ENSURING INFORMATION SECURITY IN LOCAL NETWORKS USING TRAFFIC CONTROL

Abstract

The basics of traffic control and the possibility of increasing the power of network monitoring are considered. Methods of causing damage to the network and creating security incidents are analyzed. The main security aspects that should be included in network monitoring are defined. Defined how traffic control works without additional monitoring forces and basic capabilities with new technologies. An analysis of the core network using traffic control was performed and enhanced with additional tools, which contributed to increased network monitoring capabilities and improved traffic control. The main additional measures regarding the use of administrative and technical aspects that can be used in the network for security were considered. The main principles of traffic control through Network Traffic Analysis and Network Behavior Analysis are considered, thanks to which the possibility of detecting malicious software and anomalies in the network appears. The method of network monitoring using Data Leak Prevention is analyzed and the main advantages and disadvantages of its use are given. SIEM and IDS log monitoring systems were also analyzed, thanks to which it is possible to analyze applications and the network perimeter to detect threats.