UNIT-3

WIRELESS DEVICE SECURITY ISSUES

Wireless devices, including smartphones, laptops, tablets, and IoT (Internet of Things) devices, are
susceptible to various security issues and vulnerabilities. Here are some common security concerns
associated with wireless devices:

Unauthorized Access:
Weak Passwords: Users often set weak or default passwords for their wireless devices, making
them easy targets for attackers.
Default Credentials: Manufacturers sometimes ship devices with default usernames and passwords,
which attackers can exploit if not changed.
Eavesdropping:
Unencrypted Data: If wireless communications are not properly encrypted, attackers can
eavesdrop on data transmissions, potentially compromising sensitive information.
Malware and Viruses:
Malicious Apps: Mobile devices are vulnerable to malicious apps and malware that can steal data,
track user activities, or perform other malicious actions.
Drive-by Downloads: Devices can be infected with malware when users visit compromised
websites or download malicious content.
Phishing Attacks:
Phishing Emails and Texts: Users can receive phishing emails or text messages on their devices,
attempting to trick them into disclosing sensitive information.
Rogue Access Points:
Fake Wi-Fi Hotspots: Attackers can set up rogue Wi-Fi hotspots with names similar to legitimate
ones to intercept data or trick users into connecting to them.
Device Theft and Loss:
Data Exposure: If a wireless device is lost or stolen, sensitive data may be exposed. Proper device
encryption and remote wipe capabilities can mitigate this risk.
Outdated Software:
Unpatched Vulnerabilities: Failure to update device firmware and software can leave devices
vulnerable to known security vulnerabilities.
Bluetooth Vulnerabilities:
BlueBorne: Some wireless devices, especially IoT devices and smartphones, have been susceptible
to vulnerabilities like BlueBorne, which can allow attackers to take control of the device via
Bluetooth.
Location Tracking:
Location Privacy: Apps and services on wireless devices can track users' locations, potentially
compromising their privacy if not properly managed.
Insecure IoT Devices:
Default Configurations: IoT devices often have default settings that lack security features, leaving
them open to exploitation.
Firmware Updates: Many IoT devices lack the ability to receive firmware updates, making them
permanently vulnerable to known security flaws.
Weak Encryption Protocols:
WEP: Older wireless devices may still use the deprecated WEP (Wired Equivalent Privacy)
encryption standard, which is easily crackable.
WPS: Wi-Fi Protected Setup (WPS) can be vulnerable to brute-force attacks if not disabled.
Unsecured Wi-Fi Networks:
Open Wi-Fi Networks: Connecting to unsecured public Wi-Fi networks can expose devices to
various risks, including man-in-the-middle attacks.

PHYSICAL SECURITY IN WIRELESS DEVICES

Physical security for wireless devices is crucial to protect these devices from theft, tampering, and
unauthorized access. Here are some considerations and measures to enhance the physical security
of wireless devices:
Device Locks and Passcodes:
Lock Screen: Enforce the use of lock screens with PINs, passwords, or biometric authentication
(fingerprint or facial recognition) to prevent unauthorized access if the device is lost or stolen.
Auto-Lock: Configure devices to automatically lock after a specified period of inactivity.
Remote Wipe and Lock:
Enable remote tracking, wiping, and locking capabilities for mobile devices. This allows you to
remotely erase data or lock the device if it's lost or stolen, preventing unauthorized access to
sensitive information.
Encryption:
Enable device encryption to protect data stored on the device. Full-disk encryption ensures that
even if the physical storage is compromised, the data remains unreadable without the decryption
key.
Device Tracking:
Use device tracking software or services that can help locate a lost or stolen device. Many mobile
operating systems offer built-in tracking features.
Secure Storage:
When not in use, store wireless devices in a secure place, such as a locked cabinet or safe, to
prevent physical theft.
Physical Access Control:
Limit physical access to areas where wireless devices are stored or used. Use locks, access cards,
or biometric authentication for entry.
Inventory and Asset Management:
Maintain an inventory of all wireless devices, including their serial numbers, make, and model.
Keep track of device distribution and returns.
Tamper-Evident Seals:
For devices with removable components or ports, consider using tamper-evident seals to detect
unauthorized access or tampering.
Security Awareness Training:
Educate users and employees about the importance of physical security for wireless devices.
Encourage them to report lost or stolen devices promptly.
Secure Charging Stations:
Be cautious when using public charging stations, as they can be compromised. Carry your own
chargers and avoid connecting to unknown USB ports or charging stations.
Secure Wi-Fi Networks:
When connecting to Wi-Fi networks, use trusted and secure networks. Avoid connecting to open or
unsecured Wi-Fi networks that could expose your device to attacks.
Secure Accessories:
Use trusted accessories and peripherals. Beware of using unknown or unverified cables, adapters,
or accessories, as they can potentially introduce security risks.
Regular Updates and Patching:
Keep the device's operating system and software up to date with security patches. Regular
updates can address vulnerabilities that attackers may exploit.
Data Backup:
Regularly back up data on the device to prevent data loss in case of theft or damage.
Physical Hardening:
For sensitive environments, consider physically hardening devices by using ruggedized cases or
enclosures that provide protection against physical damage.
Implementing a combination of these physical security measures can help safeguard wireless
devices and the data they contain from a range of threats, including theft, tampering, and
unauthorized access.

INFORMATION LEAKAGE IN WIRELESS NETWORKS

Information leakage in wireless networks, also known as data leakage or data exfiltration, refers to
the unauthorized exposure or transmission of sensitive information over wireless communication
channels. This can occur due to various vulnerabilities and threats. Here are some common causes
and preventive measures to mitigate information leakage in wireless networks:
Causes of Information Leakage:
Weak Encryption:
Cause: Insecure or outdated encryption protocols and weak encryption keys can make it easier for
attackers to intercept and decode wireless data.
Prevention: Use strong encryption methods such as WPA3 for Wi-Fi networks and ensure
encryption is properly configured for data transmission.
Unsecured Wi-Fi Networks:
Cause: Connecting to open or unsecured Wi-Fi networks can expose your data to eavesdropping
by malicious actors.
Prevention: Connect to trusted, secure Wi-Fi networks, and avoid public or unauthenticated
networks. Use VPNs for an additional layer of security.
Unauthorized Access Points:
Cause: Rogue or unauthorized access points can be set up by attackers to trick devices into
connecting, leading to data interception.
Prevention: Employ wireless intrusion detection systems (WIDS) to detect rogue access points.
Implement strong access control and authentication measures.
Weak or Default Credentials:
Cause: Using weak or default login credentials for wireless devices and network equipment can
lead to unauthorized access.
Prevention: Always change default credentials, use strong passwords, and employ multi-factor
authentication where possible.
Device Theft or Loss:
Cause: If a wireless device is lost or stolen, sensitive data stored on the device can be exposed.
Prevention: Encrypt device storage, enable remote wipe and tracking, and educate users about
reporting lost devices promptly.
Insecure Protocols:
Cause: Using insecure protocols for communication, such as HTTP instead of HTTPS, can lead to
data leakage.
Prevention: Use secure protocols and enable features like HSTS (HTTP Strict Transport Security) to
enforce HTTPS.
Preventive Measures to Mitigate Information Leakage:
Strong Encryption: Use robust encryption protocols like WPA3 for Wi-Fi networks, and employ end-
to-end encryption for sensitive data transmitted over wireless connections.
Access Control: Implement strong access control measures, including strong authentication
methods and role-based access control to restrict access to authorized users.
Network Segmentation: Segment wireless networks to isolate sensitive data from less secure
areas, preventing lateral movement of attackers.
Wireless Intrusion Detection and Prevention: Deploy WIDS/WIPS solutions to detect and respond
to suspicious wireless activities and rogue access points.
Regular Security Audits: Conduct regular security assessments and penetration tests to identify
vulnerabilities and weaknesses in your wireless network.
Employee Training: Educate employees and users about security best practices, including the risks
of connecting to unsecured networks and the importance of strong passwords.
Patch Management: Keep wireless devices and network equipment up to date with the latest
security patches and firmware updates.
Data Loss Prevention (DLP): Implement DLP solutions to monitor and prevent the unauthorized
transfer of sensitive data over wireless networks.
Endpoint Security: Install and maintain endpoint security solutions on wireless devices to protect
against malware and data leakage.
Monitoring and Logging: Continuously monitor network traffic and maintain logs to detect and
respond to security incidents promptly.

DEVICE SECURITY FEATURES IN WIRELESS NETWORK

Device security features in wireless networks play a crucial role in protecting both the devices
themselves and the data they transmit and receive. These features help safeguard against various
security threats and vulnerabilities. Here are some important device security features commonly
found in wireless networks:
Authentication and Authorization:
User Authentication: Require users to authenticate before granting them access to the network,
typically through usernames and passwords or more advanced methods like biometrics.
Access Control: Use role-based access control (RBAC) to ensure that users or devices have the
appropriate level of access to network resources based on their roles and permissions.
Encryption:
Data Encryption: Implement strong encryption protocols (e.g., WPA3 for Wi-Fi networks) to protect
data in transit, preventing eavesdropping by unauthorized parties.
Storage Encryption: Enable full-disk or file-level encryption on devices to safeguard data stored on
them, even if the device is lost or stolen.
Firewalls:
Network Firewalls: Deploy network firewalls to filter incoming and outgoing traffic, blocking
potentially malicious traffic and enforcing security policies.
Host-Based Firewalls: Use host-based firewalls on devices to control traffic at the device level,
allowing or denying specific connections based on predefined rules.
Intrusion Detection and Prevention Systems (IDS/IPS):
Network IDS/IPS: Monitor network traffic for suspicious activities and respond by blocking or
alerting administrators to potential threats.
Host-Based IDS/IPS: Install intrusion detection and prevention software on devices to detect and
block malicious activities at the device level.
Endpoint Security:
Antivirus and Anti-Malware: Install and regularly update antivirus and anti-malware software to
protect devices from known threats.
Device Patch Management: Keep devices up to date with security patches and updates to address
known vulnerabilities.
Remote Wipe and Lock:
Enable remote wipe and device locking capabilities to allow administrators to remotely erase data
or lock devices if they are lost or stolen, preventing unauthorized access to sensitive information.
Multi-Factor Authentication (MFA):
Implement MFA to require users to provide multiple forms of authentication (e.g., password and
one-time code) for enhanced security.
Secure Boot:
Ensure devices have secure boot capabilities to verify the integrity of the operating system and
boot process, preventing tampering or unauthorized changes.
Device Management and Mobile Device Management (MDM):
Use device management and MDM solutions to centrally configure, monitor, and enforce security
policies on wireless devices, including remote management and updates.
Guest Network Isolation:
Implement isolated guest networks to separate guest devices from the internal network, reducing
the risk of unauthorized access to sensitive resources.
Secure Protocols:
Use secure communication protocols (e.g., HTTPS for web browsing, SSH for remote
administration) to protect data transmitted between devices and servers.
Security Logging and Monitoring:
Enable device logging and implement continuous monitoring to detect and respond to security
incidents promptly.
Backup and Data Recovery:
Regularly back up device data to prevent data loss in case of device failure, damage, or security
incidents.
Device Locking Policies:
Implement policies that require devices to auto-lock after a period of inactivity, reducing the risk of
unauthorized access when left unattended.
User Education and Awareness:
Educate users about security best practices, including the risks of connecting to unsecured
networks and the importance of strong, unique passwords.

APPLICATION SECURITY
Application security, often abbreviated as AppSec, is a critical aspect of cybersecurity that focuses
on protecting software applications from various security threats and vulnerabilities. Ensuring the
security of applications is essential because they often serve as entry points for attackers trying to
access sensitive data or exploit system weaknesses. Here are key components and best practices
in application security:
Components of Application Security:
Vulnerability Assessment and Testing:
Conduct regular security assessments, including code reviews and vulnerability scans, to identify
and mitigate weaknesses in application code and configurations.
Authentication and Authorization:
Implement strong authentication mechanisms to verify the identity of users and ensure that they
have appropriate access permissions.
Enforce proper authorization controls to restrict user access to only the resources they are allowed
to access.
Data Encryption:
Use encryption protocols (e.g., HTTPS, TLS) to protect data in transit between the application and
users' devices.
Employ encryption mechanisms (e.g., AES) to secure sensitive data at rest within the application
and databases.
Input Validation and Sanitization:
Validate and sanitize user inputs to prevent common attacks like SQL injection, cross-site scripting
(XSS), and command injection.
Implement parameterized queries and prepared statements to safely interact with databases.
Secure Coding Practices:
Follow secure coding guidelines and best practices, such as the OWASP Top Ten, to write code
that is less susceptible to vulnerabilities.
Use secure coding languages and frameworks that offer built-in security features.
Patch Management:
Keep application components, libraries, and dependencies up to date with security patches to
address known vulnerabilities.
Monitor for security advisories related to the technologies used in your application stack.
Web Application Firewall (WAF):
Implement a WAF to filter and block malicious traffic, helping protect against web application
attacks like SQL injection and XSS.
Session Management:
Secure session management to prevent session fixation, session hijacking, and session-related
vulnerabilities.
Implement session timeouts and secure cookie handling.
Error Handling and Logging:
Properly handle errors and exceptions to prevent exposing sensitive information to attackers.
Implement comprehensive logging for monitoring and forensic analysis of security incidents.
API Security:
Secure application programming interfaces (APIs) with proper authentication, authorization, and
input validation.
Use OAuth and API keys for secure API access and data exchange.
Code Signing and Integrity Checking:
Sign application code to ensure its integrity and authenticity.
Implement code integrity checks to detect unauthorized modifications.
Penetration Testing and Red Teaming:
Conduct penetration testing and engage in red teaming exercises to simulate real-world attacks
and identify vulnerabilities.
User Education and Awareness:
Educate users about security best practices, such as creating strong passwords and recognizing
phishing attempts.
Incident Response Plan:
Develop an incident response plan to respond swiftly and effectively to security incidents,
minimizing their impact.
Compliance and Regulations:
Ensure that your application complies with relevant cybersecurity regulations and standards, such
as GDPR, HIPAA, or PCI DSS.

DETAILED DEVICE ANALYSIS

A detailed device analysis typically involves a thorough examination of a specific hardware or
software device to assess its functionality, security, performance, and overall health. The scope
and depth of the analysis can vary depending on the specific goals and objectives of the
assessment. Here are the key components and steps involved in a detailed device analysis:
Device Identification:
Identify the device to be analyzed, including its make, model, version, and any relevant
specifications.
Physical Inspection (for hardware devices):
Examine the physical condition of the device, including its external components, connectors,
cables, and any signs of damage or wear.
Inventory and Documentation:
Document and inventory all hardware and software components of the device, including peripheral
devices, drivers, firmware, and operating system versions.
Functional Testing:
Assess the device's functionality by performing various tests and tasks relevant to its intended use.
Check for hardware and software errors, glitches, or malfunctions.
Performance Analysis:
Measure and evaluate the device's performance in terms of speed, responsiveness, and resource
utilization.
Identify any performance bottlenecks or issues.
Security Assessment:
Conduct a security assessment to identify vulnerabilities and potential threats associated with the
device.
Scan for open ports, services, and security misconfigurations.
Perform penetration testing to simulate potential attacks and assess the device's resilience.
Software Analysis:
Analyze the device's operating system, firmware, and software applications for vulnerabilities,
outdated components, and patches.
Verify the integrity of software components and libraries.
Network Analysis:
Examine the device's network configurations, including IP settings, firewall rules, and network
traffic patterns.
Assess network security controls and access controls.
Data Analysis:
If applicable, analyze data stored on the device, such as logs, databases, and files.
Look for sensitive or confidential information and assess data protection measures.
Compliance and Standards Evaluation:
Ensure that the device complies with relevant industry standards, regulatory requirements, and
best practices.
Evaluate compliance with security frameworks like ISO 27001 or NIST cybersecurity standards.
Documentation and Reporting:
Document findings, including identified issues, vulnerabilities, and recommendations for
improvement.
Generate a detailed report summarizing the analysis, including an executive summary and
technical details.
Recommendations and Remediation:
Provide recommendations for addressing identified issues and vulnerabilities.
Propose remediation steps and strategies to enhance the device's functionality, security, and
performance.
Risk Assessment:
Assess the overall risk associated with the device based on the findings.
Prioritize identified vulnerabilities and weaknesses based on their potential impact and likelihood.
Action Plan:
Develop an action plan outlining the steps required to address the identified issues and improve
the device's overall condition.
Follow-Up and Continuous Monitoring:
Implement the recommended remediation steps and continue to monitor the device's performance
and security.
Perform periodic assessments to ensure ongoing device health and security.

LAPTOPS
Laptops play a crucial role in wireless networks as versatile computing devices that enable users to
connect, communicate, and collaborate over wireless connections. Their role in wireless networks
can be summarized in several key aspects:
Connectivity and Mobility:
Laptops are designed for mobility and provide users with the freedom to connect to wireless
networks from various locations. They can access Wi-Fi networks in homes, offices, public spaces,
and on the move.
Wireless Internet Access:
Laptops are often used as devices for wireless internet access, allowing users to browse the web,
check emails, and access cloud-based services using Wi-Fi or mobile data connections.
Remote Work and Telecommuting:
Laptops enable remote work and telecommuting, allowing employees to connect to their
organization's networks and systems securely from remote locations, including home offices or
while traveling.
Education and E-Learning:
Laptops are widely used in educational settings, supporting e-learning initiatives by providing
students with access to online resources, virtual classrooms, and educational software.
Communication:
Laptops support various communication methods, including email, instant messaging, video
conferencing, and VoIP calls, all of which can be conducted over wireless networks.
File Sharing and Collaboration:
Users can share files and collaborate on documents and projects using cloud-based file-sharing
services and collaboration platforms, often accessed through laptops connected to wireless
networks.
Access to Cloud Services:
Laptops facilitate access to cloud-based services and applications, allowing users to store, access,
and synchronize data across devices over wireless connections.
Network Troubleshooting and Maintenance:
IT professionals and network administrators use laptops for network troubleshooting and
maintenance tasks. They can connect to wireless networks to diagnose issues, configure network
equipment, and perform updates.
Security and Network Monitoring:
Laptops equipped with security software and monitoring tools are used to ensure the security of
wireless networks. They help detect and respond to security incidents and vulnerabilities.
VPN and Secure Access:
Laptops support Virtual Private Network (VPN) connections, which enable users to establish
secure, encrypted connections to corporate networks or other private networks over public
wireless networks.
Hotspot Access:
Laptops are often used to connect to public Wi-Fi hotspots in cafes, airports, hotels, and other
locations, providing users with internet access while on the go.
Wireless Network Configuration:
Laptops can be used to configure wireless routers and access points, making it possible to set up
and manage wireless networks effectively.
Network Testing and Analysis:
IT professionals use laptops for network testing, analysis, and monitoring, which includes
assessing network performance, diagnosing connectivity issues, and optimizing wireless network
configurations.

PERSONAL DIGITAL ASSISTANTS(PDAS)

Personal Digital Assistants (PDAs) are handheld electronic devices designed to assist users with
various personal and productivity tasks. While they were more popular in the early 2000s, they laid
the groundwork for modern smartphones and tablets. Here are some key features and functions of
PDAs:
Organizational Tools: PDAs typically include features like calendars, to-do lists, and contact
management to help users stay organized and manage their schedules and appointments.
Note-Taking: Many PDAs allow users to take digital notes, which can include typed text, drawings,
or voice recordings. These notes can be synchronized with other devices or computers.
Email and Messaging: PDAs often have email clients and messaging apps, enabling users to send
and receive emails and text messages.
Contact Management: Users can store and manage their contacts, including names, phone
numbers, addresses, and other relevant information.
Task Management: PDAs offer task management applications to create, track, and prioritize tasks
and reminders.
Media Playback: Some PDAs have multimedia features, allowing users to listen to music, view
photos, and watch videos.
Internet Connectivity: Many PDAs have Wi-Fi or cellular connectivity, providing access to the
internet and web browsing.
File Storage and Synchronization: PDAs often include storage space for files and documents, and
they may have synchronization capabilities to keep data consistent across multiple devices.
Third-Party Apps: Some PDAs support the installation of third-party applications, expanding their
functionality. However, the range of available apps is usually more limited compared to modern
app stores.
Expandable Storage: Many PDAs have slots for memory cards, allowing users to expand storage
capacity for media and documents.
Touchscreens and Stylus Input: PDAs typically feature touchscreens for navigation, and some
come with a stylus for precise input.
Battery Life: PDAs are designed for longer battery life compared to traditional laptops or desktop
computers, making them suitable for use throughout the day.
Security: Some PDAs offer security features like password protection and data encryption to keep
sensitive information safe.
Syncing with Computers: PDAs often include software for syncing data with a user's computer,
ensuring that data is backed up and accessible on both devices.
GPS and Navigation: Some PDAs include GPS functionality for navigation and location-based
services.
E-Book Reading: Certain PDAs can function as e-book readers, allowing users to read digital books
and documents.
WIRELESS INFRASTRUCTURE
Wireless infrastructure, also known as wireless network infrastructure, refers to the hardware,
software, and technologies that enable wireless communication and connectivity. It provides the
foundation for wireless networks, supporting various wireless devices and services. Here are the
key components and elements of wireless infrastructure:
Access Points (APs):
Access points are devices that allow wireless devices to connect to a wired network. They transmit
and receive wireless signals, extending network coverage.
Wireless Routers:
Wireless routers combine the functions of a traditional router with wireless access points. They are
commonly used in homes and small offices to provide both wired and wireless connectivity.
Wireless Controllers:
Wireless controllers manage multiple access points within an enterprise network. They provide
centralized management, configuration, and monitoring of the wireless infrastructure.
Wireless Bridges:
Wireless bridges connect two or more network segments wirelessly. They are often used to link
buildings or locations that are not easily connected by wired connections.
Wireless Mesh Networks:
Mesh networks consist of interconnected access points that relay data to each other, creating a
self-healing network. They are used for large-scale outdoor deployments and in scenarios where
coverage needs to be extended dynamically.
Wireless Backhaul:
Wireless backhaul links connect access points or base stations to the core network infrastructure.
This is especially important in cellular networks and point-to-point connections.
Spectrum Bands:
Wireless infrastructure operates in various frequency bands, including 2.4 GHz and 5 GHz for Wi-
Fi, as well as licensed spectrum for cellular networks (e.g., 4G and 5G).
Antennas:
Antennas are used to transmit and receive wireless signals. They come in various types, including
omni-directional and directional antennas, each suitable for specific coverage requirements.
Wireless Standards:
Wireless infrastructure adheres to communication standards such as Wi-Fi (e.g., IEEE 802.11),
cellular (e.g., LTE and 5G), and other wireless protocols that define how data is transmitted
wirelessly.
Security Measures:
Security features, including encryption, authentication, and access control, are crucial components
of wireless infrastructure to protect data and network integrity.
Network Management and Monitoring:
Tools and software are used to monitor and manage the wireless network, ensuring its
performance, security, and reliability.
Roaming and Handover:
Wireless infrastructure supports seamless roaming and handover between access points or base
stations, allowing devices to maintain connectivity while moving within the network.
Capacity Planning:
Effective capacity planning is essential to ensure that the wireless infrastructure can handle the
expected number of connected devices and data traffic without degradation in performance.
Scalability:
Wireless infrastructure should be designed to scale as needed to accommodate growing numbers
of users and devices.
Interoperability:
Compatibility and interoperability between different components and devices within the wireless
infrastructure are crucial for seamless connectivity.
Redundancy and Failover:
To ensure high availability, redundant components and failover mechanisms are often
implemented to minimize network downtime in case of hardware or software failures.

Encryption and Authentication: Encryption and authentication mechanisms have become critical
components of wireless security. Technologies like Wi-Fi Protected Access (WPA) and WPA2 have
been widely adopted to secure Wi-Fi networks. In recent years, WPA3, the next generation of Wi-
Fi security, has been introduced to address some of the vulnerabilities present in WPA2.
IoT Security: The growing number of IoT devices has introduced new security challenges. Many
IoT devices have limited resources, making it challenging to implement robust security measures.
As a result, there have been notable instances of IoT devices being compromised and used as
entry points into larger networks.
5G Security: The deployment of 5G networks has introduced new security considerations. While 5G
offers improved encryption and security features compared to previous generations, it also
presents new attack vectors due to its architecture and reliance on software-defined networking.
Security Solutions and Research: The wireless security industry has seen continuous advancements
in security solutions, ranging from network-level security measures to endpoint protection for
devices. Additionally, security researchers and professionals have been actively identifying
vulnerabilities and working towards improving wireless security standards.
Regulatory Environment: Governments and regulatory bodies around the world have recognized
the importance of wireless security. They have been working to implement regulations and
standards to enforce better security practices in wireless networks and devices.
Education and Awareness: As wireless security threats evolve, there has been an increased focus
on educating users and organizations about best practices to secure their wireless networks and
devices. Awareness campaigns and training programs have been developed to empower users to
take appropriate security measures.