internet security 网络安全论文.doc

Internet SecurityInternet security is a kind of computer security specifically related to the Internet, often involving browser security but also network security on a more general level as it applies to other applications or operating systems on a whole. Its objective is to establish rules and measures to use against attacks over the Internet. The Internet represents an insecure channel for exchanging information leading to a high risk of intrusion or fraud, such as phishing. Different methods have been used to protect the transfer of data, including encryption and from-the-ground-up engineering.When computer users face with the problem of Internet Security, a computer user can be tricked or forced into downloading software onto a computer that is of malicious intent. Such software comes in many forms, such as viruses, Trojan horses, spyware, and worms.However, people have realized the network security crisis, Some online sites offer customers the ability to use a six-digit code which randomly changes every 3060 seconds on a security token. The keys on the security token have built in mathematical computations and manipulate numbers based on the current time built into the device. This means that every thirty seconds there is only a certain array of numbers possible which would be correct to validate access to the online account. The website that the user is logging into would be made aware of that devices serial number and would know the computation and correct time built into the device to verify that the number given is indeed one of the handful of six-digit numbers that works in that given 30-60 second cycle. After 3060 seconds the device will present a new random six-digit number which can log into the website, and there are too many firewalls such as Packet filter Stateful packet inspection Application-level gateway Why now the hackers are also overbearing? From my perspective, it is due to the current legal loopholes and the lack of Internet users safety consciousness.I think that the current laws of network security are not strong enough, in my opinion, a network security law, is a generic document that outlines rules for computer network access, determines how policies are enforced and lays out some of the basic architecture of the company security/ network security environment. The document itself is usually several pages long and written by a committee. A security policy goes far beyond the simple idea of keep the bad guys out. Its a very complex document, meant to govern data access, web-browsing habits, use of passwords and encryption, email attachments and more. It specifies these rules for individuals or groups of individuals throughout the company.Security law should keep the malicious users out and also exert control over potential risky users within your organization. The first step in creating a policy is to understand what information and services are available (and to which users), what the potential is for damage and whether any protection is already in place to prevent misuse.In addition, the security law should dictate a hierarchy of access permissions; that is, grant users access only to what is necessary for the completion of their work.While writing the security document can be a major undertaking, a good start can be achieved by using a template. National Institute for Standards and Technology provides a security-policy guideline.The laws could be expressed as a set of instructions that could be understood by special purpose network hardware dedicated for securing the network.The report shows that only 18.36% of respondents, Change the password on a regular basis and the people who when they have a problem they change the password are 64.59% of respondents, 17.05% of respondents never change the password.In teenage days, the junior high school student, James, through self-study hackers technology batching other customers bank cards information and password by means of network attack, he use the loophole of payment to steal others information and make exorbitant profits.In conclusion, it is .high time that we did something to keep information secure. Personally, laws and regulation must be established. Besides to improve technology is anther solution. Meanwhile, we are supposed to rouse the awareness of self-protection. Only in this way can we ensure our rights and interest.ReferencesGralla, Preston (2007). How the Internet Works. Indianapolis: Que Pub. ISBN0-7897-2132-5.Rhee, M. Y. (20