Abstract

Cyber Security for data networks is in its infancy while attackers on networks
are becoming increasingly sophisticated. The necessary widespread use of wireless
networks provides more vulnerabilities. Network routing is key to a functioning
network; once compromised, it can be difficult to recover. For many years, network
practitioners have worked on methods to protect that routing through authentication
of the updates passed in the network. The missing piece has been a usable,
protectable key management system. This proposal uses recent advances in the
creation of locally controlled and administered hierarchical web-of-trust certificates
to provide a managed secure identity for routers that can be used to protect network
routes from attack and misconfiguration. This proposal is the first phase of creating
an authenticated routing infrastructure.

The work involves adapting advances in evidentiary trust to a link state

routing protocol, developing naming for certificate chains and an approach to use the
certificates in link state updates. This phase is expected to result in a report and a
design for a prototype to be added to open source protocols in a later phase. These
results will be made publicly available through open source code and discussions and
presentations at standards bodies and with router vendors and network operators. A
successful approach should create opportunities to the proposer in contracts with
government and commercial organizations. This could result in market opportunities
for other organizations such as network management tool and router vendors. The use
of evidentiary trust is expected to have other applications, but its application to the
routing infrastructure can have nearer- term impact on securing networks important to
the government.

1|P ag e
 Chapter 1
INTRODUCTION
It is estimated that the Internet uses about 3.3 billion inhabitants and that about
9.9 billion computers, mobile phones and other devices around the world are
connected to the Internet. This number is constantly increasing, which also
contributes to the fulfillment of increasing security requirements. The most common
security problem on the Internet is viruses that occur on a daily basis. The easiest way
for cyber criminals to fall into the computer system is through them. It is necessary to
choose the appropriate operating system that is stable, reliable and resistant to most
destructive programs. It is also necessary to install appropriate antivirus programs
that can, before acting, detect and destroy or disable such programs. Good protection
is taking maximum precautions when downloading files from the Internet and
opening an email account, creating backups of all relevant data, updating the program
(downloading and installing stoves) .etc.

A large number of security threats to the system of large networks are already
committed attacks that have not been detected. According to Verizon's research, as
much as 66% of the decline remains undiscovered for months and the viruses remain
undetected in the system and over 200 days in those companies. So special attention
should be paid to the protection of undisclosed attacks and viruses. It is necessary to
use monitoring systems and early detection algorithms, notification and possible
automatic response to system failures. The paper will outline the basic measures that
should be implemented to raise the level of security and security of cyber-attack.

2|P ag e
 Chapter 2

 Measures of cyber security

1) Data diode and firewall
Data diodes are a simple segmentation device and are a very effective security
tool that is used in high security environment. For one side gateway, information is
only transmitted in one direction. Because the data diodes are hardware solutions,
their integrated solutions cannot be destroyed by online software attacks and virus-
dependent infiltration. The key advantage of the Diode is that it provides a great deal.
Of resources to store the confidentiality of landing platforms that are more important
in the OT environment. The Diode also protects the original data and integrity of the
system against object attacks. It is best to remotely control the system without
unloading the remote system. It is interesting to use diodes because it is easy and
cost-effective compared to other solutions, but it is very important to check whether
the data in a directional flow is really appropriate.

For example, when segmentation and access control is required, segmentation

devices may be a better solution. Firewalls enforce network packet rules based on
network packets or more advanced metadata data and check against packet badges
that define content for each packet. It can be effectively prevented from visible or
known network attacks. Some years ago, there were only a few viruses and malicious
programs in the IP environment. Currently, ICS networks play an important role in
cyber criminals and other sophisticated groups. The latest ICS gateway supports a
variety of protocols and ads policies and rules based on the content of all protocols
and protocol versions. A new generation of firewalls allows for advanced search

2) Deep protection
One lesson in computer science is that security solutions do not create [Link]
security recognizes the concept of "deep security", and multiple security layers are in
the network environment. This method protects against attacks by using many
independent methods. A more detailed approach to defense is intended to prevent and
/ or prevent conflicts and to detect or respond to theft, thereby reducing potential
impacts. Each ICS environment is different. There is no solution for everyone. The
traditional security features are designed to detect, ban, or delete cyber risks.
However, computer criminals are more capable and cannot detect and stop the virus
3|P ag e
before entering the network. More cyber-attacks include things that seem intentional
for long periods of time to avoid suspicion. Monitor monitoring and intelligent
protection against such progressive attacks, capable of recognizing this behavior. To
improve the efficiency of products related to safety, many organizations implement
different layers of solutions in different configurations. For example, the four types of
security solutions that make up the backs of any defense strategy on the right are:
External clouds, internet browsers, Data diode; firewall; and Network segmentation
devices. These systems need to be subject to regular monitoring of information so
that they meet the security needs of the enterprise.

3) Increase network access

Most malware attacks and computer attacks are caused by Internet access, so you
may find it easier to secure the network's network if you do not need an internet
connection. However, some security admins want to offer full access to the network.
In order to solve this problem, a new form of Internet Gateway has been successfully
scanned by the external cloud. This solution can secure a secure external website
connection. This solution can be fully protected from infiltration, harmful operation
and control. Internet access cannot penetrate corporate networks when outside the
network threats. Network users may be able to run and install disk drives and other
applications, but the attack is limited to cloud based web applications received when
the net returned the virtual machine. The malicious software installed on the
corporate network - e-mail, USB memory, and other devices cannot easily connect
with drivers on the internet.

4) Install Reliable Antivirus Software

A good, reliable antivirus program is a basic must-have of any cyber security system.
Apart from that, anti-malware software is also an essential. They work as the final
frontier for defending unwanted attacks, should they get through your security
network. They work by detecting and removing virus and malware, adware and
spyware. They also scan through and filter out potentially harmful downloads and
emails.

5) Use Complex Passwords

Almost every computer and Web-based application requires a key for accessing it.
Whether it is the answers to security questions or the passwords, make sure you
create complex ones to make it difficult for hackers to crack them. For answers to
4|P ag e
security questions, consider translating them into another language using free online
translations tools. This may make them unpredictable and difficult to decipher, and
less susceptible to social engineering. Using space before and/or after your passwords
is also a good idea to throw the hacker off. That way, even if you write your
password down, it would be safe as only you would know that it also needs a space at
the front/end. Using a combination of upper and lower cases also helps, apart from
using alphanumeric characters and symbols.

6) Install Encryption Software

If you deal with data pertaining to credit cards, bank accounts, and social security
numbers on a daily basis, it makes sense to have an encryption program in place.
Encryption keeps data safe by altering information on the computer into unreadable
codes. That way even if your data does get stolen, it would be useless to the hacker as
he wouldn't have the keys to decrypt the data and decipher the information.

7) Ignore Suspicious Emails

Make it a habit to never open or reply to suspicious-looking emails even if they
appear to be from a known sender. Even if you do open the email, do not click on
suspicious links or download attachments. Doing so may make you a victim of online
financial and identity theft, including ‘phishing scams. ’Phishing emails appear to
come from trustworthy senders, such as a bank or someone you may have done
business with. Through it, the hacker attempts to acquire your private and financial
data like bank account details and credit card numbers. For further security, make
sure you change your email password every 60 – 90 days. Additionally, refrain from
using the same password for different email accounts and never leave your password
written down.

7) Limit Access to Critical Data

Keep the number of people with access to critical data to a minimum such as the
company’s CEO, CIO, and a handful of trusted staff. Formulate a clear plan that
mentions which individual has access to which sensitive information for increased
accountability.

8) Take Regular Back-up

Every week, either backup your data to an external hard drive or the cloud yourself,
or schedule automated backups to ensure that your information is stored safely. That
5|P ag e
way, even if your systems are compromised, you still have your information safe with
you.

9) Secure Your Wi-Fi Network

Say goodbye to the WEP (Wired Equivalent Privacy) network if you still use it and
switch to WPA2 (Wi-Fi Protected Access version 2) instead as the latter is much
more secure. To protect your Wi-Fi network from breaches by hackers, change the
name of your wireless access point or router, also called the Service Set Identifier
(SSID).Ensure that you use a complex Pre-shared Key (PSK) passphrase for
additional security.

10) Secure Laptops and Smartphones

Because of the ease of carrying them around, laptops and smartphones hold a hell of
a lot of valuable data, and that is also the reason they are at a higher risk of getting
lost or stolen. Protecting both these devices entails encryption, password protection,
and enabling of the ‘remote wiping’ option.

11) Communicate Cyber Security Policies to Employees

Having a written cyber security policy listing the dos and don’ts of using office
systems and Internet is helpful, but not enough. You have to ensure that its details are
communicated to and understood by your employees, so that they can put it in
practice. That is the only way of making such policies effective. Do amend these
policies regularly according to the relevance of the contents.

12) Cloud security and data protection

If you are processing and storing sensitive business or personal data in the cloud, you
will want to check that your provider takes security seriously. Things to consider
include:

Cloud provider vulnerabilities – are they following best security practices, patching
up regularly, implementing proper security controls? Can they guarantee that your
assets will be protected against physical tampering, loss, damage or seizure?

Technology vulnerabilities – are there weaknesses in the host system or server

configuration? Can you get assurances that the technology is secure? Will it be
reliably accessible and available when you need it?

6|P ag e
Access policies – did you agree standards and responsibilities between

Yourself and the provider? Defining roles and responsibilities can help ensure secure
coverage and prevent potential liabilities in case of cyber incidents.

Access controls – will the provider limit access to the cloud service to only those
who need it? How will they minimize the risk of accidental or malicious
compromises of your data by their personnel? Service level agreements – can you
establish a documented standard with your cloud provider, including their duties in
relation to ongoing management, response times and support?

Risk assessment and analysis – does your provider have an adequate incident plan
in place to quickly deal with and mitigate any potential damage?

Legal and regulatory implications – for example, if you’re storing or processing

personal data in the cloud, you will have to comply with the General Data Protection
Regulation (GDPR).

13) Remote access security issues

Remote access is a growing need for many businesses. It allows mobile workers or
remote staff to access office systems and processes via the internet from remote
locations. Despite the many benefits, remote systems can expose your business to
many risks. You will have to manage these risks to keep your remote access secure at
all times. Otherwise, your network may become vulnerable and your business data
exposed.

14) Remote access threats

Remote working relies on the exchange of business data or services outside of the
corporate infrastructure, typically over the internet. It can be achieved through a
variety of client devices, including many that are outside the organization’s control.
The remote environment in which these devices are used may also pose risks. For
example, security concerns may exist around:

lack of physical security controls - creating a risk of device loss or theft

eavesdropping - as information travels over the public internet unauthorized access to
systems or data - perhaps overlooking the screen monitoring and manipulation of data
- if someone gains access to the device You can adapt most of the common cyber
security measures to meet the unique challenges of remote access security.
7|P ag e
16) Remote access risk assessment
You should assess the specific risks associated with mobile working and providing
remote access to staff. The assessment will inform your mobile working policy,
establishing processes for authorizing users to work remotely device provisioning and
support the type of information or services that can be accessed or stored on devices
the minimum procedural security controls Examine the risks to your corporate
network and systems and determine whether you need to increase monitoring on
remote connections. See how to set up workplace monitoring policies.

17) Remote access security measures

Some specific recommended actions for securing your remote access include:
encrypting data to prevent theft using strong firewall and security software using two-
tier authentication (e.g. first with a password and then with a token)restricting access
to unauthorized users allowing access to legitimate users but limiting to the minimum
services and functions required reviewing server logs to monitor remote access and
any unusual activity deleting remote access privileges once they are not needed
testing system regularly for vulnerabilities keeping firewall and remote access
software patched and up-to-date You may also choose to restrict the type of data that
users can access remotely.

18) Establish policies for Internet and social media usage. If your business wants to
limit the use of the Internet and social media to break time, make sure the employees
know the policy.

19) Use a Web-filtering system. These programs can block harmful sites as well as
sites that may be inappropriate for viewing during company time.

20) Use Internet security programs on each computer. The programs work in addition
to the firewall to help block malicious software from attacking the computer and
compromising data.

21) Be wary of peer-to-peer sites. If your company uses peer-to-peer sharing, be

cautious of the security of such connections and learn what the peer site's safeguards
are.

22) Keep the most critical data offline. Organize your business' data and keep the
most critical information—such as customers' personal information offline.
8|P ag e
23) Get cybercrime insurance. This kind of policy covers the liability of the company
in the case of a cyber-attack or a data breach. Some policies cover direct loss, legal
liability and consequential loss from security breaches. Some insurance carriers also
offer network security risk assessments to determine your company's exposure risk to
attack.

9|P ag e
 Chapter3
Conclusion
Attempts to steal confidential data and money, or disruptions in your business
are very real threats. Although a business can never be completely safe from such
dangers, there are several security practices for your people, processes and systems
which can help you bust online security threats. Keep your eyes and ears open to
suspicious behavior on the part of your employees and outsiders with the help of
surveillance systems to identify those with vested interests in your company. Aside
from that, the above tips should come in handy to ramp up your cyber security
measures.

10 | P a g e
 Chapter4
References
 [Link]
 [Link]
 [Link]

11 | P a g e