Network Security Basics Part-1

June 29, 2013, by | Start Discussion

Introduction

From this article we will go through network security as whole from basic to expert level. It will help you get better idea of Network Security. It’s just the reference for people who are interested in network security but don’t know from where to start there is more to do by own.

Always remember that “Defense in Depth” is Key of NETWORK SECURITY.

Part 1-ISO/OSI Model and TCP/ IP Model

 

In this Network basics article series we will have brief overview for following topics:

  1. Basics of ISO/OSI and TCP/IP Model.
  2. Know better Information Security OSI Model.

Let’s begin with 1stpart to understand Basic of ISO/OSI and TCP/IP Model.

What are reasons for layered model?

  • Change:When changes are made to one layer, the impact on the other layers is minimized. If the model consists of a single, all-encompassing layer, any change affects the entire model.
  • Design:A layered model defines each layer separately. As long as the interconnections between layers remain constant, protocol designers can specialize in one area (layer) without worrying about how any new implementations affect other layers.
  • Learning: The layered approach reduces a very complex set of topics, activities, and actions into several smaller, interrelated groupings. This makes learning and understanding the actions of each layer and the model generally much easier.
  • Troubleshooting: The protocols, actions, and data contained in each layer of the model relate only to the purpose of that layer. This enables troubleshooting efforts to be pinpointed on the layer that carries out the suspected cause of the problem.
  • Standards: Probably the most important reason for using a layered model is that it establishes a prescribed guideline for interoperability between the various vendors developing products that perform different data communications tasks. Remember, though, that layered models, including the OSI model, provide only a guideline and framework, not a rigid standard that manufacturers can use when creating their products.

TCP/IP Network Model

Transmission Control Protocol/Internet Protocol (TCP/IP) is a suite of protocol that governs the way data travel from one device to another. Each layer performs a specific function and is transparent to the layer above it and the layer below it.

The TCP/IP network model consists of four layers:

  1. Application Layer,
  2. Transport Layer,
  3. Internet Layer,
  4. Network Access Layer
  • Application Layer: The Application Layer provides the user with the interface to communication. This could be your web browser, e-mail client (Outlook, Eudora or Thunderbird), or a file transfer client. The Application Layer is where your web browser, a telnet, ftp, e-mail or other client application runs. Basically, any application that rides on top of TCP and/or UDP that uses a pair of virtual network sockets and a pair of IP addresses. The Application Layer sends to, and receives data from, the Transport Layer.
  • Transport Layer: The Transport Layer provides the means for the transport of data segments across the Internet Layer. The Transport Layer is concerned with end-to-end (host-to-host) communication. Transmission Control Protocol provides reliable, connection-oriented transport of data between two endpoints (sockets) on two computers that use Internet Protocol to communicate. User Datagram Protocol provides unreliable, connectionless transport of data between two endpoints (sockets) on two computers that use Internet Protocol to communicate. The Transport Layer sends data to the Internet layer when transmitting and sends data to the Application Layer when receiving. Following template will be used for each parameter.

  • Internet Layer: The Internet Layer provides connection-less communication across one or more networks, a global logical addressing scheme and Packetization of data. The Internet Layer is concerned with network to network communication. (Note: Packetization is act or process of bundling data into packets according to a specific protocol)The Internet Layer is responsible for Packetization, addressing and routing of data on the network. Internet Protocol provides the Packetization, logical addressing and routing functions that forward packets from one computer to another. The Internet Layer communicates with the Transport Layer when receiving and sends data to the Network Access Layer when transmitting.
  • Network Access Layer: The Network Access Layer provides access to the physical network. This is your network interface card. Ethernet, FDDI, Token Ring, ATM, OC, HSSI, or even Wi-Fiis all examples of network interfaces. The purpose of a network interface is to allow your computer to access the wire, wireless or fiber optic network infrastructure and send data to other computers. The Network Access Layer transmits data on the physical network when sending and transmits data to the Internet Layer when receiving.

1.1 ISO/OSI Network Model
Layer 7 – Application Layer

  • The Application layer provides services to the software through which the user requests network services.
  • Your computer application software is not on the Application layer. This layer isn’t about applications and doesn’t contain any applications. In other words, programs such as Microsoft Word or Corel are not at this layer, but browsers, FTP clients, and mail clients etc.

A few of the most popular Application layer protocols are-

  • File Transfer Protocol (FTP): A protocol that enables a client to send and receive complete files from a server.
  • Hypertext Transfer Protocol (HTTP): The core protocol of the World Wide Web.
  • Telnet: The protocol that lets you connect to another computer on the Internet in a terminal emulation mode.
  • Simple Mail Transfer Protocol (SMTP):One of several key protocols that are used to provide e-mail services.
  •  Domain Name System (DNS): The protocol that allows you to refer to other host computers by using names rather than numbers.

Layer 6 – Presentation Layer

  • This layer is concerned with data representation and code formatting.
  • Masks the differences of data formats between dissimilar systems
  • Specifies architecture-independent data transfer format
  • Encodes and decodes data; Encrypts and decrypts data; Compresses and decompresses data.

Layer 5 – Session Layer

  • The Session layer establishes, maintains, and manages the communication session between computers.
  • Manages user sessions and dialogues.
  • Controls establishment and termination of logic links between users.
  • Reports upper layer errors.

 Layer 4 – Transport Layer

  • Manages end-to-end message delivery in network
  • Provides reliable and sequential packet delivery through error recovery and flow control mechanisms
  • Provides connectionless oriented packet delivery.

Two core protocols are found in this layer:

  • Transmission Control Protocol (TCP): Provides reliable connection-oriented transmission between two hosts. TCP establishes a session between hosts, and then ensures delivery of packets between the hosts.
  • User Datagram Protocol (UDP): Provides connectionless, unreliable, one-to-one or one-to-many delivery.

Layer 3 – Network Layer

  • Determines how data are transferred between network devices.
  • Routes packets according to unique network device addresses.
  • Provides flow and congestion control to prevent network resource depletion.
  • The Network layer is where data is addressed, packaged, and routed among networks.

Several important Internet protocols operate at the Network layer like:

  • Internet Protocol (IP): A routable protocol that uses IP addresses to deliver packets to network devices. IP is an intentionally unreliable protocol, so it doesn’t guarantee delivery of information.
  • Address Resolution Protocol (ARP): Resolves IP addresses to hardware MAC addresses, which uniquely identify hardware devices.
  • Internet Control Message Protocol (ICMP): Sends and receives diagnostic messages. ICMP is the basis of the ubiquitous ping command.
  • Internet Group Management Protocol (IGMP): Used to multicast messages to multiple IP addresses at once.

Layer 2 – Data Link Layer

  • As its name suggests, this layer is concerned with the linkages and mechanisms used to move data about the network, including the topology, such as Ethernet or Token Ring, and deals with the ways in which data is reliably transmitted.
  • Defines procedures for operating the communication links.
  • Frames packets.
  • Detects and corrects packets transmit errors.

Layer 1 – Physical Layer

  • The Physical layer’s name says it all. This layer defines the electrical and physical specifications for the networking media that carry the data bits across a network.
  • Interfaces between network medium and devices
  • Defines optical, electrical and mechanical characteristics.

Second Part i.e. “Know better Information Security OSI Model”we will cover in next series of Networking Basics till then Happy and Safe Hacking 

 

Anagha is an Information Security professional with experience in Vulnerability Assessment, Web Application Audit, Database Audit, Antivirus Review, and Compliance Audit. She holds a CCNA and CEH certification.

Leave a Reply