Basics of VPN
Networking Basics
Define VPN
Future of VPN
VPN technology
VPN Security protocols
Protocols and Solutions
IPSEC and SSL
VPN setup
VPN Remote Access
Site to Site VPN
SSL VPN
PointtoPoint Tunneling Protocol
SSL VoIP VPN
VPN solutions and Vendors
VPN software
Cisco VPN
Business Solutions
VPN costs
VPN solutions UK
Hamachi VPN
VPNin Windows XP
PPP SSH VPN
Open VPN
VPN software and Hardware
VPN ports and configuration
VPN Router
VPN gateway
VPN firewalls
VPN tunnel
Satellite VPN

Free News Letter

Stay updated, sign up for our free newsletter to receive useful tips

Full Name
EmailId

VPN - A secure Network

Though VPN is used as alternative to WAN because of the security that it provides.VPN too has its own loopholes. As you can find lot of alert messages in the internet indicating the pit falls of them. Though it enables information exchange between server and the application complete security is not guarantee. Read on

The article covers
  • Is VPN a secured network?
  • Incidents that undermine security
  • Networking security Overview
  • Overview of VPN
Network Security, VPN or not, is a major concern. Security in a VPN is pre-eminent to its usage as an alternative to WAN. Organizations think VPN is a secure network. Contrary to this belief you find many reports or alerts on the internet that discloses loop holes in a VPN. VPN is really a tunnel of information and protects information between your application and the server. Complete end-to-end security is not a guarantee. System patches, Antivirus software's with firewalls, additional encryption of data between user application and server application and vigilance on the part of the administrator is needed.

Incidents that undermine security

For any computer user there are innumerous attacks on his system. These may be a probe or a scan. Possibilities are account compromise or root compromise when having multiple users or a server user accounts. It can also be packet sniffing, denial of service, exploitation of trust (phishing), malicious code, and Internet infrastructure attacks.
  • A probe is an attempt to discover information about the system. It usually is followed by a more serious security event.
  • A scan is automated done by some software tools. Scans result in changing the configuration of the systems. Once this is done a more specific attack can be made as the machine is open to intruders.
  • An account compromise is the unauthorized use of a user account. It can result in data theft/loss. The account privileges determine the level of damage. A system level privilege can cause more damage. In UNIX systems a root compromise is when the intruder gets unlimited access to the system.
  • Packet sniffer's are programs the captures information from packets as they travel on the net. Depending on the information gained they can gain access to your system and cause damage.
  • You are using a service on a network. If your service is important then a denial of service is to stop you from using your service by disruption in physical connections, Manipulation of data in transit, or flooding the network so that the service you use becomes limited.
  • In a large network the many individual systems have to run common commands. These systems therefore check a set of files with the other systems that are permitted to use those commands. Attackers use this loop hole and forge identities to appear as a system that can be trusted thus gaining unauthorized access.
  • Malicious code is a program that has undesirable results. These are viruses, Trojan horses and worms. These can lead to data loss, denial of service and other types of security incidents
  • Attacks on key systems that support the internet and its working hinder operation of the internet.

Networking security Overview

The potential problems that can lead to a security problem in case of a client server setup of an organizations is
  • The Users System
    The users system should have a virus protection and its operating system should have all the updates and patches. Also necessary is the applications security and their respective patches. (MS-outlook has been vulnerable before). Another major factor is the amount of time a given system is actively connected to a network. (Cable modems or Ethernet connections have been more vulnerable to port scanner intruders where as dial-up users are less prone to virus infections or file access related risks)
  • The Intermediate Network
    The ISP has to route data from a site or IP address to you and vice versa in case of a two way communication. Your information can be intercepted and decrypted information read by a DNS-(Domain Name System) Server if your packet is routed through their system
  • The Destination Network
    The network that you are communicating with may not be secure. If this happens, you cannot be assured of security to your system and privacy of your data.
  • The Server
    Server operating system and applications are constantly under threats of new viruses, intrusions, and worms. Administrators are always checking for security risks due to compromised usernames and passwords.
Continue to: Overview of VPN Security

Related Articles
Basics of Networking
VPN - The Inside Story
WAN Going the VPN way
VPN - The way to go!

Book mark this page Email this to your friend Add this page to del.icio.us
Suggest an Article

Haven´t found the article you are looking for, please suggest your article. We value all your suggestions and comments.
Home  |    |    |  Privacy Policy  |  Disclaimer  |    |  Copyrights  |  Contact Us
© Copyright 2009 vpntools.com All rights reserved. Read legal policy and privacy policy.