search the articles directory
old Network security articles
RADIUS - ..., and monitor your RADIUS services. We conclude with practical implementations of the RADIUS protocol in relation to user authentication on wirele...
PDAs Versus Laptops - ...primarily nonvolatile memory. The CPU horsepower is not that important here as we are not cracking AES. Other disadvantages are the limited amount...
Cryptographic Hash Functions - ...can be used instead of DES, with the obvious performance penalties. However, in our example, MD5 scales very well. A cryptographic hash function i...
802.11i Wireless Security Standard and WPA - ...nd of 2003. In the meantime, some bits and pieces of the incoming 802.11i standard have been implemented by wireless equipment and software vendor...
Proprietary Improvements to WEP and WEP Usage - .../p>
All symmetric cipher implementations suffer secure key distribution problems. WEP is no exception. In the original design,...
Penetration Testing as Your First Line of Defense - ... specific RF security problems (i.e., signal leak and detectability, legal regulations pertaining to the transmitter power output, and characteris...
Asymmetric Cryptography - ...onal WEP, which should be rotated every few minutes.
Key-encrypting keys (KEKs) were offered as symmetric cipher keys used only to encrypt...
Examples and Analysis of Common Wireless Attack Signatures - ...ss LAN MAC Address Spoofing" papers. A large part of this tutorial is inspired by these brilliant articles and our experience of analyzing WLAN tr...
Deploying a Wireless IDS Solution for Your WLAN - ...better than nothing, in our opinion such "solutions" are a waste of both money and time. They might also give you a false sense of security. Let's...
Hash Functions Their Performance and HMACs - ...fications of MD5 are available in RFC 1321. Host intrusion detection tools like Tripwire (http://www.tripwire.com) use MD5 to take snapshots of a syst...
Introduction to Applied Cryptography and Steganography - ...ty and quality of service are tightly interwoven, incorrect selection of the cipher and its implementation method can lead to a secure but sluggish...
Streaming Ciphers and Wireless Security - ... keystream, pseudo-random generators (PRNGs) are used, thus placing stream algorithms somewhere between easy-to-break simple XORing with a predefi...
Deploying a Linux Based Custom Built Hardened Wireless Gateway - ... capability to forward VPN traffic if VPN is implemented on the WLAN. Alternatively, the gateway can be a VPN concentrator if you want to cut s...
Wireless attacks at Corporations Small Companies and Home Users - ... target for anonymous access. At the same time, an inexperienced cracker goes for anything "crackable" without considering whose network it is and w...
Practical Use of Asymmetric Cryptography: Key distribution Authentication and Digital signatures - ...ring of users who share each others' public keys. The last model is used by free privacy-protection software such as PGP and GnuPG. Public key inf...
Layer 1 Wireless Security Basics - ...ng the wireless network spread is a rare example of security through obscurity that works (to some extent).
There are two ways of preventing...
Network Vulnerability Analysis - ...service pack). In addition, we compare this information with several Internet vulnerability databases to ascertain what current vulnerabilities and ...
The Usefulness of WEP Closed ESSIDs MAC Filtering and SSH Port Forwarding - ...urely accidental. Thus, WEP or closed ESSID can serve as a form of warning saying, "We expect a certain level of privacy on this network; keep your ...
Reasons why Wirelwss Networks are hacked - ...name - password pair. The term wardriving, as well as everything else "war + wireless" has originated from these BBS and wardialing days. Today wa...
Wireless Crackers: Who Are They - ...ical challenge. This category of attackers does not usually present a huge threat to your WLAN and might even do a service to the community by pub...
Wireless Security Policy - ...t.
1 Device Acceptability, Registration, Update, and Monitoring
Because of backward compatibility features, a WLAN is only as se...
Why to Deploy a VPN - ...lutions is purchase of a leased line or introduction of a Remote Access Server (RAS). Dedicated lines are usually installed for mission-critical app...
Suspicious Events on WLAN - ...ncy use. Let's categorize the events a quality wireless IDS should be able to detect and issue a warning for.
1 RF/Physical Layer Events...
Network Isolation - ...twork isolation is achieved with the use of multiple physical and virtual networks within a single organization to separate functionality. Network...
latest articles under "Network security"
Navigation: Categories » Electronics and communication » Network security
Below is a list of all Network security articles. If you want to find a tutorial by keywords, all you have to do is a quick search in our directory. Just use the search option. The website search is powered by Google. But, if you want to read specific Network security tutorial, just point to it. The newest articles and tutorials are shown first in the list. To access the last ones, browse the pages 2, 3, 4... at the bottom.
Page# 1 2 (last added articles shown first)
Enter page# 1 2 (last added articles shown first)
Below is a list of all Network security articles. If you want to find a tutorial by keywords, all you have to do is a quick search in our directory. Just use the search option. The website search is powered by Google. But, if you want to read specific Network security tutorial, just point to it. The newest articles and tutorials are shown first in the list. To access the last ones, browse the pages 2, 3, 4... at the bottom.
Page# 1 2 (last added articles shown first)
Network Components (09/17/2007)
... The use of the access device has a direct effect on the security of a network topology because it helps define the Internet access model used in the organization and is the first point where defense is needed...
... The use of the access device has a direct effect on the security of a network topology because it helps define the Internet access model used in the organization and is the first point where defense is needed...
Network Threats (09/17/2007)
... Although invasive, reconnaissance probes and scans are not attacks...
... Although invasive, reconnaissance probes and scans are not attacks...
What Is Denial of Service and How Denial of Service Works (09/14/2007)
... The Morris Worm was an experiment in distributed computing, albeit a little forcefully done...
... The Morris Worm was an experiment in distributed computing, albeit a little forcefully done...
An Introduction to Intrusion Detection (09/13/2007)
... Department of Defense (DOD) back in the late '80s and early '90s...
... Department of Defense (DOD) back in the late '80s and early '90s...
What to Look for When Choosing an IDS (09/13/2007)
... In three years time the product known as ID-track from the company called Internet Tools was acquired by Axent, expanded upon, relabeled as NetProwler, and later acquired by Symantec when Axent and Symantec merged...
... In three years time the product known as ID-track from the company called Internet Tools was acquired by Axent, expanded upon, relabeled as NetProwler, and later acquired by Symantec when Axent and Symantec merged...
Remote Access Technologies (09/12/2007)
... It offers a high-speed connection between a central office and a branch office...
... It offers a high-speed connection between a central office and a branch office...
Creating WANs by Using a Cisco Router as a Frame Relay Switch (09/12/2007)
... Example 1 shows how to set the clocking on a serial interface...
... Example 1 shows how to set the clocking on a serial interface...
Creating Asynchronous, ISDN, PPP, DDR, Dial Backup, AAA, and Security Labs (09/12/2007)
... Investing in an ISDN simulator is definitely worthwhile if you are considering pursuing CCIE certifications such as Routing/Switching and Security in the future...
... Investing in an ISDN simulator is definitely worthwhile if you are considering pursuing CCIE certifications such as Routing/Switching and Security in the future...
A Typical Modem Connection (09/12/2007)
... In turn, the eight utilized signals can be divided into three categories...
... In turn, the eight utilized signals can be divided into three categories...
How to configure NAT (09/12/2007)
... Outside local address An IP address of an outside host as it appears to your inside network...
... Outside local address An IP address of an outside host as it appears to your inside network...
Frame Relay Topologies (09/11/2007)
... Other disadvantages are replication of a large number of packets/broadcasts and the problems associated with it, and the complexity of configuration resulting from multicast capabilities in nonbroadcast environments...
... Other disadvantages are replication of a large number of packets/broadcasts and the problems associated with it, and the complexity of configuration resulting from multicast capabilities in nonbroadcast environments...
What is Frame Relay (09/09/2007)
... Backward explicit congestion notification (BECN) Used to inform the connected devices of congestion in the network...
... Backward explicit congestion notification (BECN) Used to inform the connected devices of congestion in the network...
Frame Relay Virtual Circuits (09/09/2007)
... Data transfer Indicates that data is being transmitted between DTE devices over an SVC...
... Data transfer Indicates that data is being transmitted between DTE devices over an SVC...
Dialer Profiles and Dialer Rotary Group Configuration (09/07/2007)
... In turn, debugging and management on the user side are less complicated...
... In turn, debugging and management on the user side are less complicated...
The Difference Between Hackers and Crackers (07/23/2007)
... Crackers can easily be identified because their actions are malicious...
... Crackers can easily be identified because their actions are malicious...
DDR and Dialer Profiles (07/22/2007)
... Advantages of Dialer Profiles Dialer Profiles Versus Legacy DDR Legacy DDR Dialer Profiles All ISDN B channels have the same configuration as the physical interface...
... Advantages of Dialer Profiles Dialer Profiles Versus Legacy DDR Legacy DDR Dialer Profiles All ISDN B channels have the same configuration as the physical interface...
Network Separation (07/20/2007)
... Although outsiders cannot access the router directly from the Internet, they can access it from an Internet-accessible system in the service network...
... Although outsiders cannot access the router directly from the Internet, they can access it from an Internet-accessible system in the service network...
Hacking; Cracking; and Other Malicious Behavior (07/19/2007)
... These type of attacks are usually classified as Denial of Service (DoS) attacks...
... These type of attacks are usually classified as Denial of Service (DoS) attacks...
Passive Operating System Identification Fingerprinting (07/17/2007)
... It can be changed on a Linux box by echo 128 >> ip_default_ttl...
... It can be changed on a Linux box by echo 128 >> ip_default_ttl...
SANS Top 10 and Exploits run by crackers (07/17/2007)
... To help explain what an exploit is and looks like when it is being executed, I have included in this article the output from an exploit and some packets involved in the exploit...
... To help explain what an exploit is and looks like when it is being executed, I have included in this article the output from an exploit and some packets involved in the exploit...
Network Isolation (06/19/2007)
... Isolation is discussed in the following contexts: · Service differentiation · VLANS · Firewalls The first and most obvious concept is the isolation of external from internal network traffic...
... Isolation is discussed in the following contexts: · Service differentiation · VLANS · Firewalls The first and most obvious concept is the isolation of external from internal network traffic...
Why to Deploy a VPN (05/15/2007)
... A sufficiently wide radio frequency data carrier can constitute such a fat pipe...
... A sufficiently wide radio frequency data carrier can constitute such a fat pipe...
Suspicious Events on WLAN (05/15/2007)
... 2 Management/Control Frames Events Increased frequency of normally present network frames...
... 2 Management/Control Frames Events Increased frequency of normally present network frames...
Reasons why Wirelwss Networks are hacked (05/14/2007)
... It gives (nearly) anonymous access and an attacker is difficult to trace...
... It gives (nearly) anonymous access and an attacker is difficult to trace...
Wireless Crackers: Who Are They (05/14/2007)
... Instead, he or she will use them to take over your LAN, launch further attacks from it, and hide his or her tracks afterward...
... Instead, he or she will use them to take over your LAN, launch further attacks from it, and hide his or her tracks afterward...
Wireless Security Policy (05/14/2007)
... Hosts that are not updated should be denied network access...
... Hosts that are not updated should be denied network access...
The Usefulness of WEP Closed ESSIDs MAC Filtering and SSH Port Forwarding (05/09/2007)
... Another reason is raising the bar...
... Another reason is raising the bar...
Layer 1 Wireless Security Basics (05/08/2007)
... The EIRP should be sufficient to provide a decent quality link to users in the planned coverage zone and not a Decibel more...
... The EIRP should be sufficient to provide a decent quality link to users in the planned coverage zone and not a Decibel more...
Network Vulnerability Analysis (05/08/2007)
... At the end of this stage, we like to be able to document all target hosts (alive and otherwise) in a table along with the OS, IP address, running applications, any banner information available, and known vulnerabilities...
... At the end of this stage, we like to be able to document all target hosts (alive and otherwise) in a table along with the OS, IP address, running applications, any banner information available, and known vulnerabilities...
Wireless attacks at Corporations Small Companies and Home Users (05/07/2007)
... Large corporations might have massive wireless networks with high output power to bridge distant buildings and provide wireless point-to-point links between company offices in the same city...
... Large corporations might have massive wireless networks with high output power to bridge distant buildings and provide wireless point-to-point links between company offices in the same city...
Practical Use of Asymmetric Cryptography: Key distribution Authentication and Digital signatures (05/07/2007)
...pca...
...pca...
Deploying a Linux Based Custom Built Hardened Wireless Gateway (05/02/2007)
... An example from the Linux Netfilter script allowing IPSec traffic through is shown here: iptables -A INPUT -i $EXT -p 50 -j ACCEPT iptables -A INPUT -i $EXT -p 51 -j ACCEPT iptables -A INPUT -i $EXT -p udp --sport 500 --dport 500 -j ACCEPT A good idea is to set static ARP table entries for all access points and critical servers connected to the gateway...
... An example from the Linux Netfilter script allowing IPSec traffic through is shown here: iptables -A INPUT -i $EXT -p 50 -j ACCEPT iptables -A INPUT -i $EXT -p 51 -j ACCEPT iptables -A INPUT -i $EXT -p udp --sport 500 --dport 500 -j ACCEPT A good idea is to set static ARP table entries for all access points and critical servers connected to the gateway...
Introduction to Applied Cryptography and Steganography (04/20/2007)
... On a side track, because both encryption and compression increase the entropy of data compressed, encrypted data might actually expand in size after the compression, which makes compression unfeasible...
... On a side track, because both encryption and compression increase the entropy of data compressed, encrypted data might actually expand in size after the compression, which makes compression unfeasible...
Enter page# 1 2 (last added articles shown first)