As we see in this time, the Internet has grown and developed to achieve several million units of the number of computers connected in various parts of the world. From day to day information also in the Internet network is the more complete, accurate, and important. . Information has become such a valuable asset that needs to get treatment so that more specific. In addition, also, the progress achieved in the field of development of the operating system itself and the computer is in such a remote utulitasnya level where performance, reliability and flexibility of software to be the main criteria in the process of software development. With the increasingly important and valuable information and be supported by progress in the development of software, of course attract the pembobol (hacker) and it (intruder) to continue to experiment and practice in order to find the weaknesses of each of the existing system configuration information that has been set
Starting from the facts above, a concept that appears more often called the Network Security. Initially, this concept explains more about the assuredness (security) system from a network computer connected to the Internet against the threats and harassment directed to the system. The scope of the concept is the day the more knowledgeable so that when this does not only discuss issues assuredness network computer, but leads to more problems assuredness system global information network. Some European countries and the United States has even made the Network Security becomes a central point concerns the parties respective military.
In fact, Network Security is a problem arising from the local computer network connectivity we have with the wide-area network (such as the Internet). Thus, for our local network computer is not connected to the wide-area network, Network Security problem is not so important. But this does not mean that gives meaning to join the wide-area network is a matter of 'frightening' and full of danger. Network Security is only describe the possibilities that will arise from the local computer network connectivity with our wide-area network.
In general, there are 3 (three) of keywords in the concept of Network Security, namely:
* The risk / hazard level,
* Threat, and
* Slightness system (Vulnerability)
Level of risk or danger
In this case, the risk means how likely the success of intruders in order to obtain access to the local computer network via the local network connectivity to wide-area network. In general, access-access that is desired:
Read * Access: Ability to know the entire network information system.
* Write Access: Ability to write or destroy the data is there in the system.
* Denial of Service: Covering the use of utility-utility network in a way the normal quota CPU, bandwidth and memory.
Threat
In this case, the threat means that those who try to gain illegal access-access to the computer network as if he has the authority to access to the network computer.
Slightness System (Vulnerability)
Slightness system has more sense of how much protection can be applied to the network owned by someone from outside the system who try to gain illegal access to computer networks, and possibly people from the system to provide access to the outside world that is harmful to the system network.
To analyze a system of global information network on the overall level of reliability and safety is not a matter that is easily implemented. Analysis of a network information system must be mendetil ranging from policy level to application level praktisnya.
As a start, it's good we see a network system that has become the main target point of the experimental efforts are piercing. In general, the network computer in the world using the Unix operating system as the platform. Unix has become an operating system that has high reliability and good performance level. However, Unix is basically composed by functions that quite complicated and complex. As a result, Unix also has some weaknesses, such as bug-bug (incompatibility programming algorithm) is small does not realize sometimes by the Unix programmer. In addition, the tool-using the Unix utilities as platformnya, often have a bug-bug also withdrawn. Well, the things that this is often exploited by the hacker and intruder in the world.
To prevent successful exploitation of the hacker and intruder, and developed a concept known as UNIX Network Security Architecture. This architecture includes 7 layers in the network security level. The seven layers are as follows:
* Lapis to-7: Policies
Lapis * to-6: Personnel
* Lapis to-5: Local Area Network
* Lapis to-4: Delivery In
* Lapis to-3: Gateway
* Lapis to-2: Packet Filtering
* Lapis to-1: Limit Foreign Network
Policy
A protective layer to the discretion of the program overall network security and protection that is applied. This layer has the function defining the policies of organizations ranging from the greatest risks that may be obtained up to how the policy taken to the basic procedures and equipment used. This layer to become one of the main success of the program determines protection and security systems.
Personnel
This layer defines the human in terms of network information system. Personnel who perform installation, configuration, operation and those who are able to run access-access that is available in the system is included in this layers. Policies taken on the layer is basically should reflect the goals that you want to achieve in the program this protection and security.
Local Area Network
Layer further defines the equipment and data that should have protection. In addition, this layer also includes the procedures of supervision and control is often applied in the system.
In the limit Limit
In defining the layer system that is physically connected to the "buffer" which is the barrier between the local information network system with the outside network. This limit is important because this point to be the main target of the efforts to obtain access exploitation illegal. It's this buffer zone that concentrate on one point so that the implementation of supervision and control procedures will become easier. Similarly, when the attacks come from outside the system, there will be only one point the main entrance. Thus, it is easy to isolate the system's connectivity to the outside when the disturbance occurred.
Gateway
Define a gateway from the main door and to the system. Kebijaksanaan proteksi dan sekuriti sebuah sistem yang terkoneksi dengan wide-area network seharusnya lebih mengarahkan usaha-usaha yang ada untuk mengamankan lapis ini sebaik mungkin. Services-public services that have placed on the layer is likely to meminimisasi more access to the system.
Packet Filtering
This layer defines a platform which is located between the network interface layer 3 (gateway) with a network interface which is the implementation of the method Firewall. Layers are more programs that run as a function of supervision (monitoring) of data packets that enter and exit the system.
Overseas Delivery Network
Overseas Delivery Network defines the point where the system is connected with the wide-area network and we have no direct control of the point is.
As described above, the layer-3 to be the main point and the most vulnerable in this network security. Implementation of policies that could be taken in this layer can only be done in software. There are several types of security software that can be used to strengthen the protection and business security systems in the 3-layer to this. These include:
TCP Wrapper
This program provides service monitoring and control of network services. Basically, made by this program is to make the list log on activities that relationship going. This program can be taken free of charge via anonymous FTP via ftp.cert.org which is located in the directory pub / tools / tcp_wrappers / tcp_wrappers .*
Swatch
Swatch Program combine lists the log was created by programs other utilities in addition to the benefits that are able to configure so that during the logging, Swatch can perform other actions based on certain priorities. Swatch is available via anonymous FTP from sierra.stanford.edu in the directory pub / sources.
SOcKs library and sockd
This program is a alternative to the implementation of the concept of "TCP Wrapper". Main purpose of this program is a concentrate of all public services in an internet point. "Sockd" run by "inetd" at the demand for certain services and appear only connections from hosts that have been registered. This program is of course also make the event log associated with the connection going. This program can be obtained via anonymous FTP on host s1.gov in the directory / pub with the name socks.tar.Z.
Author: Joko Yuliantoro & Onno W. Purbo
Starting from the facts above, a concept that appears more often called the Network Security. Initially, this concept explains more about the assuredness (security) system from a network computer connected to the Internet against the threats and harassment directed to the system. The scope of the concept is the day the more knowledgeable so that when this does not only discuss issues assuredness network computer, but leads to more problems assuredness system global information network. Some European countries and the United States has even made the Network Security becomes a central point concerns the parties respective military.
In fact, Network Security is a problem arising from the local computer network connectivity we have with the wide-area network (such as the Internet). Thus, for our local network computer is not connected to the wide-area network, Network Security problem is not so important. But this does not mean that gives meaning to join the wide-area network is a matter of 'frightening' and full of danger. Network Security is only describe the possibilities that will arise from the local computer network connectivity with our wide-area network.
In general, there are 3 (three) of keywords in the concept of Network Security, namely:
* The risk / hazard level,
* Threat, and
* Slightness system (Vulnerability)
Level of risk or danger
In this case, the risk means how likely the success of intruders in order to obtain access to the local computer network via the local network connectivity to wide-area network. In general, access-access that is desired:
Read * Access: Ability to know the entire network information system.
* Write Access: Ability to write or destroy the data is there in the system.
* Denial of Service: Covering the use of utility-utility network in a way the normal quota CPU, bandwidth and memory.
Threat
In this case, the threat means that those who try to gain illegal access-access to the computer network as if he has the authority to access to the network computer.
Slightness System (Vulnerability)
Slightness system has more sense of how much protection can be applied to the network owned by someone from outside the system who try to gain illegal access to computer networks, and possibly people from the system to provide access to the outside world that is harmful to the system network.
To analyze a system of global information network on the overall level of reliability and safety is not a matter that is easily implemented. Analysis of a network information system must be mendetil ranging from policy level to application level praktisnya.
As a start, it's good we see a network system that has become the main target point of the experimental efforts are piercing. In general, the network computer in the world using the Unix operating system as the platform. Unix has become an operating system that has high reliability and good performance level. However, Unix is basically composed by functions that quite complicated and complex. As a result, Unix also has some weaknesses, such as bug-bug (incompatibility programming algorithm) is small does not realize sometimes by the Unix programmer. In addition, the tool-using the Unix utilities as platformnya, often have a bug-bug also withdrawn. Well, the things that this is often exploited by the hacker and intruder in the world.
To prevent successful exploitation of the hacker and intruder, and developed a concept known as UNIX Network Security Architecture. This architecture includes 7 layers in the network security level. The seven layers are as follows:
* Lapis to-7: Policies
Lapis * to-6: Personnel
* Lapis to-5: Local Area Network
* Lapis to-4: Delivery In
* Lapis to-3: Gateway
* Lapis to-2: Packet Filtering
* Lapis to-1: Limit Foreign Network
Policy
A protective layer to the discretion of the program overall network security and protection that is applied. This layer has the function defining the policies of organizations ranging from the greatest risks that may be obtained up to how the policy taken to the basic procedures and equipment used. This layer to become one of the main success of the program determines protection and security systems.
Personnel
This layer defines the human in terms of network information system. Personnel who perform installation, configuration, operation and those who are able to run access-access that is available in the system is included in this layers. Policies taken on the layer is basically should reflect the goals that you want to achieve in the program this protection and security.
Local Area Network
Layer further defines the equipment and data that should have protection. In addition, this layer also includes the procedures of supervision and control is often applied in the system.
In the limit Limit
In defining the layer system that is physically connected to the "buffer" which is the barrier between the local information network system with the outside network. This limit is important because this point to be the main target of the efforts to obtain access exploitation illegal. It's this buffer zone that concentrate on one point so that the implementation of supervision and control procedures will become easier. Similarly, when the attacks come from outside the system, there will be only one point the main entrance. Thus, it is easy to isolate the system's connectivity to the outside when the disturbance occurred.
Gateway
Define a gateway from the main door and to the system. Kebijaksanaan proteksi dan sekuriti sebuah sistem yang terkoneksi dengan wide-area network seharusnya lebih mengarahkan usaha-usaha yang ada untuk mengamankan lapis ini sebaik mungkin. Services-public services that have placed on the layer is likely to meminimisasi more access to the system.
Packet Filtering
This layer defines a platform which is located between the network interface layer 3 (gateway) with a network interface which is the implementation of the method Firewall. Layers are more programs that run as a function of supervision (monitoring) of data packets that enter and exit the system.
Overseas Delivery Network
Overseas Delivery Network defines the point where the system is connected with the wide-area network and we have no direct control of the point is.
As described above, the layer-3 to be the main point and the most vulnerable in this network security. Implementation of policies that could be taken in this layer can only be done in software. There are several types of security software that can be used to strengthen the protection and business security systems in the 3-layer to this. These include:
TCP Wrapper
This program provides service monitoring and control of network services. Basically, made by this program is to make the list log on activities that relationship going. This program can be taken free of charge via anonymous FTP via ftp.cert.org which is located in the directory pub / tools / tcp_wrappers / tcp_wrappers .*
Swatch
Swatch Program combine lists the log was created by programs other utilities in addition to the benefits that are able to configure so that during the logging, Swatch can perform other actions based on certain priorities. Swatch is available via anonymous FTP from sierra.stanford.edu in the directory pub / sources.
SOcKs library and sockd
This program is a alternative to the implementation of the concept of "TCP Wrapper". Main purpose of this program is a concentrate of all public services in an internet point. "Sockd" run by "inetd" at the demand for certain services and appear only connections from hosts that have been registered. This program is of course also make the event log associated with the connection going. This program can be obtained via anonymous FTP on host s1.gov in the directory / pub with the name socks.tar.Z.
Author: Joko Yuliantoro & Onno W. Purbo
0 comments
Post a Comment