Abstract
This paper examines the issues surrounding computer network security, exploring the ways in which a business computer system can be protected from breaches that occur without permission of the owner of that system. The paper explains that many breaches are either simply for the technical challenge of doing so or because a "hacker" wishes to gain information from that system or to disrupt the work being done by that system. While some hacking is relatively harmless in intent, a great deal of it is highly destructive, or even potentially disastrous. At the highest levels " hacking into the nation's defense system, for example " hacking could be catastrophic. The writer shows that there are a number of ways in which computers can be protected. This paper examines examples of breaches, and of critical safeguards that have proven effective or so promise while in development.

Introduction, Overview
Literature Review: Damage Done and the Continuing Danger
Type of Study
Solutions to Problems
Summary and Conclusion
References

From the Paper
"Hacking " and other computer crimes related to uninvited intrusion " have become a part of both our daily lives and a part of our popular culture. While in the former it is often extremely harmful, in the latter it is often depicted either as good clean fun or as part of the arsenal of those fighting the so-called good fight. This paper examines the ways in which a computer network can be kept secure through the use of a number of both high tech and very low-tech strategies. After defining the problem and looking at the background of this issue, this paper looks at a real-world example of hacking ". and the price that is paid and, in addition, the strategies needed to avoid the pitfalls of intrusive access and attacks on network systems."

Tags:hacking, computer, system

Abstract
The paper defines TCP/IP as basically the core of the Internet. It consists of both TCP and IP protocols, with the Internet protocol (IP) the network layer of the Internet which provides a connection-free service and the The Transmission Control protocol (TCP), which runs on top of the IP protocol, providing a connection-oriented service between the sender and the receiver. The paper discusses how, at one time, the Internet was a specialized tool; but today, it is a general-purpose tool used for a variety of things by both individuals and businesses. The TCP/IP protocols were designed when the Internet was still very young and users trusted each other, for the most part.

The paper shows how these protocols lack some of the most basic mechanisms for security, including authentication and encryption. As more and more people use the Internet and use of the TCP/IP protocols increases, this lack of security is becoming a major issue. This paper examines the basic security flaws involved with TCP/IP protocols, discussing the roots of and possible solutions to these problems.

From the Paper
"Network developers generally use client-side cookies to combat the TCP session hijacking problem (Atkins, 1997). Cookies allow the system to check the identity of the user by means of storing the CFID and CFTOKEN in client side cookies and using that information to accurately identify the user. The cookies are issued when the user logs in, so this technique is generally effective.

A hacker would actually have to literally copy the cookies off another's machine to steal their identity. However, a lot of people do not like cookies and may even have them disabled. Fortunately, there are other ways."

Tags:hijacking, CFID, CFTOKEN, GradeView, number, prediction, attacks

Abstract
This paper describes a virtual website, similar to KaZaA in the file-swapping aspect, but instead of music, provides first-rate Hollywood-caliber movies, from which members have the opportunity to download specialized encryption software to their system. The author points out that website security for the Internet and internal networked environments has three basic objectives: confidentiality, integrity, and availability. The paper states that the website will require various software tools, such as encryption and database software, firewalls, routers and other hardware, but the keys to security are reputable vendors, who are reliable with support and well-trained, and knowledgeable network administrators and personnel.

Table of Contents
Introduction
Define the Website
Basic Threats, Risks, and Security Requirements
Corporate Policies
Secure Assets
Mechanisms
Conclusion

From the Paper
"Whatever the case, our website security aspirations will be very difficult to achieve. In the modern world, a high school kid with a failing average could easily gain unauthorized access to an insecure network or website environment. The real problem is that many people know exactly what they are doing because today's adolescents have grown up with technology and they understand it. Couple this with the fact that whole nations and industries have become computer crime intruders such as what has occurred in China. Network security engineers have to be on the lookout for many attacks."

Tags:confidentiality, integrity, availability, encryption, firewalls

Abstract
This paper examines the Indiana University computer network case in which an outsider, Glen Roberts, posted faculty members' Social Security numbers and other personal data on his web site to prove a point--that the data was vulnerable and accessible. The paper examines the case, analyzes the problem, develops key decision points and alternative solutions, makes a recommendation, and outlines an implementation plan.

From the Paper
"This paper examines the Indiana University Computer Network case in which Social Security numbers and other sensitive data were exposed on a non-university individual's web site after being found unprotected on the Internet. The paper evaluates the case, analyzing the problem setting up key decision criteria for choosing an alternative solution, analyzing the alternatives, providing a recommended alternative and outlining an action and..."

Tags:IU, computer, data security, Social Security number, Glen Roberts, website

Abstract
This paper examines issues of business security in E-commerce contexts. Topics discussed include Web defacing, Viruses, and e-business security in computer (network) environments. A combination of technical and social engineering is recommended as solutions to these problems.

Abstract
Adequate security is now accepted as a basic requirement for every e-commerce or networked system. This applies to all the underlying components - the LAN, Firewall, Routers, Internet and so on. The paper shows that as the surge of online consumers continues, e-commerce security is drawing more and more attention from businesses and consumers alike. But one issue, the security of proprietary information sent over the internet, keeps getting in the way. In expanding access to e-commerce solutions, organizations increase their risk of exposing vital corporate information to external parties. The paper shows that such viruses and hacker tools are available around the world virtually instantaneously via the Web. Viral detection software can find and eliminate computer viruses. However, even when one problem is addressed, companies cannot get too comfortable, because safe today does not mean safe tomorrow.

From the Paper
"The security problems of the future will be the same as those of the present: management of complexity. Software systems suffer security problems because they are complex, large, and difficult to program; a single flaw can give an attacker a foothold into an otherwise very strong system. Good design and a solid security foundation can provide multiple levels of protection, and reduce the risk of a system being completely compromised. Future electronic commerce systems will require correct interoperation among end points, browsers, servers, firewalls, and other network devices that haven't been invented yet. As the number of cooperating agents increases, the chances that everything will perform correctly decreases."

Tags:hackers, Netscape, Secure, HTTP, PKI

Abstract
This paper explains that Voice over IP (VOIP) is one of the most important emerging trends in telecommunications because it integrates communication services into the IP network infrastructure, the Internet, especially e-mail and instant messaging, and standard classical services like telephony. The author stresses that VoIP has problems of confidentiality, integrity and availability of the data and information, which streams through the network. The paper presents a chapter outline of a thesis, which will discuss implementation of VoIP network security emphasizing maintaining the efficiency of this system.

Table of Contents:
Abstract
Chapter One - Advent of Information Technology and the Rise of VoIP
Chapter Two - The Session Initiation Protocol (SIP) as One of the Foundations of VoIP
Chapter Three - Standards for Voice Over IP Implementations
Chapter Four - Proofs of Concept on the Security and Efficiency of VoIP Implementation
Chapter Five - Conclusion

From the Paper
"Any type of implementation, procedures or processes in existent today should and must adhere to certain standards and industry best practices. VoIP is no different and in this chapter, available standards will be examined in order to determine the validity of the parameters used in the various proofs of concept performed by different proponents. Beginning with RFC 3261, the document will be benchmarked against two United States government publications that define not only VoIP implementation but security considerations involved in the planning up to the operations stage."

Tags:history implementation protocols validity, due diligence

Abstract
This paper examines data communications and networking and illustrates how network security aspects apply. The paper presents an understanding of the status, outlook and trends regarding network security technology. An extensive search of academic journals, trade publications and other related magazines regarding network security, is provided. Although this paper takes into consideration the business applications of the topic, it also presents some technical details.

From the Paper
"Before we had such a complex world of information technology, computers were always single or 'dumb' terminals that could only accept information from their mainframe overseers. "It's depressing how often we see that those who don't remember history are doomed to repeat it. When cordless phones and the first analog cell phones hit the market, anybody with a scanner that operated at the right frequency could easily listen to calls not intended for them." (Gast, 2002) Security was easy to manage because only a few people had access to the mainframes. But today, even the most basic network has many individual nodes more powerful than the mainframes of just a few years ago. Networks now have access to the Internet which basically opens up the world to users."

Tags:internet, privacy, technology

Abstract
This paper discusses how network security is something that top management, IT professionals, and end users need to be aware of. It discusses how all three groups look at this issue from different perspectives but each perspective is importantant to implementing a safe secure network for a business. The paper shows that, by providing anti-virus programs for home users, implementing appropriate network usage procedures, and providing proper training and education, companies can limit the amount of malicious infections that infiltrate their systems.

From the Paper
"In order to be more productive, many employees have started to take work home with them. Removable media devices can hold large volumes of data, and reduced prices have made devices such as USB tokens and MP3 players affordable to all (Executive Summary). The ease and convenience of massive storage devices has enabled users to transport massive amounts of data to and from the comfort of the user's home. Unfortunately, many users do not have the security devices installed on their personal computer that the company has on its network. Because they do not have basic antivirus protection, they are susceptible to infection (Vamosi, 2004). If an employee's home computer is infected with a virus it can easily be transferred to files downloaded to and from a USB token without the user's knowledge. "

Tags:virus, data

Abstract
This paper explains that the WLSE, CiscoWorks WLSE Release 2.5 is a wireless area network solution that, aside from the fundamental features of CiscoWorks WLSE, WLSE Release 2.5 has additional features for radio management support, which permits users to detect unauthorized or rogue access points and to deploy new access points with the help of the coverage maps the system creates. The author points out that there are several problems, e.g., valid dates entered in the advanced options for Device Discovery produce an error message. The paper relates that there are alternative products, such as HP?s ProCurve Networking Secure Access 700wl Series, which guarantee controlled data security and protections.

Table of Contents
What is CiscoWorks Wireless LAN Solution Engine (WLSE) 2.5?
Features and Benefits
Supported Devices
Limitations/Issues
Possible Alternative Products

From the Paper
"Entrasys Wireless is another possible alternative to CiscoWorks WLSE 2.5. It is an indoor and outdoor solution to stay connected in a network. Entrasys Wireless utilizes 802.11a/b/g multimode radio cards for a highly secured transmission of radio frequencies meant for an experience of being connected without cables and wires."

Tags:network, radio, management, rogue, map