| Javascript Feeds RSS Feed Security Dashboard | SearchSecurity.com |
|
Defense in Depth
|
|
DNS
|
|
Logging
|
|
VLAN
|
|
VoIP
|
|
Securing Extranet Connections This paper will present one solution to securing a large number of extranet connections. In particular, the focus will be on the corporation who is the extranet network provider, or at the hub of a large extranet. The extranet network provider's responsibility for security is not only between it and its business partners and customers, but also making sure that partner A can't access systems at customer B (unless specifically requested).
By Jeff Pipping, 04/05/2004
|
|
Secure Access of Network Resources by Remote Clients This paper will identify the threats that remote access poses to corporate network security including those involving hackers, malicious applications and the use of weak access and physical controls. Solutions for these security problems will be proposed using three paradigms; remote-based safeguards that are client managed, remote-based safeguards that are centrally managed and network-based safeguards that are centrally managed. Both Host-based paradigms focus on protecting the remote client from security threats, which in turn, prevents the network from being compromised. The network-based paradigm does not attempt to safeguard the remote host, considering it to be unmanageable and untrustworthy.
By G. Mac Donald, 04/04/2004
|
|
Issues in Protecting Our Critical Infrastructure Critical infrastructure is composed of the basic services that we have come to depend on, and are necessary to support our society and ensure national stability. It includes transportation, communications, power distribution systems, banking and financial institutions, and basic government operations, including law enforcement, fire services and the military. Loss of, or damage to, one of these services can have significant consequences, such as an event that shuts down our communications systems. Communications is a valuable part of all infrastructure components, and loss of this one piece can hamper the operation of the rest. It can have grave consequences if emergency services cannot be reached in a life-threatening situation. In a daily-life situation, we might not be able to make a phone call to order pizza because the telephone service is out, while at the same time we're missing the latest episode of CSI because the television transmission facilities are down.
By William R. Nance, 04/03/2004
|
|
Architecting, Designing and Building a Secure Information Technology Infrastructure, a case study This case study follows the building of an Information Technology Infrastructure with an integrated Security Architecture. Describing this project as a case study indicates that this is a practical discussion not a theoretically one. This paper follows the process from concept to implementation. It shows the results of a pre-project analysis, follows the project through completion, examining the steps along the way. It concludes with a discussion of the post-project analysis and a comparison of the results from the two analyses. The paper will discuss what was done, why it was done and how it was accomplished. Conclusions are drawn on the relative success of the project. Although the project involves building an entire ITI this paper focuses on the security aspects. It will cover the high-level architecture and some of the low-level implementation details. The paper is written from the perspective of a System Administrator who has an intense interest in information security.
By John David Johnston, 03/28/2004
|
|
Is Your Storage Area Network Secure? An Overview of Storage Area Network from Security Perspective In this paper, I will discuss about Storage Area Network (SAN) architecture in general, such as topology, SAN components, and terminologies to give you an idea about SAN. Then I will go over the potential security threats and solutions available in SAN environments such as in SAN network, implementation, and management. I will also cover some of the attacks that will impact your SAN, and actions necessary for protecting it. Finally, future SAN protocols and technologies such as iSCSI, InfiniBand, FCIP and iFCP will be discussed. SAN is indeed a very exciting technology, looking forward to years to come. Read on.
By Mohammed Haron, 03/24/2004
|
|
Designing Secure Networks Based on the Software Process Model Network security engineers, following in the wake of software engineers, are scrambling to find their own silver bullet to provide solutions in the network security world. Much like software engineers of old, who mistakenly felt that reusable software and object-oriented design were universal solutions, security engineers are now using firewalls, PKI, smart cards, Kerberos, and intrusion detection tools as universal remedies. They too will learn that network security engineering ultimately requires a process to be effective and complete. Without this process, these perceived solutions are simply patches on the armor of a secure network and not a true defense.
By Paul Innella, 03/22/2004
|
|
Secure Infrastructure Design Information technology (IT) and enterprise networks have become the core of many organizations. Critical business functions often depend on a fully functioning IT infrastructure: no network means no ability to generate revenue. To this end, an organization's growth and evolution should be reflected in the growth and evolution of its network. Organizational changes can include new or expanded missions, new factors such as mobile workers, and growth or downsizing in response to purely external factors.
By Scott C. Zimmerman, 03/03/2004
|
|
Monitoring The ARP Protocol On Local Area Networks This practical assignment is a research paper on how to use the ARP
By David Fuselier, 02/21/2004
|
|
Layer 2 Attacks and their Mitigation This is a slide show that describes attacks and mitigation techniques assuming a switched ethernet network running IP.
By Louis Senecal, 02/21/2004
|
|
Attacking the DNS Protocol - Security Paper This paper whilst containing nothing new on DNS security brings together in one document many strands of DNS security which has been published and reported in many separate publications before. As such this document intends to act as a single point of reference for DNS security.
02/17/2004
|
|
Page: 12 3 |
