Presentation is loading. Please wait.

Presentation is loading. Please wait.

Physical and Network Topology Security

Published byDarrell Booker Modified over 9 years ago

Similar presentations

Presentation on theme: "Physical and Network Topology Security"— Presentation transcript:

1 Physical and Network Topology Security
Chapter 7 Physical and Network Topology Security

2 Objectives Explain physical security methods for workstations, servers, and network devices Implement a network topology for security Explain network communications media in relation to security Use structured network design for security Guide to Operating System Security

3 Physical Security Limiting physical access Location of equipment
Construction quality Devices to protect Workstations Servers Network devices and communications media Guide to Operating System Security

4 Workstation Security Password protect user accounts
Configure screen saver with a password Log off or turn off computers when not in use Lock office doors Keep ventilation holes unobstructed Keep liquids away from computer Guide to Operating System Security

5 Workstation Security Guide to Operating System Security

6 Server Security (Continued)
Centralized versus decentralized considerations Environmentally controlled computer room Strong access controls Cipher locks on locked doors Power regulation devices Guide to Operating System Security

7 Server Security (Continued)
Motion sensors Camera-monitored entrances and equipment Fire detection and suppression equipment Screen savers for servers Guide to Operating System Security

8 Configuring Screen Savers
Windows Server Use screen saver options with passwords for servers Red Hat Linux 9.x Lock a screen using screen saver NetWare SCRSAVER command at the console SECURE CONSOLE command Guide to Operating System Security

9 Configuring a NetWare Screen Saver (Continued)
Guide to Operating System Security

10 Configuring a NetWare Screen Saver
Guide to Operating System Security

11 Network Devices Access servers Bridges Chassis hubs Firewalls Hubs
Multiplexers Repeaters Routers Switches Transceivers UPS Guide to Operating System Security

12 Securing Network Devices
Place central wiring and network devices in wiring closets that follow EIA/TIA-569 standards Telecommunications room Main cross-connect Intermediate cross-connect Locate wiring closets away from sources of EMI and RFI Guide to Operating System Security

13 Designing a Network Topology for Security
Main network topologies Bus Ring Star Bus-star Guide to Operating System Security

14 Bus Topology Cable runs from one computer to the next, like a chain
Terminators connect to each bus cable segment Disadvantages Easily compromised by removing a terminator Easy for unauthorized person to tap into cable segment Guide to Operating System Security

15 Bus Topology Guide to Operating System Security

16 Ring Topology Continuous path for data; no logical beginning or ending point; no terminators Easier to manage, more reliable, and more secure than the bus More expensive than the bus Guide to Operating System Security

17 Ring Topology Guide to Operating System Security

18 Star Topology Multiple stations attached to central hub or switch
Allows you to emphasize security, efficiency, and reliability Guide to Operating System Security

19 Star Topology Guide to Operating System Security

20 Star Topology Advantages Disadvantages
Wide variety of equipment available Unauthorized taps are difficult Easier to manage than the bus Expansion options Disadvantages Hub or switch is single point of failure Requires more cable than bus Guide to Operating System Security

21 Logical Bus Networks in a Physical Star Layout
Most common topology Advantages No exposed terminators to pose security risk Expansion capabilities Guide to Operating System Security

22 Communications Media and Network Security
Coaxial cable Twisted-pair cable Fiber-optic cable Wireless technologies Guide to Operating System Security

23 Coaxial Cable Copper wire construction Thick and thin varieties
Suitability Older LANs LANs with strong sources of signal interference Guide to Operating System Security

24 Thick Coaxial Cable Guide to Operating System Security

25 Thin Coaxial Cable (Thinnet)
Guide to Operating System Security

26 Twisted-Pair Cable Copper wire construction
Shielded twisted-pair (STP) and unshielded twisted-pair (UTP) Most commonly used cabling Guide to Operating System Security

27 Twisted-Pair Cable Guide to Operating System Security

28 Fiber-Optic Cable Glass (usually) or plastic cable
Single mode and multimode Suitability High-speed LAN and WAN access To connect networks between different locations In situations with significant electrical interference Where security is a concern Guide to Operating System Security

29 Fiber-Optic Cable Guide to Operating System Security

30 Wireless Technologies
Radio, infrared, or microwave Suitability Difficult or too expensive to use cable When flexibility to move network hosts and devices is required Guide to Operating System Security

31 Comparing Cable Types Guide to Operating System Security

32 Using Structured Design
Follow accepted guidelines for cable installation Deploy structured wiring design Implement structured network design Guide to Operating System Security

33 Guidelines for Cable Installation (Continued)
Meet or exceed maximum bandwidth requirements Category 5 or better UTP cable Multimode fiber-optic riser cable between floors IEEE specifications Single-mode fiber-optic cable for long runs Guide to Operating System Security

34 Guidelines for Cable Installation (Continued)
Wireless options where needed Star-based cable plants High-quality cable Building codes (eg, plenum cable) Do not exceed tension limits of twisted-pair cable Guide to Operating System Security

35 Guidelines for Cable Installation (Continued)
Follow rules for cable bend radius Extra cable at endpoints Qualified contractor Label all cable Ground cable plants (EIA/TIA-607 standard) Guide to Operating System Security

36 Structured Wiring Requirements
Flexible cabling Wiring stations into a physical star Adherence to EIA/TIA-568-A/EIA-TIA-568-B standards for horizontal wiring Centralizing cable plant in chassis hubs or switches Guide to Operating System Security continued…

37 Structured Wiring Requirements
Intelligence built into chassis hubs and switches to detect problems at stations Ability to isolate hosts and servers on their own cable segments Ability to provide high-speed links to hosts and servers and other network devices Guide to Operating System Security

38 Structured Wiring Design
Guide to Operating System Security

39 Structured Network Design
Solid horizontal and vertical wiring design enables: Centralizing a network at strategic points Customization for security and efficiency Linking together by a fast backbone Guide to Operating System Security

40 Structured Network for Centralized Management
Figure Structured network for centralized management Guide to Operating System Security

41 Vertical Wiring Principles
Extended star topology between devices High-speed cable to reduce congestion not susceptible to EMI and RFI EIA/TIA-568-A/EIA-TIA-568-B standards for vertical or backbone cabling Riser-rated cable for cable runs through cable ports or vertical shafts Fire-stop material to cover cable between floors Guide to Operating System Security

42 Centralized Management
Central points are established for critical network functions Simple Network Management Protocol (SNMP) Community name Network management station (NMS) Network agents Guide to Operating System Security

43 Using Virtual LANs Can be used as a central management tool
Potential problems Improper configuration exposes network to security risks Trunks are vulnerable to attacks Guide to Operating System Security

44 Using Network Redundancy for Security
Vital network areas remain running even if equipment fails or an attack occurs Guide to Operating System Security

45 Designing for Redundancy
Figure Designing for redundancy Guide to Operating System Security

46 Building Multiple Redundant Pathways
Figure Building multiple redundant pathways Guide to Operating System Security

47 Summary How to physically secure workstations and servers
How network topologies can be used to enhance security Which network media offer the best security How to combine network topology and media in a structured wiring and networking design for efficiency and security Guide to Operating System Security

Download ppt "Physical and Network Topology Security"

Similar presentations

Network Hardware and Physical Media

Network Hardware and Physical Media
Chapter 4 Computer Networks

Chapter 4 Computer Networks
Introduction to Network

Introduction to Network
Chapter 3: Planning a Network Upgrade

Chapter 3: Planning a Network Upgrade
Top-Down Network Design Chapter Ten Selecting Technologies and Devices for Campus Networks Oppenheimer.

Top-Down Network Design Chapter Ten Selecting Technologies and Devices for Campus Networks Oppenheimer.
Top-Down Network Design Chapter Ten Selecting Technologies and Devices for Campus Networks Oppenheimer.

Top-Down Network Design Chapter Ten Selecting Technologies and Devices for Campus Networks Oppenheimer.
Network Topologies.

Network Topologies.
Network Topologies CS 1202.

Network Topologies CS 1202.
Network Topologies CSC1202-2013 (c) Nouf AlJaffan.

Network Topologies CSC (c) Nouf AlJaffan.
1 LANs are Subnet Standards Only Physical and Data Link Layer standards Implemented by the NICs:NICs Application Transport Internet LAN Subnet (NIC) Application.

1 LANs are Subnet Standards Only Physical and Data Link Layer standards Implemented by the NICs:NICs Application Transport Internet LAN Subnet (NIC) Application.
NETWORK DESIGN Customer requirements Network topologies Cable choice Hardware TSB 75 TSB72.

NETWORK DESIGN Customer requirements Network topologies Cable choice Hardware TSB 75 TSB72.
Computer Networks & Security

Computer Networks & Security
Designing and Implementing Cabling Infrastructure Dr. Saif al Zahir King Fahd University of Petroleum & Minerals Computer Engineering Department Dr. Saif.

Designing and Implementing Cabling Infrastructure Dr. Saif al Zahir King Fahd University of Petroleum & Minerals Computer Engineering Department Dr. Saif.
Lesson 4 – UNDERSTANDING NETWORK CABLING. Network topologies Network cabling Installing and maintaining Network cabling Selecting and installing a SOHO.

Lesson 4 – UNDERSTANDING NETWORK CABLING. Network topologies Network cabling Installing and maintaining Network cabling Selecting and installing a SOHO.
1 LAN Topologies, Access methods (Week 1, Wednesday 1/10/2007) © Abdou Illia, Spring 2007.

1 LAN Topologies, Access methods (Week 1, Wednesday 1/10/2007) © Abdou Illia, Spring 2007.
Technology in Action Chapter 12 Behind the Scenes: Networking and Security in the Business World This chapter takes you behind the scenes of networking.

Technology in Action Chapter 12 Behind the Scenes: Networking and Security in the Business World This chapter takes you behind the scenes of networking.
TYPES OF NETWORKS NETWORK CONFIGURATIONS /TOPOLOGIES TRANSMISSION MEDIA By B. Vialva.

TYPES OF NETWORKS NETWORK CONFIGURATIONS /TOPOLOGIES TRANSMISSION MEDIA By B. Vialva.
Many Roads To Home. LAN Roads UTP STP Coaxial Fiber Optics.

Many Roads To Home. LAN Roads UTP STP Coaxial Fiber Optics.
Network Cabling and Wireless Network

Network Cabling and Wireless Network
DATA COMMUNICATION (ELA…) NETWORK TOPOLOGIES 1. O BJECTIVES Describe the basic and hybrid LAN physical topologies, and their uses, advantages and disadvantages.

DATA COMMUNICATION (ELA…) NETWORK TOPOLOGIES 1. O BJECTIVES Describe the basic and hybrid LAN physical topologies, and their uses, advantages and disadvantages.

Similar presentations

Ads by Google