discussion reply
There are different types of firewalls, and each has its place in the enterprise. Packet filters are easier to deploy and less expensive, but application layer gateways provide more robust protection for critical systems. Firewalls cannot protect against application mis-configuration. One firewall is rarely sufficient protection. Firewalls should be deployed to create “zones” of authorized types of traffic, separating applications into groups of related security requirements. Firewalls may be useful for protecting internal systems, such as those in the data center, from internal misuse, in addition to their traditional role of protecting public servers from the dangers of being accessible from the Internet. While deploying multiple firewalls generally increases security levels, firewalls should not be over-deployed. As with other systems and devices, they have a point of diminishing returns where over-zealous deployments eventually fail to provide any return on investment. Firewalls should be coupled with other technologies, such as intrusion detection system (IDS) products. Security is only as good as the latest security patch, so system maintenance should be regular and timely .Firewalls should be monitored on a regular basis, but should not be treated as an IDS. When examining logs, failures are as important as successful connections, and outbound connections should be examined as well as inbound .If alerts will be sent to administrators, they should be classified to control false positives. Firewalls are not install-and-forget devices. As application requirements change, firewalls should be updated to match those changes .As with other systems, unused services should be disabled.
The biggest benefit of using a biometric device for authentication purposes is the ease of use that it offers. Fingerprint scanners are extremely affordable and are fairly easy to use. You can compare the fingerprints among millions of records that can be contained in a computer database. The results can be instantaneous depending on the amount of records that you are comparing the fingerprints to.
As such, Biometric technology makes identity fraud less likely. It’s much more difficult to fraud a biometric device than to steal an employee identification card.
Unlike passwords, biometrics such as face mapping, fingerprints and iris scans can’t be changed when a database gets popped. Worse, data sold to marketers or gobbled up into an authoritarian database isn’t reversible.
Research on biometric tech has amped up, leading to mobile apps that read various unique-to-you body parts to help verify your identity, raising all kinds of security and privacy concerns, and it’s still an open question as to how government and manufacturers are going to address it all.
