apa yang termasuk dalam perlindungan jaringan untuk mencegah phishing
Answer (3)
The Mandate of Heaven (or rule book the dynasty ruler had to follow) required the Son of Heaven - or the ruler - to be a good king because the "gods" had placed him in that leadership position. If he did poorly as a ruler and abused his power, normally an outside dynasty would rise up and take over the power. They justified the downfall of the previous king not by saying "Oh, the other family was stronger." but rather through saying "He was a bad ruler the gods didn't bless anymore.". This idea strengthened the power the dynasty had over the land and cause the people to have respect for him. This entire system influenced the family system in China also. The stereotypical patriarchal family had a lot of distant family members living together. The head of the household, a man, was to be obeyed by his wife. The eldest son obeyed by the eldest daughter and the younger sons by the younger daughters. This may seem strict, but the actual Chinese family was close knit. There are works that state how a man is blessed when a laughing child is in his lap, so obviously it wasn't a dictatorial rule. But that was a tangent...
Early Chinese rulers used the Mandate of Heaven to justify their authority based on the belief that a virtuous ruler would receive approval from the heavens. This ideology not only legitimized their rule but also connected moral behavior to social stability. It continued to shape Chinese governance for centuries, influencing many dynasties and their approach to leadership.
;
Jawaban dan Penjelasan:A. Secure Email Gateway (SEG)1. Memindai dan memfilter email masuk berdasarkan reputasi pengirim, konten, lampiran, dan link.2. Mendeteksi pola phishing seperti spoofed sender, domain mirip, atau link redirect berbahaya.B. DNS Filtering dan Sinkholing1. Memblokir akses ke domain atau subdomain yang terindikasi phishing pada level DNS resolver.2. Jika pengguna mencoba mengunjungi domain berbahaya, permintaan DNS diarahkan (“sinkholed”) ke server aman untuk mencegah koneksi.C. URL / Web Filtering1. Menggunakan daftar blokir (blacklist) dan pemindaian reputasi untuk memblokir URL phishing di firewall atau web proxy.2. Melakukan inspeksi HTTPS (SSL/TLS interception) untuk memeriksa konten terenkripsi sebelum sampai ke pengguna.D. Intrusion Detection & Prevention System (IDS/IPS)1. Memonitor lalu lintas jaringan untuk signature atau anomali yang mengindikasikan upaya phishing (misalnya, email berbasis HTTP yang tidak biasa).2. Secara otomatis memblokir atau memberi peringatan saat pola terdeteksi.E. Sandboxing Lampiran & Link1. Mengarahkan file lampiran dan link ke lingkungan virtual (sandbox) untuk dieksekusi/diakses secara terisolasi.2. Mendeteksi apakah lampiran melakukan aksi berbahaya (malware drop, script berbahaya) sebelum dikirim ke pengguna.F. Threat Intelligence Feeds1. Mengintegrasikan data reputasi domain, IP, dan URL terbaru dari sumber threat intelligence (commercial maupun open-source).2. Update otomatis pada firewall, proxy, dan SEG untuk memblokir sumber-sumber baru yang terindikasi phishing.G. DMARC, SPF, DKIM (Email Authentication)1. Mencegah spoofing dengan memverifikasi bahwa email benar-benar dikirim oleh domain yang berwenang.2, Jika pemeriksaan gagal, email dapat ditandai atau langsung dibuang.H. Network Segmentation & Zero Trust1, Memisah subnet untuk membatasi lateral movement jika ada perangkat terinfeksi.2. Mengharuskan otentikasi dan otorisasi pada tiap request, sehingga walau phishing berhasil masuk, dampaknya dapat diminimalisir.I. TLS/SSL Inspection1. Firewall atau proxy yang mampu mendekripsi sementara trafik HTTPS untuk inspeksi konten phishing tersembunyi.2. Memastikan certificate pinning dan validitas sertifikat untuk memblokir man-in-the-middle phishing.J. Integrasi dengan SIEM / SOAR1. Mengumpulkan log dan alert dari berbagai perangkat keamanan secara terpusat.2. Otomasi respons (misalnya, memutus sesi, memblokir IP) bila serangan phishing terdeteksi.
