Learning Objectives
  • Explain how anti-virus and anti-spyware help protect systems.
  • Explain why automated software updates reduce security risks.
  • Describe how firewalls and proxy servers help keep data and systems safe.
  • Explain how SSL security protects transmitted web data.
  • Combine technical controls with safe checks of messages and URLs.
Key Terms
Anti-virus
Anti-malware software focused on detecting and responding to viruses and related malicious code.
Anti-spyware
Anti-malware software focused on detecting and removing spyware.
Automated software update
A process that installs available fixes without relying on the user to perform every update manually.
Firewall
Hardware or software that monitors and controls network traffic using security rules.
Proxy server
A server that acts as an intermediary between a client and another server.
SSL security protocol
A protocol used to establish protected, encrypted communication for services such as HTTPS.
Quarantine
Isolating a suspected malicious file so that it cannot operate normally.
Security patch
An update that corrects a known software vulnerability.
Summary diagram
Summary Of The Main Ideas In This Lesson
Anti-Malware Protection

Anti-malware software detects, blocks, quarantines and removes malicious software. Anti-virus targets viruses and related threats, while anti-spyware focuses on software that secretly monitors or collects information.

Detection can use known threat information and suspicious behaviour. The protection must be updated because new malware appears and old detection information may not recognise it.

A scan can examine stored files, while real-time protection can check files or activity as they are opened or created. The syllabus requires the purpose of the solution; candidates do not need to explain commercial product features.

Automating Software Updates

Software can contain vulnerabilities. Developers release updates or security patches to correct known weaknesses. If an update is delayed, attackers may continue to exploit the weakness.

Automating updates reduces reliance on the user remembering to install each fix. It helps systems receive protection promptly.

Updates do not guarantee complete security, but they reduce exposure to known vulnerabilities. An examination answer should explain this cause-and-effect link.

Firewalls

A firewall monitors and controls network traffic according to security rules. It can allow expected authorised communication and block traffic that does not meet the rules.

A firewall may operate as software on one device or as a network security system protecting several devices. It helps reduce unauthorised connections and unwanted traffic.

A firewall does not remove malware already active in a file and does not replace authentication. It is one layer of protection.

Proxy Servers

A proxy server acts as an intermediary. A client sends a request to the proxy, and the proxy sends an appropriate request onward. The response returns through the proxy.

This arrangement can help protect or control access because the external destination communicates with the proxy rather than directly with the internal client. The proxy can apply rules to requests and can restrict access to selected resources.

The syllabus lists proxy servers as a security solution. Answers should explain the intermediary role and how this supports control or separation, rather than describing a proxy as merely extra storage.

SSL Security Protocol

SSL security is used to establish protected communication between a browser and web server. In syllabus answers, it is linked to HTTPS.

The security protocol supports encryption of transmitted data. This reduces the value of intercepted data because the interceptor should not be able to understand the protected content without the required key.

A protected connection also helps the browser establish the identity associated with the server credentials. Users must still check the actual domain and be cautious about deceptive sites.

Layered Security

No single control deals with every threat. Anti-malware deals with malicious software. Updates reduce exploitable weaknesses. Firewalls control network traffic. Proxy servers mediate requests. SSL protects transmitted web communication.

User checks remain part of the protection. A person should inspect the spelling and tone of communications, check the URL attached to a link, use appropriate authentication and review privacy settings. Effective protection combines these measures.

Security Solutions And Their Roles
Solution How It Helps Important Limitation
Anti-virus and anti-spyware Detect, block, quarantine or remove malware Must be updated and may not recognise every new threat
Automated updates Installs fixes for known vulnerabilities promptly Does not eliminate every vulnerability
Firewall Monitors and filters network traffic using rules Does not replace authentication or remove all malware
Proxy server Acts as an intermediary and can control external requests Does not by itself prove that all content is safe
SSL security Creates protected encrypted communication for HTTPS Protects the connection, not the honesty of every website
Worked Examples
Choosing Several Controls

Question: A school wants to reduce malware, unauthorised network traffic and interception of login data. Choose one suitable solution for each risk.

  1. Match malware to anti-malware.
  2. Match unwanted network connections to a firewall.
  3. Match data in transit to SSL/HTTPS encryption.

Answer: Use updated anti-virus or anti-spyware for malware, a firewall to filter network traffic, and SSL/HTTPS to encrypt login data during transmission.

Explaining Automatic Updates

Question: Why can automatic updates improve cyber security?

  1. Identify that software may contain known weaknesses.
  2. State that updates provide fixes or patches.
  3. Explain why automation matters.

Answer: Automatic updates install security patches promptly without relying on the user to remember, reducing the time that known vulnerabilities remain exploitable.

Examination Guidance
  • Explain how each solution operates, not only its name.
  • Use filter or control traffic when describing a firewall.
  • Use intermediary when describing a proxy server.
  • Link SSL to protected encrypted transmission and HTTPS.
  • For an extended scenario, combine complementary controls rather than claiming one control solves everything.
Common Mistakes
  • Saying a firewall scans every file for viruses.
  • Saying a proxy server is the same as a password.
  • Claiming automatic updates stop all future attacks.
  • Claiming SSL prevents a user from visiting a fraudulent domain.
  • Listing solutions without matching them to the stated risks.
Knowledge Check

1. What does anti-malware do?

Answer: It detects, blocks, quarantines or removes malicious software.

2. Why should anti-malware be updated?

Answer: Updated information helps it recognise current threats.

3. How does a firewall protect a network?

Answer: It monitors and controls network traffic according to security rules.

4. What is the role of a proxy server?

Answer: It acts as an intermediary between a client and another server and can control requests.

5. How does SSL security help protect data?

Answer: It establishes protected encrypted communication, such as for HTTPS, so intercepted data is not easily understood.