Outcome 3:Understand Security Threats and Protection

Table of Contents

1. Introduction
2. Security threats
3. Protection Methods
   1. Browser settings
   2. How to change Settings
   3. E-mail filters
   4. Anti-Malware Software
   5. Security Zones
   6. Public and Private
   7. Demilitarised Zone (DMZ)
   8. Implementing a DMZ
   9. Intranets and Extranets
   10. VPN Activity
   11. Intrusion Detection Systems
4. Summary
5. SAQ 1

Intrusion Detection Systems

Firewalls and demilitarised zones can be used as part of network intrusion detection systems. The simplest detection systems simply log suspicious activities. More powerful systems can react to attacks for example by sending suspicious requests to dummy internal networks in the DMZ.

---

Activity

Have a look at the Wikipedia article on Intrusion Detection Systems, paying particular attention to the differences between passive and reactive systems. It is also worthwhile looking at some of the commercial systems available.

Next: Summary