Knowledge Organiser: Network Security Prevention Methods
Part of Prevention Methods · GCSE GCSE Computer Science revision
This topic summary covers Knowledge Organiser: Network Security Prevention Methods within Prevention Methods for GCSE Computer Science. Revise Prevention Methods in Network Security for GCSE Computer Science with 15 exam-style questions and 18 flashcards. This topic appears less often, but it can still be a useful differentiator on mixed-topic papers. It is section 11 of 11 in this topic. Use this topic summary to connect the idea to the wider topic before moving on to questions and flashcards.
Topic position
Section 11 of 11
Practice
15 questions
Recall
18 flashcards
Knowledge Organiser: Network Security Prevention Methods
Key Terms
- Firewall: Hardware or software that filters network traffic based on security rules
- Encryption: Converting data into an unreadable format that requires a key to decode
- Symmetric encryption: Same key used to encrypt and decrypt data
- Asymmetric encryption: Public key encrypts; private key decrypts
- Multi-factor authentication (MFA): Requires two or more verification methods to log in
- Penetration testing: Authorised simulated attack to find security vulnerabilities
- Defence in depth: Using multiple overlapping layers of security
Must-Know Facts
- Firewall filters traffic using rules (source/destination address, port number)
- Encrypted data is useless to attackers without the decryption key
- MFA three factors: something you KNOW, HAVE, and ARE
- Authentication = verifying WHO you are; authorisation = what you are ALLOWED to do
- Principle of least privilege: users only get access they need for their role
- Penetration testing uses ethical hackers with explicit permission
- HTTPS uses encryption to protect web traffic (padlock icon)
Key Concepts
- No single security measure is perfect — use multiple layers (defence in depth)
- Symmetric encryption: fast but key must be shared securely
- Asymmetric encryption: public key shared openly; private key kept secret
- MFA: even if password stolen, attacker still needs second factor
- Pen testing types: black box (no knowledge), white box (full knowledge), grey box (partial)
Common Mistakes
- Confusing authentication with authorisation: Authentication verifies WHO you are; authorisation determines WHAT you can access
- Describing a firewall as "blocking all traffic": Firewalls filter traffic using rules — some traffic is allowed through
- Confusing symmetric and asymmetric encryption: Symmetric uses one shared key; asymmetric uses a public key to encrypt and a private key to decrypt
- Thinking encryption prevents attacks: Encryption protects data in transit — it does not prevent attacks happening; it makes stolen data unreadable
- Forgetting MFA needs two DIFFERENT factor types: Two passwords is not MFA — you need two different categories (something you know, have, or are)
Revise this topic interactively on PrepWise — self-test mode, tap-to-reveal definitions, and Common Mistakes from examiners.
Try the interactive Knowledge Organiser — free →Keep building this topic
Read this section alongside the surrounding pages in Prevention Methods. That gives you the full topic sequence instead of a single isolated revision point.
Practice Questions for Prevention Methods
What is the primary purpose of a firewall?
Explain how penetration testing can improve the security of a network.
Quick Recall Flashcards
15 questions on Prevention Methods — practise free
Instant marking, adaptive difficulty, and 18 spaced repetition flashcards. Free until your GCSEs.
Try PrepWise Free