A Network Security Overview Thomas Kernes November 1, 2000
Abstract: With the advent and mass utilization of computers and networks in today's business world, network security has become a very large and important topic of discussion. Whether it is firewalls to keep people out of your network, cryptography to scramble important data or user education to minimize the risk of an accidental security breach, security takes many forms. This presentation will cover some of the important aspects of network security and highlight some of the unseen problems that affect nearly all businesses.
What is Network Security? The ‘Network’ includes hardware, the interconnections and the information. Physical security vs network security Identification of threats
So how do we protect? Security models Protection prioritization Administrative policy Education Vigilance
How do we accomplish that? Available Tools Education Awareness Salesmanship
Tools - Cryptography VPN -remote access PGP - Dedicated Circuits -‘tunnels’ -IPSec
Tools - Web Security Firewalls -denial of services vs threats Remote Access Human Element -keeping info in is harder than keeping people out
Tools - Virus Protection Intruders Human Element
So Now What? All of the tools may not be the answer
Education Only one person has to ‘talk’ Social Engineering Kevin Mitnick Microsoft
Conclusion Security is a black art
References Network Security Essentials William Stallings, Prentice Hall, 2000 US Department of Defense Jim Christy, Special Investigator, USAF Cuckoo’s Egg - Clifford Stoll