Learning Objectives
- Explain how anti-virus and anti-spyware help protect systems.
- Explain why automated software updates reduce security risks.
- Describe how firewalls and proxy servers help keep data and systems safe.
- Explain how SSL security protects transmitted web data.
- Combine technical controls with safe checks of messages and URLs.
Key Terms
- Anti-virus
- Anti-malware software focused on detecting and responding to viruses and related malicious code.
- Anti-spyware
- Anti-malware software focused on detecting and removing spyware.
- Automated software update
- A process that installs available fixes without relying on the user to perform every update manually.
- Firewall
- Hardware or software that monitors and controls network traffic using security rules.
- Proxy server
- A server that acts as an intermediary between a client and another server.
- SSL security protocol
- A protocol used to establish protected, encrypted communication for services such as HTTPS.
- Quarantine
- Isolating a suspected malicious file so that it cannot operate normally.
- Security patch
- An update that corrects a known software vulnerability.

Anti-Malware Protection
Anti-malware software detects, blocks, quarantines and removes malicious software. Anti-virus targets viruses and related threats, while anti-spyware focuses on software that secretly monitors or collects information.
Detection can use known threat information and suspicious behaviour. The protection must be updated because new malware appears and old detection information may not recognise it.
A scan can examine stored files, while real-time protection can check files or activity as they are opened or created. The syllabus requires the purpose of the solution; candidates do not need to explain commercial product features.
Automating Software Updates
Software can contain vulnerabilities. Developers release updates or security patches to correct known weaknesses. If an update is delayed, attackers may continue to exploit the weakness.
Automating updates reduces reliance on the user remembering to install each fix. It helps systems receive protection promptly.
Updates do not guarantee complete security, but they reduce exposure to known vulnerabilities. An examination answer should explain this cause-and-effect link.
Firewalls
A firewall monitors and controls network traffic according to security rules. It can allow expected authorised communication and block traffic that does not meet the rules.
A firewall may operate as software on one device or as a network security system protecting several devices. It helps reduce unauthorised connections and unwanted traffic.
A firewall does not remove malware already active in a file and does not replace authentication. It is one layer of protection.
Proxy Servers
A proxy server acts as an intermediary. A client sends a request to the proxy, and the proxy sends an appropriate request onward. The response returns through the proxy.
This arrangement can help protect or control access because the external destination communicates with the proxy rather than directly with the internal client. The proxy can apply rules to requests and can restrict access to selected resources.
The syllabus lists proxy servers as a security solution. Answers should explain the intermediary role and how this supports control or separation, rather than describing a proxy as merely extra storage.
SSL Security Protocol
SSL security is used to establish protected communication between a browser and web server. In syllabus answers, it is linked to HTTPS.
The security protocol supports encryption of transmitted data. This reduces the value of intercepted data because the interceptor should not be able to understand the protected content without the required key.
A protected connection also helps the browser establish the identity associated with the server credentials. Users must still check the actual domain and be cautious about deceptive sites.
Layered Security
No single control deals with every threat. Anti-malware deals with malicious software. Updates reduce exploitable weaknesses. Firewalls control network traffic. Proxy servers mediate requests. SSL protects transmitted web communication.
User checks remain part of the protection. A person should inspect the spelling and tone of communications, check the URL attached to a link, use appropriate authentication and review privacy settings. Effective protection combines these measures.
Security Solutions And Their Roles
| Solution | How It Helps | Important Limitation |
|---|---|---|
| Anti-virus and anti-spyware | Detect, block, quarantine or remove malware | Must be updated and may not recognise every new threat |
| Automated updates | Installs fixes for known vulnerabilities promptly | Does not eliminate every vulnerability |
| Firewall | Monitors and filters network traffic using rules | Does not replace authentication or remove all malware |
| Proxy server | Acts as an intermediary and can control external requests | Does not by itself prove that all content is safe |
| SSL security | Creates protected encrypted communication for HTTPS | Protects the connection, not the honesty of every website |
Worked Examples
Choosing Several Controls
Question: A school wants to reduce malware, unauthorised network traffic and interception of login data. Choose one suitable solution for each risk.
- Match malware to anti-malware.
- Match unwanted network connections to a firewall.
- Match data in transit to SSL/HTTPS encryption.
Answer: Use updated anti-virus or anti-spyware for malware, a firewall to filter network traffic, and SSL/HTTPS to encrypt login data during transmission.
Explaining Automatic Updates
Question: Why can automatic updates improve cyber security?
- Identify that software may contain known weaknesses.
- State that updates provide fixes or patches.
- Explain why automation matters.
Answer: Automatic updates install security patches promptly without relying on the user to remember, reducing the time that known vulnerabilities remain exploitable.
Examination Guidance
- Explain how each solution operates, not only its name.
- Use filter or control traffic when describing a firewall.
- Use intermediary when describing a proxy server.
- Link SSL to protected encrypted transmission and HTTPS.
- For an extended scenario, combine complementary controls rather than claiming one control solves everything.
Common Mistakes
- Saying a firewall scans every file for viruses.
- Saying a proxy server is the same as a password.
- Claiming automatic updates stop all future attacks.
- Claiming SSL prevents a user from visiting a fraudulent domain.
- Listing solutions without matching them to the stated risks.
Knowledge Check
1. What does anti-malware do?
2. Why should anti-malware be updated?
3. How does a firewall protect a network?
4. What is the role of a proxy server?
5. How does SSL security help protect data?