BSI Standard 200-1, along with Standards 200-2 and 200-3, is an elementary component of the BSI’s IT-Grundschutz methodology. It defines the general requirements for information security management systems (ISMS – information security management systems) and is compatible with ISO standard 27001. The aim of the BSI standard is to make the business processes of companies … Read more
Stateful Packet Inspection is a dynamic packet filtering technique for firewalls that, in contrast to static filtering techniques, includes the state of a data connection in the inspection of packets. It detects active TCP sessions and can allow or block data packets based on the session state. SPI provides higher security for firewall inspection and … Read more
A wireless intrusion prevention system can detect and defend against attacks and unauthorized access to a WLAN. It provides additional protection for the wireless network environment. The WIPS consists of several components and uses sensors to monitor the wireless network. What is WIPS (Wireless Intrusion Prevention System)? The acronym WIPS stands for Wireless Intrusion Prevention … Read more
Endpoint Security protects the various endpoints in a network from various threats. Technical and organizational measures prevent unauthorized access to devices or the execution of malicious software. Endpoint protection ensures that the end devices achieve the desired level of security. Endpoint security refers to the measures and practices implemented to secure the various endpoints in … Read more
Secure Access Service Edge (SASE) is an architectural concept that provides WAN services and security functions as a combined cloud-based solution. The security functions operate at the network edge. They replace centralized security concepts, for example, via virtual private networks. Identity- and context-based access mechanisms are in place for users, applications, and devices. What is … Read more
Transport Layer Security (TLS) is a layer 5 protocol of the ISO/OSI layer model that ensures encrypted transmission of data on the Internet. TLS is the successor to SSL and is used, for example, by browsers for secure HTTPS connections. TLS (Transport Layer Security) is a cryptographic protocol designed to secure communication over the internet. … Read more
Security Information and Event Management (SIEM) provides a holistic view of IT security by collecting and evaluating messages and log files from various systems. Suspicious events or dangerous trends can be detected in real-time. Organizations face increasing threats to their information systems and data security in today’s interconnected digital landscape. As cyberattacks become more sophisticated, … Read more
With Windows Server Update Services (WSUS), Windows updates can be provided and distributed locally via your own network and your own Windows servers. The updates are decoupled from regular Windows updates. This offers extensive management and control options for various clients. Keeping computer systems up-to-date with the latest software patches and security updates is crucial … Read more
A CA (Certificate Authority or Certification Authority) is a trusted entity, a certification authority that issues digital certificates. Certificates are used to certify the electronic identity of communication partners. CAs form the core of the public key infrastructure and assume the role of trust centers. In the world of cybersecurity, certificate authorities (CAs) play a … Read more
A DDoS attack attempts to cause the unavailability of Internet service through a deliberately induced overload. Usually, botnets consisting of a multitude of individual systems are used for the attack. The target of the attack can be servers or other network components. DDoS attacks have become increasingly common in today’s digital landscape, posing significant threats … Read more
In a penetration test, IT systems or networks are subjected to a comprehensive examination designed to determine their susceptibility to attack. A pentest uses methods and techniques that real attackers or hackers use. In today’s digital landscape, where cyber threats are on the rise, organizations need to be proactive in identifying vulnerabilities in their systems … Read more
The abbreviation WEP means Wired Equivalent Privacy and stands for the oldest standard for encryption and authentication in a WLAN according to IEEE 802.11. It dates back to 1999 and is now considered technically outdated and insecure. What is WEP? Wired Equivalent Privacy, or WEP for short, is a protocol for WLAN encryption that offers … Read more
An exploit reveals security vulnerabilities in software and enables their exploitation. Exploits provide a tool for hackers to penetrate and manipulate computer systems. They can also be used to eliminate vulnerabilities. In the realm of cybersecurity, understanding the concept of an exploit is paramount. Exploits play a significant role in both offensive and defensive strategies, … Read more
To detect and defend against cyberattacks earlier, you need to understand the attackers’ objectives and approach and build defenses accordingly. The Lockheed Martin Cyber Kill Chain is a multi-step model for analyzing attacks and building defenses along with the attack steps. Cyber attacks have become increasingly sophisticated and prevalent. Understanding the methods employed by attackers … Read more
Air Gap is a security concept that meets the highest security requirements. It describes the complete physical and logical isolation of computers from each other and from networks. Information exchange between systems is possible, for example, via transportable storage media. Methods such as side-channel attacks exist to overcome an air gap. What is Air Gap? … Read more
Endpoint Detection and Response is a technology concept and solution to protect and defend against cyber threats from endpoints such as PCs, laptops, tablets, and smartphones or servers. EDR records the behavior of endpoints and analyzes this data. When suspicious behavior is detected, Endpoint Detection and Response provides automated responses to defend against it, such … Read more
Simultaneous Authentication of Equals (SAE) is based on the Dragonfly handshake protocol and enables the secure exchange of keys of password-based authentication methods. In WPA3, SAE replaces the previous methods of negotiating session keys using pre-shared keys and is also used in WLAN mesh implementations. Welcome to the world of Wi-Fi, where we connect to … Read more
A pre-shared key is a key that is used for symmetric encryption methods. In order to encrypt and decrypt data, the pre-shared keys must first be exchanged between the participants involved. Whoever is in possession of the pre-shared key can use the same key to encrypt and decrypt data. Are you tired of your neighbors … Read more
The Point-to-Point Tunneling Protocol (PPTP) can be used to implement virtual private networks over IP-based networks such as the Internet. It is an extension of the Point-to-Point Protocol and is implemented in many operating systems. Due to known vulnerabilities, PPTP is no longer considered secure today. Secure communication plays a vital role in safeguarding our … Read more
Security by Design is a design concept applied in hardware and software development. The security of hardware or software is already considered in the development process and integrated into the complete life cycle of a product. Design criteria include, for example, minimizing the attack surface, using encryption and authentication, and isolating security-relevant areas. Security is … Read more