Network security protocols are used to protect computer data and communications in transit. The main tool used to protect information as it travels over the network is encryption. Encryption uses algorithms to encrypt data so that it cannot be read by unauthorized users. Encryption generally works with a set of procedures or protocols that manage the exchange of data between devices and networks. Together, these cryptographic protocols enhance the secure transfer of data.
Secure networks have additional security, evidenced by “https” in the address.
Without the security protocols of the cryptographic network, Internet functions such as electronic commerce would not be possible. Secure communication is necessary because attackers try to eavesdrop on communications, modify messages in transit, and hijack exchanges between systems. Some of the tasks that network security protocols often protect include file transfers, web communication, and virtual private networks (VPNs).
Without the security protocols of the cryptographic network, Internet functions such as electronic commerce would not be possible.
The most common method of transferring files is via FTP (File Transfer Protocol). One problem with FTP is that files are sent in clear text, which means they are sent unencrypted and therefore can be compromised. For example, many webmasters update their sites using FTP; An attacker using a packet sniffer and the website’s IP address can intercept all communications between the webmaster and the website’s server.
Alternatively, Secure File Transfer Protocol (SFTP) offers a more secure way to transfer files. SFTP is typically based on Secure Shell (SSH) and is capable of encrypting commands and data transfers over a network, reducing the likelihood of man-in-the-middle attacks. The SSH cryptographic protocol is also resistant to phishing attacks because the client and server are authenticated using digital certificates.
In addition to SSH, Secure Sockets Layer/Transport Layer Security (SSL/TLS) can be used as the underlying protocol for SFTP. Like SSH, SSL/TLS authenticates the identity of the server and client, as well as encrypts communications between the two. In addition to protecting SFTP file transfers, SSL/TLS is used to protect email communication.
SSL is also used in combination with Hypertext Transfer Protocol (HTTP) to encrypt communications between a browser and a web server in the form of HTTP over Secure Sockets Layer (HTTPS). HTTPS encrypts communications and verifies the identity of a web server. When conducting private transactions on the Internet, such as online banking, it is generally good practice for a person to check their browser’s address bar to ensure that the website address begins with https:// and not just http: //.
Another area where cryptographic network security protocols play an important role, especially for modern businesses, is the exchange of documents between private networks over a public Internet connection. These so-called virtual private networks (VPNs) are business-critical because they securely connect remote employees and offices around the world. Some commonly used network security protocols to facilitate VPNs are Point-to-Point Tunneling Protocol (PPTP), Layer 2 Tunneling Protocol (L2TP), IP Security (IPsec), and SSH. These network security protocols not only create a secure connection, but also greatly reduce the costs associated with creating an alternative solution, such as building or leasing lines to create a private network.
