Perimeter-Security

Perimeter Security:-

The ideal “perimeter Security” is something that has long intrigued security practitioners. They have fought against emerging malware strains and external threats to strengthen a network’s interior.

Perimeter Firewall:-

A firewall installed between a private network and other public networks, such as the Internet. A perimeter firewall controls all traffic between the internal network and other networks.

Perimeter firewalls control the flow of network traffic entering or leaving the host or organisation's border or outer boundary, providing a first line of defence against external attacks and blocking access to inappropriate content from inside an organisation.

Perimeter IDS/IPS:-

Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) are a family of security solutions that look for anomalous traffic on the network they are connected. They occupy signature-based scanning with behavioural heuristics to learn your network’s normal traffic patterns and to alert you when rules and thresholds have been breached.

Secure DMZ’s:-

It is advised to keep the rules that allow traffic between the DMZ and an internal network as tight as possible. Too often, administrators seeking to troubleshoot a problem create a rule allowing full access between a DMZ system and a back-end server on the internal network (or the entire internal network). This defeats the purpose of the DMZ and effectively merges it with the internal network. Instead, create specific firewall rules that allow communication only between specific servers on specific ports required to meet business requirements.

Message Security (Anti-Virus, Anti Malware):-

Message security is the practice of encrypting messages on your device so that they can be read only by the intended recipient. Confidentiality Message encryption is the only way to ensure that only the indented recipients are reading your messages.

Honey Pot:-

Honeypot is an Internet-attached server that acts as a decoy, luring in potential hackers in order to study their activities and monitor how they are able to break into a system. Honeypots are designed to mimic systems that an intruder would like to break into but limit the intruder from having access to an entire network. If a honeypot is successful, the intruder will have no idea that he is being tricked and monitored.

DLP:-

Data breaches pose a serious threat to organisations of all sizes, as the number of incidents and associated costs are on the rise. Whether a data leak was intentional or not, it can also cause permanent damage to the reputation of your organisation. Data Loss Prevention (DLP) is a comprehensive service that helps to keep your confidential data private. It prevents data breaches and enforces compliance by scanning text and files to detect sensitive information attempting to exit your network.