PRACTICAL APPROACHES TO DETECTING VULNERABILITIES IN INFORMATION AND TELECOMMUNICATION NETWORKS
DOI:
https://doi.org/10.28925/2663-4023.2023.19.96108Keywords:
network, encryption, Suricata, rules, shift register, firewall, vulnerabilitiesAbstract
Looking at information and telecommunication networks, we see that the transmission of confidential data via the Internet is becoming more frequent every day, and therefore, it is necessary that our data be reliably protected from various threats, vulnerabilities that every day try to gain access to the network and intercept data, neutralize, gain access to network resources. That is why, in our time, protecting data, software and hardware from viruses and various vulnerabilities is more necessary than ever, and not just a problem. Based on these considerations, it is necessary both to create new methods for protecting information and telecommunication networks, and to improve existing ones for better network security, because one of the important elements of information protection is network protection itself. Taking into account the constantly growing statistics of cyber attacks on information and telecommunication networks, after in-depth analysis and processing of the mentioned issues, the authors of the article highlighted the current state of ensuring the security of information and telecommunication networks and solutions regarding security in information and telecommunication networks. The authors comprehensively covered and investigated the problems of ensuring security in information and telecommunication networks, conducted an analysis of threats and vulnerabilities that harm the information network, and conducted research on methods of countering modern threats to information and telecommunication networks. Attention is also paid to the development of security solutions in the information and telecommunications network. The authors plan a number of scientific and technical solutions for the development and implementation of effective methods for detecting vulnerabilities and means for ensuring the requirements, principles and approaches for ensuring the security of information and telecommunication networks.
Downloads
References
The Biggest Cybersecurity Threats Are Inside Your Company. https://hbr.org/2016/09/the-biggest-cybersecurity-threats-are-inside-your-company.
Zero-days aren’t the problem -- patches are. https://www.csoonline.com/article/3075830/zero-days-arent-the-problem-patches-are.html.
Glossary of Internet Security Terms http://www.auditmypc.com/glossary-of-internet-security-terms.asp.
Introduction to Computers/System Software-Wikiversity. http://en.wikiversity.org/wiki/Introduction_to_Computers/System_software.
Lai, Y.-P., Hsia, P.-L. (2007). Using the vulnerability information of computer systems to improve the network security. Computer Communications, 30(9), 2032–2047. https://doi.org/10.1016/j.comcom.2007.03.007
Guideline for the analysis of LAN Security. http://www.itl.nist.gov/fipspubs/fip191.htm.
Computer System Laboratory Bulletin. http://csrc.nist.gov/publications/nistbul/csl94-03.txt.
Idaho National Laboratory.Control System Cyber Security; Defence in Depeth Strategies//external report # INL/EXT-06-11478.
Stallings, W. (2003). Network security essentials: Applications and standards. Pearson Education.
Beale, J., Baker, A. R., Esler, J., Kohlenberg, T., Northcutt, S. Snort: IDS and IPS toolkit.
Firewall. http://www.vicomsoft.com/knowledge/reference/firewalls1.html.
What is Network Encryption? https://cpl.thalesgroup.com/faq/encryption/what-network-encryption.
Stream Cipher. https://www.okta.com/identity-101/stream-cipher/.
What is suricata? https://blogs.opentext.com/category/technologies/security/.
Suricata rules. https :// suricata.readthedocs.io/en/suricata - 6.0.2/rules/intro.html, n.d.
Ilyenko , A., Ilyenko , S., Vertypolokh , O. (2020) Method for protection traffic from intervention of dpi systems. Cybersecurity: Education, Science, Technique, 2(10), 75-87. https://doi.org/10.28925/2663-4023.2020.10.7587
Ilyenko , A., Ilyenko , S., Kravchuk, I., Herasymenko , M. (2022). Prospective directions of traffic analysis and intrusion detectionbased on neural networks. Cybersecurity: Education, Science, Technique, 1(17), 46-56. https://doi.org/10.28925/2663-4023.2022.17.4656
