Pune: With the recent illegal breach at Cosmos Bank costing them Rs 94 crore, highlighting the exploitation of network vulnerabilities, cyber experts have pointed out the need to have security measures at micro as well as macro level.
Cyber expert Pankajj Ghode, Chairman at Ghode Global Blockchain Foundation, said that network encryption is necessary which can increase its safety. “Similarly, there is a need for more regulations and filter of IP (Internet Protocol) at the ISP (Internet Service Provider) level. The Indian government has still not been able to place a ban on various objectionable sites and so, there is a need for more regulations. Besides, there is also a need for a strong network analysis to analyse network traffic which can make a network secure. There is also a need of improvement in the usage of a good firewall which can stop illegal breaches,” added Ghode.
He pointed out that as many business houses in India hesitate to security products they end up buying a product with more vulnerabilities.
“Internet Protocol version 6 (IPv6) is a communication protocol that provides an identification and location system for computers on networks. In India at most of the place we continue to use IPv4 rather IPv6 when the latter is more secure,” added Ghode.
Another cyber expert Anil Raj of Cybervault Securities Solutions Private Limited said that communication in a network occurs through different ports in the network and so managing the ports is necessary to look for unauthorised access in a network.
“The mistake which many business houses do is that they work on default firewall policies when they should configure the firewall with the help of experts. Similarly, Intrusion Detection System (IDS) is necessary to monitor network traffic for suspicious activity and issue alerts when such activity is discovered. We have intrusion prevention system which checks the network traffic round the clock and blocks suspicious traffic thereby keeping the system safe,” added Raj who noted that there is the skills gap in the industry of network security.