1.4 Network Security

1 mark each to max 2 e.g. • Data cannot be understood if intercepted // The data will be meaningless • So that only authorised users can access the confidential material // protect confidential/personal/user/library data • To follow legislation/DPA

1 mark each to max 2 e.g. • Locks • Keycard entry • Biometric entry to room • Passcode entry to room • Alarms • Security guards/team • CCTV

1 mark for each name, 1 per bullet for matching to description to max 2 each. e.g. • Anti-malware o Scans for / identifies virus/spyware/malware o Compares data to a database of malware o Alerts user and requests action such as .. o Quarantines/deletes virus/spyware/malware o Stops the download of virus/spyware/malware • Firewall o Scans incoming and outgoing traffic o Compares traffic to a criteria o Blocks traffic that is unauthorised o Blocks incoming/outgoing traffic • Encryption o Scrambles data o …using an algorithm o So if intercepted it cannot be understood o Key needed to decrypt • User access levels o Data can be read/write/ read-write // by example o Prevents accidental changes o Limits data users can access • Anti-virus 6 Mark method first. If method is wrong, do not read on. If method is unclear, or part of a description of a method, read full answer. If second method is a repeat of the first (for example password and then locking out) mark whole answer for max 3. J277/01 Mark Scheme June 2022 o Scans for / identifies virus/malware o Compares data to a database of viruses/malware o Alerts user and requests action such as .. o Quarantines/deletes virus/spyware o Stops the download of virus/malware • Anti-spyware o Scans for / identifies spyware / keylogger o Compares data to a database of spyware o Alerts user and requests action such as .. o Quarantines/deletes spyware o Stops the download of spyware/malware • Passwords/biometrics/authentication o code/fingerprint etc. has to be correctly entered to gain access o strong password // letters, numbers, symbols // fingerprint is unique to individual … o harder/impossible for a brute-force attack to succeed o lock after set number of failed attempts • Two-step authentication o a code is sent to user's separate device o unauthorised person will need access to this device as well

1 mark for threat 1 mark each to max 2 for description e.g. • Threat: Social engineering • Using deception to manipulate users • …to gain personal data • Threat: Shoulder surfing (threat or expansion) • Watching a person entering a password • …and using it to access an account • Threat: Phishing • Fake emails sent to person // click on link from fake email • Person sends personal data // gives away personal data • Threat: Pharming • Software that redirects user to fake website // use of a fake website • Person enters personal data // gives away personal data • Threat: Denial of service // DOS // DDOS • Multiple requests sent to a server (simultaneously) // server is flooded with requests • More requests than the server can process // uses all of the bandwidth available • Server cannot respond // server crashes/denies access // stops access to a network // slows access to a network • Threat: Hacker • Person gaining unauthorised access to a system/account To delete/damage/access data • Threat: Virus/malware • Software that replicates/spreads • Fills disk space • Deletes/corrupts data // allows unauthorised access • Threat: Trojan • Malware disguised as legitimate software • Once installed acts as a virus // by example of action e.g. deleting files / allows unauthorised access • Threat: Worm • Software that replicates across a network • Uses up all the bandwidth • Threat: Ransomware • Encrypts/corrupts/locks access to data • Cannot access data without paying a fee/money // pay fee/money to get them back/decrypted // Cannot access data without meeting demands • Threat: Physical threat // by example • Damage to hardware • Deletes/corrupts data