Network Security (Grade 11 NSC Matric Computer Application Technology): Revision Notes
Network Security
Why network security matters
Networks can become targets for attacks, particularly when they connect to the internet. This makes understanding and implementing basic network security measures extremely important. When networks are accessible, they become vulnerable to various threats that can compromise personal data, business information, and system integrity.
Network security isn't just a technical concern—it affects everyone who uses connected devices and services in their daily lives.
Essential security measures
Firewalls
Firewalls act as the security guards of a network, functioning as protective barriers between your network and potential threats from the internet. They monitor and control incoming and outgoing network traffic based on predetermined security rules. Think of a firewall as a security checkpoint that examines everything trying to enter or leave your network.
Most routers and computers have built-in firewalls that help prevent unwanted traffic from accessing your network. Everything that enters your network from the internet should pass through this protective barrier first.
How Firewalls Work: Firewalls use predefined rules to determine what traffic is allowed through. They can block specific ports, IP addresses, or types of data packets that might pose security risks.
Antivirus software
Every computer connected to a network should have up-to-date antivirus software installed. This software provides continuous protection by scanning programmes and files for malware, viruses, and other harmful threats. Antivirus software works by constantly monitoring your system and automatically destroying any detected threats before they can cause damage.
Without proper antivirus protection, infected devices can spread malware throughout the entire network, compromising all connected systems.
Strong password security
Password security forms a critical foundation of network protection. Most organisations implement network security policies that require staff to use strong passwords for network access. When creating secure passwords, several important principles apply:
Essential Password Guidelines:
Password length and complexity:
- Standard passwords should be at least 10 characters long
- Passphrases should contain at least 15 characters
- Use a combination of uppercase letters, lowercase letters, numbers, and special characters
- Avoid predictable patterns on the keyboard (like "asdfgh")
Password content guidelines:
- Never use personal information such as your name, family members' names, or pet names
- Avoid easily guessed passwords like "password" or "12345"
- Don't base passwords on personal information that others might know about you
- Create passwords that cannot be linked to your personal information
Password management practices:
- Keep written passwords hidden and mixed with other notes so they're not obviously passwords
- Store password notes away from your computer
- Change passwords every two months or so
- Never use the same password for different websites and networks
- Never share your password or account details with anyone
Network security and BYOD
BYOD (Bring Your Own Device) environments create unique security challenges for organisations. The main concern involves keeping company data separate from personal data while ensuring employees don't accidentally share private company information.
Key BYOD security concerns
Device management: Network administrators often lack full control over personal devices when employees take them home. This creates vulnerability gaps in the overall security system.
Outdated security software: Many mobile devices like smartphones and tablets may not have current antivirus software installed, or the existing software might be out of date. This becomes problematic when users accidentally download applications containing malware, adware, or spyware.
Malware spread: When infected personal devices connect to the company network, they can spread infections throughout the system, compromising network security for everyone.
Unauthorised software installation: Employees might install games or other applications that can become distractions at work or potentially introduce security vulnerabilities.
BYOD security solutions
Organisations address these challenges by implementing data loss prevention policies and using mobile device management software like Microsoft Intune. Companies must establish clear Acceptable Use Policies (AUPs) that outline what employees can and cannot do with their devices when accessing company networks.
Privacy issues in network environments
Network usage generates vast amounts of personal data that organisations collect, store, and share. This data often helps companies provide better customer service or enables quicker access to services like medical records. However, the same data can be misused by cybercriminals for fraud or theft.
Network owner responsibilities:
- Ensure data is accessed legally and only used for stated purposes
- Maintain secure storage and sharing of personal information
- Protect collected data from unauthorised access
Data vulnerability: Networks serve as powerful tools for accessing, collecting, storing, and sharing personal information, making them attractive targets for cybercriminals seeking to commit fraud or steal valuable data.
Personal responsibility for network security
While network administrators work to secure networks, individual users also bear responsibility for maintaining security and avoiding actions that expose networks to attacks.
Individual security practices
Device security:
- Keep antivirus software current and active
- Avoid clicking suspicious links or responding to suspicious emails with personal information
- Maintain up-to-date security software on all devices
Responsible sharing:
- Respect others' privacy and intellectual property rights
- Never download or share illegally obtained content such as pirated films, music, or copyrighted materials
- Be mindful of what personal information you share online
Network compliance:
- Follow the Acceptable Use Policies of any networks you access
- Understand and respect the rules governing network usage
Following these practices helps create a more secure network environment for all users.
Real-world example: The 2018 Facebook data breach
Case Study: Facebook Data Breach 2018
The Facebook data breach of 2018 demonstrates the serious consequences of network security failures. On 25th September 2018, Facebook announced that attackers had exploited a vulnerability in their "View As" feature, which allows users to see how their profiles appear to others.
The attack details:
- Hackers accessed personal data of approximately 90 million users
- Attackers stole Facebook access tokens, which are codes that keep users logged into accounts
- The vulnerability had existed since July 2017, giving attackers potentially long-term access
Company response:
- Facebook quickly patched the security flaw
- The company logged out 90 million users as a precautionary measure
- Facebook temporarily disabled the "View As" feature while addressing the problem
- Users received messages explaining the breach and links to more information
Broader implications:
- The breach affected users who had logged into other websites using their Facebook credentials
- Facebook advised users to change passwords and review their security settings
- This incident highlighted the interconnected nature of online accounts and the widespread impact of security breaches
This case study illustrates how security vulnerabilities can affect millions of users and demonstrates the importance of robust network security measures.
Key Points to Remember:
-
Firewalls and antivirus software are essential first lines of defence that protect networks from external threats and internal infections
-
Strong passwords must be long, complex, unique for each account, and changed regularly to maintain effective security
-
BYOD environments require special attention to data separation, device management, and clear usage policies to prevent security breaches
-
Personal responsibility plays a crucial role in network security - your actions can affect the entire network's safety
-
Real-world breaches like the Facebook incident show that even large companies can be vulnerable, making individual security practices even more important