Thinking about Data Center Solutions

Engineers from La Salle-URL share the latest news and projects in the field of network solutions in telematic engineering.

02 May 2016 | Posted by Redacción Data Center

Welcome to security

What's up GG's? I'm sure you know that today it will be a post about ... yes you got it: Security!

Security, as I said it in previous post, is one of the most important aspect of a DC, especially if the DC is for a bank! We will have to protect several aspects of the bank's data, like the following:

  • Confidential data (credit cards, personnal informations of users, ...)
  • Money (of course!)

Well we have different tools to secure Data Center, as I said in the previous post, we have at the software level IDS and IPS:

  • IDS means Intrusion Detection System. It is a system that will detect any intrusion or suspicious behavior and warn you against it. But this system won’t do anything to go against the suspect behavior.
  • IPS means Intrusion Prevention System. Where IDS will just warn you, IPS will act against the threat! It will warn you that there is a suspicious behavior and will act to defend your system against this treat. Of course it is more expensive than an IDS, that’s why you have to choose between the two.

We will have to control the use of data by the users. We have to teach our users to be aware that some people could try to attack the Data Center, with different ability. We will have to teach them about "Social Engineering" which is a non-IT attack, but a manipulation one. Hackers will try to attack the system by pretending they're from the service, trying to have some logs to enter the system. That's why we have to make our users to be aware of this kind of attack which is the one they are the most vulnerable to.

 

With firewall, we'll limit he access of attackers to the internal network. We can combine all these tools with and antivirus scans that can detect Trojan horses if we have ones installed on device.

We can create honeypots for hackers. A honeypots is a trap for hacker, we are baiting them to enter in this less secure zone to make him lose his time, allowing us to detect him and find him in order to defeat the hacker.

Designated Data Loss Prevention solutions "detect and prevent unauthorized attempts to copy or send sensitive data without authorization".

 

That's it for today GG's, I hope you will enjoy the blog and learn some things from us! Take care of yourself and don't forget to stay tuned for more information!

Share