Why are TCP/IP networks considered unsecured?

Learn why TCP/IP networks are considered unsecured from our networking security expert, Michael Gregg.

Michael Gregg, Superior Solutions, Inc.

Why are TCP/IP networks not considered secure?

It's not as if designers work to build insecurities into protocols or operating systems. It is really more an issue of priorities. TCP/IP was designed with usability in mind.

In example, consider ARP; it is a two-step process that consists of a request and a response. Little thought was given at the time of the development of ARP that someone may actually send unsolicited ARP responses for the purpose of ARP poisoning. Other protocols and applications of TCP/IP also have security issues, such as ICMP, RIP, FTP, SNMP and Telnet.

Protocols like IPSec were not originally envisioned, and it is actually an add-on to IPv4.

For more information, view this tutorial on understanding TCP/IP from FreeSkills.com.

This was last published in February 2009

Dig Deeper on Network Security Best Practices and Products

OSI model (Open Systems Interconnection) OSI (Open Systems Interconnection) is a reference model for how applications communicate over a network.

TCP/IP (Transmission Control Protocol/Internet Protocol) TCP/IP, or the Transmission Control Protocol/Internet Protocol, is a suite of communication protocols used to interconnect network devices on the internet. TCP/IP can also be used as a communications protocol in a private network (an intranet or an extranet).

Address Resolution Protocol (ARP) Address Resolution Protocol (ARP) is a procedure for mapping a dynamic Internet Protocol address (IP address) to a permanent physical machine address in a local area network (LAN).

Internet Protocol suite (IP suite) Internet Protocol suite (IP suite) is the standard network model and communication protocol stack used on the Internet and on most other computer networks. While other networking models exist, the IP suite is overwhelmingly the global standard for computer-to-computer communication.

Nmap tutorial: Nmap scan examples for vulnerability discovery Learn how to use Nmap, the free network scanner tool, to identify various network devices and interpret network data to uncover possible vulnerabilities.

CISSP Essentials training: Domain 5, Telecommunications and network security OLD Prepare for Domain 5 of the CISSP exam by learning about telecommunications and networking.

Related Q&A from Michael Gregg

Expert tips to solve port 3389 issues when end users gets blocked

Enterprise security expert, Michael Gregg answers a question regarding port 3389 issues when a user tries to open port 3389 RDP on their router to ... Continue Reading

Disadvantages to a layered approach

Security expert Michael Gregg discusses the disadvantages to a layered approach to enterprise security. Continue Reading

Network security with foreign network cards

Security expert Michael Gregg fields a question about unknown network cards gaining access to a user's network. Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Networking experts

View all Networking questions and answers

SearchUnifiedCommunications

Zoom Chat update takes vendor further beyond video

The latest enhancements to Zoom Chat come as the video conferencing vendor pushes more aggressively into the cloud calling market.

Enhancing communications with a UC-contact center integration

The divide between contact centers and the rest of the business is shrinking. The demand for UC and contact center integrations ...

Cisco cries foul over security flaw in Zoom Connector

A flaw in Zoom's gateway for managing third-party video devices left customers vulnerable to snooping. Cisco criticized the ...

SearchMobileComputing

Compare Intune alternatives to Intune for mobility management

Intune stands out in the EMM market in part due to its incumbency as a PC management platform. IT must evaluate Intune compared ...

Deploy kiosk devices with the Managed Home Screen Android app

The Managed Home Screen app allows Microsoft Intune admins to deploy multi-app kiosk devices. IT should learn the two best ...

New Outlook features appeal to users on the go

At Ignite, Microsoft announced some improvements to its Office app and Outlook for iOS and Android. Learn about how it benefits ...

SearchDataCenter

Top 4 open source automation tools for admins

Open source offerings are an easy way to bring automation into your organization. When selecting software, evaluate the user ...

U.S. facility may have best data center PUE

The data center energy efficiency metric, power usage effectiveness, or PUE, is not improving. But one supercomputer data center ...

Increase efficiency with data center temperature monitoring

Data centers must track multiple temperature components. Organizations can use ASHRAE standards and on-premises hardware for ...

SearchITChannel

4 SD-WAN vendors integrate with AWS Transit Gateway

Aruba, Cisco, Citrix and Silver Peak are among the first SD-WAN vendors to integrate their products with the AWS Transit Gateway.

Intel partner marketplace to drive ecosystem collaboration

Intel aims to make partner-to-partner collaboration easier with the launch of its Solutions Marketplace; other IT channel news ...

Desktop-as-a-service combo targets channel via Ingram Micro

Citrix, IGEL and Ingram Micro are collaborating on a desktop-as-a-service offering, which could provide channel partners with a ...

Why are TCP/IP networks considered unsecured?

Learn why TCP/IP networks are considered unsecured from our networking security expert, Michael Gregg.

Dig Deeper on Network Security Best Practices and Products

Related Q&A from Michael Gregg

Expert tips to solve port 3389 issues when end users gets blocked

Disadvantages to a layered approach

Network security with foreign network cards

Have a question for an expert?

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchUnifiedCommunications

Zoom Chat update takes vendor further beyond video

Enhancing communications with a UC-contact center integration

Cisco cries foul over security flaw in Zoom Connector

SearchMobileComputing

Compare Intune alternatives to Intune for mobility management

Deploy kiosk devices with the Managed Home Screen Android app

New Outlook features appeal to users on the go

SearchDataCenter

Top 4 open source automation tools for admins

U.S. facility may have best data center PUE

Increase efficiency with data center temperature monitoring

SearchITChannel

4 SD-WAN vendors integrate with AWS Transit Gateway

Intel partner marketplace to drive ecosystem collaboration

Desktop-as-a-service combo targets channel via Ingram Micro

Dig Deeper on Network Security Best Practices and Products

Related Q&A from Michael Gregg

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.