Presentation is loading. Please wait.

Presentation is loading. Please wait.

Overview of Network Security. Network Security2 New Challenges 1.Security does not focus on a “product” only; it is a process and focuses on the whole.

Published byLucas Paul Modified over 8 years ago

Similar presentations

Presentation on theme: "Overview of Network Security. Network Security2 New Challenges 1.Security does not focus on a “product” only; it is a process and focuses on the whole."— Presentation transcript:

1 Overview of Network Security

2 Network Security2 New Challenges 1.Security does not focus on a “product” only; it is a process and focuses on the whole “information system”. 2.Scalability demands are increasing. –Any one of the hosts may be compromised … 3.Providing legacy endpoint security becomes expensive. 4.Day zero attacks T. A. Yang

3 Network Security3 Principles of Security The CIA Model (aka. CIA triad) –Confidentiality prevents unauthorized disclosure of sensitive information. –Integrity prevents unauthorized modification of data. –Availability is the prevention of loss of access to resources and information to ensure that information is available for use when it is needed. T. A. Yang

4 Network Security4 Security Model A security model is a multilayered framework made of many integrated entities and logical and physical protection mechanisms, all working together to provide a secure system that complies with industry best practices and regulations. Strategic (what) level: –A security policy is a set of rules, practices, and procedures dictating how sensitive information is managed, protected, and distributed. –Standards are industry-recognized best practices, frameworks, and agreed principles of concepts and designs, designed to implement, achieve, and maintain the required levels of processes and procedures. Tactic (how) level: –Procedures are low-level documents providing systematic instructions on how the security policy and the standards are to be implemented. –A baseline is the minimum level of security requirement in a system. –Guidelines are recommended actions and operational guides for users. T. A. Yang

5 Network Security5 Perimeter Security? Its meaning has become increasing uncertain. –Geographic boundaries? –Inside vs outside? Wireless connections, VPN connections –Remote access? –Single point of entrance vs multi-entry open environments  multi-perimeter, multi-layered networks T. A. Yang

6 Network Security6 Multilayer Perimeter Solution The principle of defense in depth Security is applied across all layers of the system. Firewalls are not only between the public and the private network, but also between different zones of the private network. Intrusion monitoring/prevention is applied to both the inside and the outside boundaries of the private network. T. A. Yang

7 Network Security7 The Domino Effect The layered approach in the OSI reference model was developed to accommodate changes in the evolving technology. Information flows up and down to the next subsequent layer as data is processed. Implication: If one layer is hacked, communications are compromised without the other layers being aware of the problem. “A chain is as strong as the weakest link.” T. A. Yang

8 Network Security8 The Security Wheel An ongoing process to ensure system security: Develop a security polity  Make the network secure  Monitor and respond  Test  Manage and improve  … T. A. Yang

Download ppt "Overview of Network Security. Network Security2 New Challenges 1.Security does not focus on a “product” only; it is a process and focuses on the whole."

Similar presentations

CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.

CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.
Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
SAFE Blueprint and the Security Ecosystem. 2 Chapter Topics  SAFE Blueprint Overview  Achieving the Balance  Defining Customer Expectations  Design.

SAFE Blueprint and the Security Ecosystem. 2 Chapter Topics  SAFE Blueprint Overview  Achieving the Balance  Defining Customer Expectations  Design.
1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.

1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.

Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.
Security Controls – What Works

Security Controls – What Works
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
SECURITY What does this word mean to you? The sum of all measures taken to prevent loss of any kind.

SECURITY What does this word mean to you? The sum of all measures taken to prevent loss of any kind.
© 2008 Prentice Hall Business Publishing Accounting Information Systems, 11/e Romney/Steinbart1 of 222 C HAPTER 7 Information Systems Controls for Systems.

© 2008 Prentice Hall Business Publishing Accounting Information Systems, 11/e Romney/Steinbart1 of 222 C HAPTER 7 Information Systems Controls for Systems.
Access Controls Supervised by: Dr.Lo’ai Tawalbeh Prepared by: Abeer Saif.

Access Controls Supervised by: Dr.Lo’ai Tawalbeh Prepared by: Abeer Saif.
Applied Cryptography for Network Security

Applied Cryptography for Network Security
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.

Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.
.NET Mobile Application Development Introduction to Mobile and Distributed Applications.

.NET Mobile Application Development Introduction to Mobile and Distributed Applications.
Stephen S. Yau CSE 465-591, Fall 2006 1 Security Strategies.

Stephen S. Yau CSE , Fall Security Strategies.
Accessibility, Integrity, & Confidentiality: Security Challenges for E-Business Rodney J. Petersen University of Maryland & Educause/Internet2 Security.

Accessibility, Integrity, & Confidentiality: Security Challenges for E-Business Rodney J. Petersen University of Maryland & Educause/Internet2 Security.
CISCO CONFIDENTIAL – DO NOT DUPLICATE OR COPY Protecting the Business Network and Resources with CiscoWorks VMS Security Management Software Girish Patel,

CISCO CONFIDENTIAL – DO NOT DUPLICATE OR COPY Protecting the Business Network and Resources with CiscoWorks VMS Security Management Software Girish Patel,
Introduction to Network Defense

Introduction to Network Defense
Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec

Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec

Similar presentations

Ads by Google