Week3 Securing And Protecting Information
Security Authentication Process xxxxxxx CMGT400
October 20, 2014
Instructor Name
Security Authentication Process
Introduction
Securing and protecting information has become increasingly far more difficult and complex then what is has been in the past. As the amount of internet users and new devices that use the internet continue to become more common, new methods and users trying to steal information will continue to advance as well. Just this year we have seen large companies, corporations, and banking institutions which some were thought to be very secure have been broken into. Hackers continue to develop new ways to steal private information and develop these tools with increased simplicity. Hackers use different methods in breaching the security of the companies they target. These methods have increasingly become increasingly more complex and difficult to detect with tools and programs that are developed to detect attacks and intrusions. With the increasing amount of security threats, new ideas and methods continue to be developed to prevent further attacks. Among these methods is security authentication, protection and prevention.
Security Authentication Process
There are four processes that are in the security authentication process. These steps are: 1). Identification; 2). Authentication; 3). Authorization; and 4). Accountability. It is vital to integrate these four steps into any network intended to be secure. A properly configured and secured network will be able to protect itself from attacks like: password hacking, DDOS attacks, brute force attacks, and employees abusing their system rights (internal and external).
Identification is the first of four steps of the security process. Any user that expects to gain access to a system is referred to as a supplicant, and the tool that every user who gains entry to the system is referred to as an Identifier. The identifier can have many different methods for identifying the supplicant. The
October 20, 2014
Instructor Name
Security Authentication Process
Introduction
Securing and protecting information has become increasingly far more difficult and complex then what is has been in the past. As the amount of internet users and new devices that use the internet continue to become more common, new methods and users trying to steal information will continue to advance as well. Just this year we have seen large companies, corporations, and banking institutions which some were thought to be very secure have been broken into. Hackers continue to develop new ways to steal private information and develop these tools with increased simplicity. Hackers use different methods in breaching the security of the companies they target. These methods have increasingly become increasingly more complex and difficult to detect with tools and programs that are developed to detect attacks and intrusions. With the increasing amount of security threats, new ideas and methods continue to be developed to prevent further attacks. Among these methods is security authentication, protection and prevention.
Security Authentication Process
There are four processes that are in the security authentication process. These steps are: 1). Identification; 2). Authentication; 3). Authorization; and 4). Accountability. It is vital to integrate these four steps into any network intended to be secure. A properly configured and secured network will be able to protect itself from attacks like: password hacking, DDOS attacks, brute force attacks, and employees abusing their system rights (internal and external).
Identification is the first of four steps of the security process. Any user that expects to gain access to a system is referred to as a supplicant, and the tool that every user who gains entry to the system is referred to as an Identifier. The identifier can have many different methods for identifying the supplicant. The
References: Conklin, A., Williams, G., Davis, R., & Cothren, C. (2012). Principles of Computer Security: CompTIA Security+ and Beyond (3rd ed.). New York, NY: McGraw-Hill/Osborne Media. LaRoche, G. (2008). Fingering Transactional Strong Authentication. Security: Solutions for Enterprise Security Leaders, 45(3), 110-112. Laudon, K. C., & Laudon, J. (2011). Management Information Systems. Managing the Digital Firm (). Harlow: Pearson Education.