1. Separation Within a Network
Cybersecurity on our national infrastructures can be achieved through separation. Separation is a technique used to protect assets from malicious intruders using several separation methods. Separation of networks is critical since it prevents attackers from causing a malicious attack (Amoroso, 2012). The firewall has been the most commonly used method to protect network assets. It provides security through antivirus filtering, identity management, and intrusion detection. Despite the fact that the firewall is an important security technique, it does not work in protecting large-scale networks. This is because networks and systems that are associated with national infrastructure assets are more complex. Therefore, it contains a multitude of entry points that intruders can use to attack caused by internet service providers.
Nevertheless, traditional perimeter firewalls are essential in providing security to national infrastructures. When protecting large scale, national networks, separation can be achieved by using three different firewall approaches. These include network-based separation, internal separation, and tailored separation. The purpose of using a separation technique in protecting network assets is to separate the network from an attacker in order to reduce the risk of a direct attack (Amoroso, 2012). Component distribution is also an important purpose of separation. This involves separating components in the networks infrastructure in order to distribute risks. Firewalls are also necessary for protecting unsecured networks such as the internet.
The future of firewall functionality in the protection of the national infrastructure is the use of a firewall in the cloud (Stewart, 2013). This will be effective with the development of a new partnership that will be between carriers and end-user group for effective protection. Additionally, the network-based firewall can be applied distributed denial of service (DDOS) filtering. It is usually placed in a wide area network with the aim of throttling DDOS attacks. This approach is essential in modern networking. It is important to note that filtering DDOS attacks at the edge do not provide effective protection. Therefore, it is important to move it into the network.
Amoroso, E., (2012). Cyber Attacks: Protecting National Infrastructure, STUDENT EDITION. Amsterdam: Elsevier.
Stewart, J. M., (2013). Network Security, Firewalls, and VPNs. Burlington: Jones & Bartlett Publishers.
2 nd Discussion
2. Separation within a network
Mainly SOD has two objectives. The first is the prevention of conflict of interest (real or apparent), wrongful acts, fraud, abuse and errors. The second is the location of control disappointments that incorporate security breaks, data burglary and circumvention of security controls. Right SOD is intended to guarantee that people don’t have clashing obligations or are not in charge of writing about themselves or their unrivaled.
Separation of duties (SOD) is main key role of all internal controls and most expensive to achieve the goal in sometime because of difficulty. For a specific security process in many people, the objective to achieve by disseminating the tasks. It is basically financial systems for account. Even in all types or sizes in companies can know or understand the not to combine the roles. The main theme of the separation of roles is to became more relevant to the IT organization when the regulatory mandates. An extremely high part of SOX inner control issues, for instance, originate from or depend on IT. This constrained IT associations to put more prominent accentuation on SOD over all IT capacities, particularly security.
There are few examples for separations:
Receipt and distribution of Mail
Verification and development for Application
Analysis for network administration
Payments and payment authorization.
With regards to isolation of obligations, private company best practices are particularly significant. An absence of isolation of obligations is a noteworthy contributing component in practically all events of misrepresentation, and is regularly observed to be a weakness during post-analysis of system compromises.
Behr, A., & Coleman, K. (2017, August 03). Separation of duties and IT security. Retrieved May 23, 2019, from https:// of duties: Small business best practices. (n.d.). Retrieved May 23, 2019, from https://