Network Layers and Security Principles

Flashcards covering key concepts related to network layers, security principles, and access control mechanisms.

Physical Layer

Handles the transmission of raw binary data over physical mediums like cables or wireless signals.

Data Link Layer

Responsible for node-to-node data transfer and error detection, packaging raw bits into frames.

Network Layer

Manages packet routing by finding the best physical path for data to reach its destination.

Transport Layer

Ensures data transfer is reliable and error-free between host systems.

Session Layer

Manages sessions or connections between applications on different devices.

Presentation Layer

Translates data between the application layer and the network, managing data encoding, encryption, and compression.

Application Layer

Where user interaction occurs, providing network services to applications.

Firewall

A network security device designed to monitor, filter, and control incoming and outgoing network traffic based on predetermined security rules.

Packet Filtering Firewall

The most basic type of firewall that allows or blocks packets based on pre-defined rules.

Stateful Inspection Firewall

Tracks the state of network connections and allows or blocks traffic based on established sessions.

Proxy Firewall

Acts as an intermediary between users and a web server, handling requests on behalf of clients.

Next-Generation Firewall (NGFW)

Combines traditional firewall features with advanced security functions like deep packet inspection.

Discretionary Access Control (DAC)

Allows resource owners to set policies defining who can access their resources.

Mandatory Access Control (MAC)

Access policies are defined by a central authority, not by the resource owners.

Role-Based Access Control (RBAC)

Restricts access based on a user’s role within an organization.

Attribute-Based Access Control (ABAC)

Considers multiple attributes to determine access rights according to defined rules.

Rule-Based Access Control

Applies specific rules to allow or deny access based on organizational conditions.

Principle of Least Privilege

Restricts access rights for users or systems to only what is necessary to perform their tasks.

Separation of Duties

Divides tasks and permissions among multiple individuals to prevent fraud, errors, or abuse.

Economy of Mechanism

Security mechanisms should be as simple as possible to reduce potential vulnerabilities.

Psychological Acceptability

Security measures should not make resources harder to access; they should be user-friendly.