What Type of Hardening Is Multifactor Authentication?

MPA is a security technology that needs multiple types or methods of authentication from categories of independent to the user login identity or transactions. Multifactor authentication combined two or more two authorities that are independent such as the password the users know and the second is a security token that the user has and what the user is by utilizing biometric verification methods.

Aims of multifactor Authentication:

The main purpose of (MPA) multifactor authentication is to make a defense layer that makes it harder for an unauthorized user to attack the target. Such as computing devices, networks, databases, and physical locations. If one factor is broken the attackers still have one or more barriers to cross before getting into the target.

Importance:

The biggest drawback of the traditional user ID and password is that these can easily be compromised. Brute-force attacks are also real warnings, the attackers use password cracking tools to use various combinations of passwords or usernames to find the right sequence. After a trial of guessing the password number of times, the account is locked it also helps protect the organization but still, attackers have various methods to access the system. That is the main reason multifactor authentication helps to decrease security risk.

Multi-factor authentication methods:

For verification of identity, an authentication factor is used it is the category of credentials. Additional factors are added in MPA to increase the assurance like requesting access is who or what and what did it say. This process makes hackers’ jobs difficult. The three-authentication factor that you know is,

• Something you have is a knowledge factor
• Something you are and a possession factor
• Inherence factor

By combining two or more factors from these types is how multifactor authentication works.

knowledge factor:

This type of authentication requires the user to answer the security question which are personals like password, PINS (four-digit personal identification numbers), and OTPs (one-time password).

Possession factor:

In this authentication, users have specific in their possession to log in like a token, (SIM) phone subscriber identity module card, token, and badge.

Inherence factor:

For login, users have a biological trait-like biometric verification method.

• Fingerprint scan
• Hands geometry
• Facial recognition
• Earlobe geometry

 What Is the Windows Host File?

The window host file is an operating system that plans hostnames to IP addresses. It can cancel DNS and divert IP addresses or URLs to different locations. It is a simple text file. The manually maintained file is a HOSTS.TXT file and it is available through file-sharing by Stanford research institute for membership, comprises hostnames and addresses as involved in inclusion by member organizations. A traditional home internet user does not have a modified host file.

Due to many reasons, it is necessary to upgrade the host file in the computer to properly settle the website by its domain. After buying a new host domain name it allows people to publish or view content on the web immediately, or convert the previous domain into another internet service provider (ISP). During transfer to a new domain, there is a delay period in which the information of the domain spread on the internet and it is unavailable. If you want to update your file immediately do not wait for the spreading of domain information on the internet so by temporary work hard you can easily edit this on your computer.

window host file purpose:

The window host file is part of the operating system (IP) internet protocol application, it serves to translate the human hostname to a numeric protocol address called internet protocol addresses (IP). It helps to locate and identify a host in an internet protocol network. Host files assist network addressing nodes in a computer system. In some operating systems, the host file content is used in other name resolution methods like (DNS) domain name system, but most systems utilize service name switches for example Linux and Unix for customization. The host file is in direct control by the local computer administrator.

Applications:

The function of the host file is to solve the hostnames. It is also used to define the name of the domain or host for use in the local system.

• Redirect local domain.
• Security and privacy of software.
• Block internet resources.

What Is Redistribute Connected in BGP?

Most of the networks you experience will run only a single protocol such as OSPF or EIGRP. Maybe it is possible you can find the small old network that can still manage RIP and need to transfer to OSFP and EIGRP. In our network, there are multiple routing protocols so we need some ways or methods to exchange information between protocols this process is called redistribution. We have to experience some issues like RIP use hop count, EIGRP utilizes k-values and OSFP is expensive these are not compatible with each other. When we exchange or imports protocol information from one protocol to another protocol it may create a routing loop this is the problem in redistribution.

Redistribution is not limited to routing protocols there are multiple options like:

• Static routes are redistributed in the protocol.
• Direct connect routes in the protocol.
• Between routing protocols like (RIP, OSFP, BGP)

Broader gateway protocol:

It is an external gateway protocol it’s a device to exchange information and routing in (AS) autonomous systems on the internet. Broader gateway protocol is categorized into path-vector routing protocol decisions about routing are based on the paths, rules set by the network administrator, and policies of the network. Internal BGP (IBGP) is the routing within the (AS) autonomous system while external Broader Gateway Protocol is the protocol on the internet application.

Working:

The neighbors of the Broader Gateway Protocol are known as peers and are confirmed by manual configuration between the routers to make TCP on 179 ports. Every 30 seconds the speaker of Broader Gateway Protocol sends 19-bytes keep-alive messages for the maintenance of the connection. TCP is used by Broader Gateway Protocol (BGP) as a transport protocol.

When BGP operates on the same autonomous system is called internal BGP while if it is operated on a different autonomous system is called external Broader Gateway Protocol. Border or edge routers in which routers on one boundary of autonomous import information to another autonomous system or in general External Broader Gateway protocol are directly connected. While internal BGP is connected via intermediate routers. The major difference between these two peering external and Internal Broader Gateway Protocols is the way in which they received information from one peer.

• New routes from external BGP are conveyed to both external and internal BGP peers.
• New routes from internal BGP are conveyed to all external BGP only.

What does It mean When Your Computer Is Compromised?

Answer:

A compromised computer is defined as one in which by a suspicious source the integrity, confidentiality, and availability are affected either intentionally or unintentionally is called as the compromised computer. Compromise in computers happens by direct interaction with suspicious or untrustful sources or by automation. Gaining access to a computer by the legitimate user or by breaking the attack force constitutes a compromise. The computer is compromised when the infection is caused by viruses, worms, trojans, and by other malicious software.

Symptoms:

When the computer is compromised there are some symptoms the computer shows as follows,

• When you start your computer unknown programs startup.
• Password will change
• Without access, programs connect to the internet
• Computer performance becomes slow and frequent crashes take place
• Home page change
• Pop-up windows show often, mostly to visit unusual sites
• Download software and antivirus

If a Denial-of-service attack on your computer system has (bot) programs it can be activated by intrudes at any time. Attack programs are hidden in directories, hidden in other programs, or camouflaged by nondescript names. It will change your computer system and very difficult to remove this.

Keystroke loggers are the most common way of malware in which when you type something into your keyboard is sent to another site including passwords, numbers, accounts, messages, and websites. Other malware includes programs like remote administration tools (in which it steals files or causes an attack on your system), in file servers (share plagiarized software, music, movies from your device. In this way, you can end up as theft or be sued for copyright.

Advanced worms and viruses use multiple ways to spreads like emails, links to a website, or by file sharing and unprotected computers. Antivirus software may be able not to detect these viruses and maybe not be able to fix them.

Preventions:

Denial-of-service attacks can be prevented by taking protocols including using a strong password and preventing any email pushing attempts. The additional four ways for prevention are,

• Check online setting
• Using two-factor authentication
• Check untrusted login
• Avoid remote access.

What Are the Main Purposes of Tunnel in Networking?

Tunneling un computer network is a communication protocol it allows the transfer of data from one computer network to another network by utilizing encapsulation. In encapsulation the process in which it allows to send personal network communication to the public network (like the internet). In tunneling, the traffic can be repacked into different forms but encryption conceals the nature of traffic through a tunnel.

Working:

Tunneling in a computer network works by utilizing the data of the payload (packets) to transfer the packet it provides the service. It uses the layered protocol such as TCP/IP and OSI protocol but it breaks the layering when using the payloads to transfer services not usually provided by the network. In layered model delivery protocol works at an equal or high level than the payload (packet) protocol.

Encapsulation:

All the packets use network protocols to get to their destinations. But all networks did not support all protocols. For example, the company wants to set (WAN) wide area network connecting offices b and c. The company uses the latest version of (IP) internet protocol like IPv6 but the network between offices B and C supports IPv4. So, by encapsulating IPv6 in IPv4 the company can use IPv6 to send data between the offices. Encapsulation is very important for network connections. In encryption, the data is scrambled and it can be descrambled by the specific key this undoing process is called decryption. If the header is also encrypted then the network routers not being able to transfer the data forward because they cannot see the header and do not know the encryption key. But encapsulated in the encrypted packet is an encrypted packet it can transfer across the network.

Application:

Many protocols use a public network to transfer data by using a VPN (Virtual Private Network) to make data secure specifically using encrypted data. For specific tunneling, these protocols are designed.

• SSH (secure socket tunneling protocol)
• PPTP (point-to-point tunneling protocol)
• IPsec

These are some examples of how tunneling protocol is used:

• The foreign protocol is not supported to run, tunneling protocol run IP-v6 over IP-v4.
• When the cooperating network does not include the user’s physical address so tunneling is also used to transfer unstable network service to a distant area.
• By using an unblocked protocol such as HTTP and the ‘wrapping’ technique it allows the users to all over firewalls.