Reflections on learning about network security (three articles)

Learning about network security (three articles)

Chapter 1: Summary of learning about network security

Learning about network security Summary

Regarding network security, for me, before I came into contact with this course, it can be said to be a loophole, a blank, and the awareness of network security is also very weak. I have heard about cyber attacks, stealing intelligence, stealing passwords, checking personal privacy and other illegal behaviors that harm the security order of the Internet. This also makes me fear the Internet. I was fortunate enough to be exposed to the course of network security this time, which also gave me a new understanding of network security. I also benefited a lot from having a better understanding of it. Network security is essentially information security on the network. Refers to the security of network system hardware, software and data in the system. The transmission, storage, processing and use of network information all require security and visibility. Network security should at least include static security and dynamic security. Static security refers to the confidentiality, integrity and authenticity of information content when information is not transmitted and processed: dynamic security refers to the fact that information is not tampered with during transmission. Theft, loss and destruction. In fact, the specific meaning of computer network security will change with the changes of users. Different users have different understandings and requirements for network security.

For example, from the perspective of ordinary users, they may just want personal privacy or confidential information to be protected when being transmitted on the network to avoid eavesdropping, tampering and forgery; while network providers are not only concerned about this network information In addition to security, we must also consider how to deal with damage to network hardware caused by sudden natural disasters, military strikes, etc., as well as how to restore network communications when network abnormalities occur and maintain the continuity of network communications. Network security has both technical and management issues. The two aspects complement each other and are indispensable. With the large-scale popularization and application of the Internet, network security issues are also presented to us. Threats such as virus penetration, system vulnerabilities, and hacker attacks are emerging one after another, which have seriously affected the normal operation of the network. The increasing scale of the network poses more severe challenges to network security personnel. The limitations of human, material and financial resources determine that it is impossible to completely rely on manual methods for security analysis and prevention. Therefore, how to adopt a faster, more convenient and effective method for attack analysis has become an important issue in network security. With the rapid development of computer technology, information network has become an important guarantee for social development. A lot of it is sensitive information, even state secrets. Therefore, it will inevitably attract various man-made attacks from all over the world (such as information leakage, information theft, data tampering, data deletion, computer viruses, etc.). At the same time, network entities also have to withstand tests such as floods, fires, earthquakes, and electromagnetic radiation. Computer crime cases have also increased sharply, and computer crime has become a common international problem. According to the FBI, computer crime is one of the largest types of commercial crime.

There are serious threats to computer network security. Due to the diversity of computer network components, wide distribution of terminals, and the openness and interconnectedness of the network, the network is vulnerable to hackers, malware, and other attacks. Common computer network security threats mainly include: information leakage, integrity destruction, denial of service, and network abuse.

Information leakage: Information leakage destroys the confidentiality of the system. It means that information is disclosed to unauthorized entities. Common threats that can lead to information leakage include: network monitoring, business flow analysis, electromagnetic and radio frequency interception, intentional or unintentional personnel, media cleaning, vulnerability exploitation, authorization infringement, physical intrusion, viruses, Trojans, backdoors, rogue software, Phishing.

Integrity destruction: It can be achieved through vulnerability exploitation, physical intrusion, authorization infringement, viruses, Trojans, vulnerabilities, etc.

Denial of service attack: Legal access to information or resources is illegally denied or time-sensitive operations are delayed.

Network abuse: Legitimate users abuse the network and introduce unnecessary security threats, including illegal external connections, illegal inline connections, mobile risks, equipment abuse, and business abuse.

Common computer network security threats mainly include: eavesdropping, retransmission, forgery, tampering, denial of service attacks, behavioral denial, electronic spoofing, unauthorized access, and spreading viruses.

Eavesdropping: Attackers obtain important information by monitoring network data, leading to the leakage of network information. Retransmission: The attacker obtains part or all of the information in advance and sends this information to the recipient later.

Tampering: The attacker modifies, deletes, and inserts the communication information between legitimate users, and then sends the forged information to the recipient. This is pure information destruction. Such network intruders are called Be an active aggressor. Active aggressors do the most damage.

Denial of service attack: The attacker uses some method to slow down the system response or even paralyze it, preventing legitimate users from obtaining services. Behavioral denial: The communicating entity denies the behavior that has occurred.

Electronic spoofing: Carry out network attacks by impersonating the identity of legitimate users, thereby concealing the true identity of the attacker and blaming others.

Unauthorized access: Without prior consent , the use of network or computer resources is considered unauthorized access. Spreading viruses: Computer viruses spread through the Internet, which are very destructive and difficult for users to prevent.

Common network attacks include: Trojan horses, mail bombs, overload attacks, flooding attacks, ping attacks, etc. Therefore, network security is a dynamic and overall system engineering. Technically speaking, network security includes secure operating systems, application systems, anti-virus, firewalls, intrusion detection, network monitoring, information auditing, communication encryption, disaster recovery, Security scanning and other security components are composed of multiple security components. A single component cannot ensure the security of the information network. 1. Anti-virus technology. In order to protect against losses caused by viruses, a multi-layered virus defense system can be adopted. That is, install stand-alone anti-virus software on each computer, install server-based anti-virus software on the server, and install gateway-based anti-virus software on the gateway. Ensure that every computer is not infected by viruses, thereby ensuring that the entire enterprise network is not infected by viruses. Since viruses store, spread, and infect the network in different ways and in various ways, when building a network anti-virus system, you should use fully-defense enterprise anti-virus products to implement layer-by-layer defense, centralized control, and prevention. A strategy that combines primary focus with anti-killing. 2. Firewall technology. Firewall technology is an important network security technology developed in recent years. Its main function is to check network communications at the network entrance and protect internal and external network communications based on the security rules set by users while protecting the security of the internal network. After installing a firewall at the network exit, the firewall can effectively isolate the internal network and the external network. All access requests from the external network must pass the firewall inspection to improve the security of the internal network. 3. Intrusion detection technology. The intrusion detection system is a new network security technology that has emerged in recent years. It aims to provide real-time intrusion detection and take corresponding protective measures, such as recording evidence for tracking and recovery, disconnecting the network, etc. Real-time intrusion detection capability is important because it can deal with attacks from both internal and external networks. For example, if an intrusion detection system is installed on the host network segment that needs to be protected, it can monitor various access requirements to the host in real time and feed the information back to the console in a timely manner, so that when any host in the entire network is attacked, the system can detect it in time. . 4. Security scanning technology. Security scanning technology cooperates with firewalls and intrusion detection systems to effectively improve network security. By scanning the network, network administrators can understand the network's security configuration and running application services, discover security vulnerabilities in a timely manner, and objectively assess network risk levels. Network administrators can correct network security vulnerabilities and misconfigurations in the system based on the scan results to prevent hackers from attacking.

If firewalls and network monitoring systems are passive defense methods, then security scanning is a proactive preventive measure that can effectively avoid hacker attacks and nip problems in the bud. Security scanning tools originate from the tools used by hackers when invading network systems. Commercial security scanning tools provide powerful support for the discovery of network security vulnerabilities. 5. Network security emergency response system. Network security is a dynamic project, which means that its security level will change over time. Today, with the rapid development of information technology, we need to continuously adjust our security strategies as time and network environment changes or technology development, and promptly establish a network security emergency response system with dedicated personnel in charge to prevent security emergencies.

In the era of network informationization, network security has received more and more attention. Although there are many products used for network security protection, hackers are still pervasive and cause serious harm to society. The fundamental reason is that the network's own security risks cannot be eradicated, which gives hackers an opportunity to intrude. Despite this, as network security technology becomes more and more perfect, the possibility of hacker intrusion is reduced and network information security is guaranteed. This is also achieved through the tireless efforts of network security personnel. I hope that one day, every netizen will no longer worry about network security issues, and the online world can be in order.

Part 2: Communication network security learning experience

Network security learning experience

Communication network security involves thousands of households in all walks of life, especially our front-line engineers Standardizing construction must not be taken lightly. It is not only related to our own interests, but also to the interests of the company. With the rapid development of the communications industry, manufacturers and operator customers have higher and higher requirements for network construction and maintenance, and safety production is becoming more and more important. This requires us to enhance our awareness of safety regulations in our daily work and recognize the importance of safe production to project safety. In recent years, group companies and companies have paid more and more attention to safety and environmental protection work, and their requirements have become more and more strict. It can be said that under the current situation, safety is politics, the overall situation, stability, and harmony, and it is an indispensable Therefore, as grassroots employees, we must fully realize this, constantly improve our understanding of safety and environmental protection work, and enhance our sense of urgency and responsibility for network security work. Deeply understand that "safety is a veto indicator, operation is a planned indicator, and energy saving and consumption reduction are binding indicators", and from our own perspective, we must do a good job in safety construction

In view of the current increase in the company's projects, management Failure to do so can lead to high-risk incidents. The Zhangzhou region convenes regular meetings for all employees in the region every week to conduct in-depth reflections on the accidents and find out the causes. As an individual, although I have never touched the high-voltage lines of engineering construction, I should learn from past mistakes and encourage myself.

During work, the operating process specifications and potential risk impacts should be clarified first, risk avoidance measures should be taken, and the work should be carried out strictly and clearly in accordance with the execution plan. For engineers, process specifications and systems are the most important, but they are also the most likely to cause problems. This requires us to pay attention to the daily study of safety production, develop safety production standards into a habit, read the construction process again before starting the work, read the work content carefully again, be more responsible, and work seriously Implementation to avoid the occurrence of safety production accidents from the root cause. The alarm bells are ringing. Always think more about the consequences of these operations. Do we have to wait until our early warning measures are taken? Think more before taking action. Put safety production first. Our work Only then will we do better.

Another important aspect of safe production is personal safety. The impact of personal safety accidents is far greater than equipment safety accidents. Therefore, personal safety precautions must be strengthened at work and must be strictly followed during project construction. Standardize the step-by-step operation and do not underestimate any small work. This is responsible for the work and for your own life. While improving the safety system, we must also strengthen our safety awareness and sense of responsibility to fundamentally prevent the occurrence of safety accidents.

Part 3: Learning experience of computer and network information security

Learning experience of computer and network information security

By learning computer and network information security, I have become more profound Understand the importance of network information security. Network information security is an important condition for protecting the integrity and confidentiality of personal information. Only by understanding the basic knowledge of network information security can we better understand the importance of network information security in today's information age!

In today's information age, each of us needs to follow the pace of the times, so we do not lack the use of computer information tools, so we need to understand the benefits and risks of the Internet. Minimize it and make reasonable use of the advantages so that we will not fall behind in the Internet age; now everyone's information will be on the Internet, but how do you protect your information? Could your PC be hacked? Will the membership website you signed up for leak your information? etc! All of these can be regarded as part of network information security.

After studying, I became more aware of the importance of network security, because everyone of us basically uses computers. Have personal computers been attacked by hackers or viruses? Everyone’s personal computer will store a lot of personal information and important text files. In order to ensure the security of these text information from being tampered with, we need to have a deeper understanding of the importance of network information security, and continue to learn and improve our network skills. Security skills can protect your own network information security. For example, with our personal computers, you may have inadvertently shared many of your important files with ***. You actually don’t want everyone to know your secret files, but you don’t know how to share them with ***. Everyone, many hackers can easily invade your personal computer, so we need to know more about the basic knowledge of network security.

In addition, there are many cybercrime cases in our news every day. These are leaks of personal information. Either personal online banking passwords are stolen, or personal information leakage crimes occur on the Internet, so these are all things that we need to pay attention to. Yes, with the continuous development of third-party payment platforms and online retail, we need to improve our understanding of computer network information security, especially for computer majors, which has put forward a new requirement, that is, we must have With rich knowledge of network information security, it is not enough for us to only know the encryption of text, etc. As the times progress, we need to make more progress, so we need to further improve our information security knowledge while understanding the basic knowledge of computer network security.

Network information security requires a simple understanding of file encryption and decryption, virus protection, personal network settings, encryption and decryption technology, personal computer security protection, network leaks in life and inadvertent personal information leakage , etc. Sometimes our personal information is leaked by ourselves, but we don’t pay attention. Our strangers can simply pass through your Personal homepage, your personal information can be analyzed from your online comments, you will inadvertently indicate your city community, etc. These all appear inadvertently, so your inadvertent attention may be noticed by other people. Exploited, so we need to pay attention to the wording and protection of personal information in the Internet information age, and improve protection awareness!

Each of us will encounter many problems in the information age, and this also varies from person to person! Let me briefly explain the problems I encountered:

1. When I first started using a computer, I didn’t know how to perform daily maintenance on my computer and how to ensure my own safety. The computer is not infected with viruses, but I understand the real-life learning,

Because in the information age, we can share a lot of knowledge on the Internet, and now I can solve simple problems by myself;

2. When using the computer, the registry of some software is lost for some unknown reason

, resulting in the inability to use it normally. Now I still don’t understand why? Please ask the teacher for help!

3. The system software always runs very slowly, even after anti-virus system optimization, etc.

There is no great effect. When the software is started, it will always affect the running speed of the computer, and even cause Temporary computer crash;

4. Some web pages will cause the IE browser to fail to load, and the web page needs to be reloaded or restored;

5. If the computer suddenly crashes or loses power, and our data is not completely saved,

can we still find it? How to retrieve it?

6. Accidentally deleted files need to be retrieved. The recycle bin has been emptied. How do we recover the data?

If I have any questions in the future, I hope to communicate with the teacher more, because I am relatively interested in computers, but I don’t know much, and there are still many shortcomings. I hope the teacher can guide me!