WEBVTT 00:00:00.830 --> 00:00:03.640 Let's continue with looking at network security for the 00:00:03.640 --> 00:00:06.530 Certified in Cybersecurity certification. 00:00:06.850 --> 00:00:10.020 We'll take a look here at network infrastructure. 00:00:11.110 --> 00:00:13.560 Infrastructure includes things like power. 00:00:13.570 --> 00:00:17.480 Obviously, our networks require power to run, as well as 00:00:17.480 --> 00:00:20.320 physical security for those networks as well. 00:00:21.020 --> 00:00:22.380 When we look at power, 00:00:22.380 --> 00:00:25.770 the goal, of course, is that the network equipment will have 00:00:25.770 --> 00:00:30.030 clean and reliable power so it can continue to operate and 00:00:30.030 --> 00:00:32.189 provide high levels of availability. 00:00:32.759 --> 00:00:37.600 We always want to watch out for single points of failure. For example, 00:00:37.620 --> 00:00:39.730 I could have redundant routers, 00:00:39.730 --> 00:00:42.520 I could have redundant equipment, but if they're on the 00:00:42.520 --> 00:00:46.190 same power supply then that becomes a single point of 00:00:46.190 --> 00:00:48.330 failure for both of them anyway. 00:00:49.430 --> 00:00:52.680 Very often, in order to keep our equipment running and 00:00:52.680 --> 00:00:56.690 prepare for something like a commercial power failure, we'll 00:00:56.690 --> 00:00:59.060 have an Uninterruptible Power Supply. 00:00:59.610 --> 00:01:05.760 A UPS, or Uninterruptible Power Supply, provides power so even 00:01:05.760 --> 00:01:08.570 if there is just the slightest variation, 00:01:08.580 --> 00:01:11.700 hopefully it can keep the power levels steady. 00:01:12.310 --> 00:01:15.850 But we want to make sure the UPS has enough capacity to 00:01:15.850 --> 00:01:17.720 run all of the equipment that's on it. 00:01:18.540 --> 00:01:21.580 We should test the UPS on occasion to make sure it's 00:01:21.590 --> 00:01:24.890 functioning properly and watch out for when it's getting a 00:01:24.890 --> 00:01:28.100 little bit long in the tooth or old. 00:01:28.640 --> 00:01:32.140 We'll often back up the UPS using a generator, 00:01:32.320 --> 00:01:36.010 maybe a diesel generator, for example, that can provide 00:01:36.010 --> 00:01:38.960 power in case of a long‑term outage. 00:01:40.260 --> 00:01:42.900 When we look at physical network security, 00:01:43.070 --> 00:01:47.700 we often put cabling into conduit. This means the cabling is 00:01:47.700 --> 00:01:53.200 protected from just an easy break or some type of problem by 00:01:53.200 --> 00:01:56.090 putting it into a plastic or a metal sheath. 00:01:56.930 --> 00:01:59.670 We also want to make sure we have redundancy. 00:01:59.870 --> 00:02:05.620 Maybe we have two network entrances into the building so that 00:02:05.620 --> 00:02:08.020 if someone was doing some work outside, 00:02:08.020 --> 00:02:12.410 they cut the cable, there is still an alternate cable path that comes in. 00:02:13.080 --> 00:02:16.400 It is important that our wiring closets, 00:02:16.400 --> 00:02:21.140 the risers where all of our wires go, is also protected and locked. 00:02:21.230 --> 00:02:25.660 We don't want someone getting in there and being able to damage our network 00:02:25.660 --> 00:02:31.330 distribution or get access and be able to tap into our lines either. This is 00:02:31.330 --> 00:02:35.790 especially important in a multi‑tenant building where we have more than one 00:02:35.790 --> 00:02:38.520 person who could be using that same wiring closet. 00:02:39.860 --> 00:02:41.960 We need to be protected from fire. 00:02:42.330 --> 00:02:45.620 Now, we often say there's three parts to fire. 00:02:45.620 --> 00:02:46.210 First of all, 00:02:46.210 --> 00:02:51.290 let's not have one. Can we prevent it? But it is really 00:02:51.290 --> 00:02:56.680 important that if there is a fire, we're able to detect it as soon as possible. 00:02:57.300 --> 00:03:00.030 If I can detect a fire very quickly, 00:03:00.090 --> 00:03:04.930 I can very often contain it and then suppress that fire or put that fire out. 00:03:05.380 --> 00:03:09.630 If the fire gets too established, then it may be impossible to do so. 00:03:11.290 --> 00:03:15.920 In the case of fire, we often see that we'll use things like fire 00:03:15.920 --> 00:03:20.860 extinguishers, we will use either handheld or maybe some type of a flooding 00:03:20.860 --> 00:03:27.520 system that may spray some type of a fire suppressant such as argon, in the 00:03:27.520 --> 00:03:32.530 old days you used halon, carbon dioxide, and we have to look at what would 00:03:32.530 --> 00:03:34.900 be suitable in our environment. 00:03:36.750 --> 00:03:39.100 When we look at secure wireless, 00:03:39.560 --> 00:03:43.710 we know that wireless is one of the most common ways we do communicate today. 00:03:43.820 --> 00:03:47.930 It's flexible and really supports a very mobile and 00:03:47.930 --> 00:03:50.300 flexible business type of requirement. 00:03:51.910 --> 00:03:56.090 We then use wireless local area networks, and these, quite often 00:03:56.090 --> 00:03:59.250 are protected using some type of encryption. 00:03:59.600 --> 00:04:03.010 Now in the old days, we used Wired Equivalent Privacy, 00:04:03.010 --> 00:04:06.350 which, of course, is nowhere near secure enough. 00:04:06.810 --> 00:04:11.120 Then we saw the development of Wi‑Fi Protected Access, WPA. 00:04:11.750 --> 00:04:16.600 That still was better, but not as good as moving to WPA2 00:04:16.600 --> 00:04:21.589 and WPA3. When we deal with optical, 00:04:21.920 --> 00:04:24.910 we can use, in this case, we're not talking about fiber, 00:04:24.910 --> 00:04:30.210 but we're talking about something using either infrared or some type of a laser 00:04:30.210 --> 00:04:35.120 between buildings so we have a transceiver on two buildings that can actually 00:04:35.120 --> 00:04:39.390 broadcast data to one another over a light stream. 00:04:41.020 --> 00:04:42.120 This works well, 00:04:42.120 --> 00:04:46.160 especially when it saves me from having to dig up an old street or 00:04:46.160 --> 00:04:50.970 someone to put cable across, but it can be affected by things like 00:04:50.970 --> 00:04:56.490 fog, for example. We also have wireless communications using things 00:04:56.490 --> 00:04:58.500 like microwave and satellite. 00:04:59.180 --> 00:05:02.710 These are line of sight, and so I have to be able to either see the 00:05:02.720 --> 00:05:07.430 other microwave dish or I actually have to be able to see the 00:05:07.430 --> 00:05:11.680 satellite, and that can be a problem if I'm in an area with a lot of 00:05:11.680 --> 00:05:14.360 trees or other buildings or obstructions.