it controls the passage of network communications between public ports and the rest of the building network, and it provides a mechanism for unknown users to prove themselves as authorized so that they can have full network access".

[Elliot Power & Mary G. Baker - Stanford University, December 1997]. A "firewall" (aka - "prison walls"), such as the SPINACH security system, usually composes of a combination of hardware and software, intended to protect a network against external threats coming from another network, including the Internet. It prevents an organisation's networked computers from communicating directly with computers that are external to the network, and vice versa. It also audits network activity, recording the volume of traffic and information about unauthorized attempts to gain access.

"There are two basic types of network security, transit security and traffic regulation, which when combined can help guarantee that the right information is securely delivered to the right place" [Darren Bolding - September 1995]. One of the prominent features of firewalls is the IP filters, which directs the destination of an IP packet (data information) to the intend. Each IP packet is checked against the IP filter on the firewall, and if a match is found, the properties of the associated security policy are used to send the communication. Filters need to be configured for both incoming and outgoing traffic to ensure that only authorised people can access data information. Many workplaces use virtual private network (VPN), which is an extension of the private network that encompasses encapsulated, encrypted, and authenticated links across shared or public networks. It mimics the properties of a private network, allowing data to be transferred between two computers across the Internet securely which is why many companies have a VPN setup as security measure standard.

The two main advantages of VPNs are that they. ".. allow private address space, and they allow the packet level encryption / translation to be done on dedicated systems, decreasing the load placed on production machines" [Microsoft Windows 2000 Server Resource Kit. Microsoft Press, 1999]. Because of the packet level encryption, encrypting traffic as a security measure, it makes it more efficient for workplaces to gain network access and transfer data from one point to another. Security breaches by unauthorised people over networks are not a question of if; they are a matter of when. This brings about growing concerns especially to America as they were outraged to hear that they were under attack from the Chinese military. A ISR - Internet Security Review article commented: "The officials' assessment came after a Los Angeles Times report Thursday that said U.S. intelligence officials believe the Chinese military is working to launch widespread attacks on American and Taiwanese computer networks, including Internet-linked military systems considered vulnerable to sabotage" [Internet Security Review - International Magazine on Safety, Security, and Protection of Data Communications on the Internet, 25 April 2002].

As a possible data security measure of such an attack, the use an encryption file system (EFS) to protect data will make it difficult for hackers to break encryption / algorithm codes. EFS is an extension to the NTFS file system that provides strong data protection and encryption for files and folders. "The encryption technology is based on use of public keys and runs as an integrated system service, making it easy to manage, difficult to attack, and transparent to the user" [Exam Cram Network Design - Kim Simmons, Jarret W. Buse & Todd B. Halpin - 2000]. This is particularly useful for securing data on computers that may be vulnerable to theft or hackers, such as mobile computers.

Things every student should keep in mind

Free example essays found anywhere online are available to anyone, which makes them used, re-used, paraphrased, and abused millions of times.
Watch out, some are poorly written!
We strongly discourage you to submit free essays or any of their parts for credit at your school -- they are easily detected by PLAGIARISM CHECKERS.
Get a brand-new, 100% original paper that will be written especially for you following YOUR EXACT instructions.

100% money back, no questions asked if you paper is plagiarized (this won't happen anyway).

We use a simple but effective principle: one satisfied customer will come back for more, but one who was cheated and misled will tell 10 others too.

Our clients are treated with the highest level of respect that a legitimate student deserves. You, as a customer, will feel this attitude starting from your first contact with our essay service and all the way through.

A significant percentage of cheap essay writing services have also been the source of complaints from students for selling cut and pasted work off the net -- this is a world away from the personalized essay service that EssayPride offers. All our guarantees are always kept -- we are nothing without quality, affordable prices, and the high degree of customer satisfaction!

What our customers say

Piotr S.
Toronto, Canada

I am an ESL student and I am only learning how to write good papers in English. Thanks to EssayPride I am mastering this skill much faster. They help me because they always respond any questions and explain me things I do not understand. They also strictly follow the deadlines and I am never late with my assignments. Thank you very much, guys, your hard work is appreciated. I will surely be ordering more.

Lindsay M.
Winston Salem, NC

Oh my Gosh! My life has become sooo much easier after I've come across this website. I am a working student, so sometimes I am too overwhelmed with so many things and I really need a hand with my papers. I am glad I have found a company I can trust. I have confidence in these guys, because they proved to be good quite a few times.

Kirk N.
Austin, TX

I never leave reviews for products or services because I am quite particular and picky. Surprisingly enough, EssayPride has managed to satisfy all of my requirements, even though I asked for several alterations to the paper they've sent initially. My assignments are quite complicated and it is essential to possess a certain level of knowledge in order to write a decent paper. These guys have managed, so I give them four stars.

Emma Ch.
Birmingham, UK

Customer service is very responsive to your queries, they answer any question within an hour. Even if you have a problem with an order, you can contact them and they will fix it promptly. The quality of writing is very good, writer knows what he is talking about. I had a very positive experience using this website, I will be a returning customer.

Travis J.
Perth, Australia

I used this website more than once and every time my experience turned out to be extremely positive. I think their price-quality ratio is very good, because I couldn't find anyone writing better than these guys, who would work for this money. Thank you!

Myung O.
Seoul, South Korea

I am a Korean student studying in the US. I would like to thank essaypride staff, especially writer Jeff P., for helping me out so much. My grades are good with all your help and I keep calm about the results of my year.

Boyi Zh.
St. Louis, MO

As probably any student, I was quite hesitant about asking somebody else to do my assignments at first. However, after EssayPride has sent me my first paper and I've read it, I understood that I could actually learn a lot from them. The research they've done was impressive and I understood the topic even better than after going to class and reading my textbook. I am not using this website to "cheat", I am using it as a tutoring service, they help me to understand the material better.

Order ANY essay at an affordable price!

Samples of professionally written essays produced by our company. Feel the difference!

Free example essays, top 50

A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W
X-Z

Our website uses cookies. By continuing, you agree to their use. Learn more, including how to control cookies.