Presentation is loading. Please wait.

Presentation is loading. Please wait.

Working at a Small-to-Medium Business or ISP – Chapter 8

Published byGwendoline Hood Modified over 6 years ago

Similar presentations

Presentation on theme: "Working at a Small-to-Medium Business or ISP – Chapter 8"— Presentation transcript:

1 Working at a Small-to-Medium Business or ISP – Chapter 8
ISP Responsibility Working at a Small-to-Medium Business or ISP – Chapter 8

2 Objectives Describe ISP security policies and procedures.
Describe the tools used in implementing security at the ISP. Describe the monitoring and managing of the ISP. Describe the responsibilities of the ISP with regard to maintenance and recovery.

3 ISP Security Considerations
Helping clients to create secure passwords Securing applications Removing vulnerabilities Configuring firewalls Performing security scans

4 ISP Security Considerations
Common security practices: Encrypting data stored on servers Using permissions to secure access Implement user accounts Assign levels of access

5 ISP Security Considerations
Three steps used to reduce network vulnerability: Authentication Authorization Accounting

6 ISP Security Considerations
Encryption: use the secure version of a protocol whenever confidential data is being exchanged

7 Security Tools Access control lists and port filtering protect against DoS and DDoS attacks

8 Security Tools Firewalls use ACLs to control which traffic is passed or blocked

9 Security Tools Intrusion Detection System (IDS)
Intrusion Prevention System (IPS)

10 Security Tools Wireless security: Changing default settings
Enabling authentication MAC filtering Encryption

11 Security Tools Host-based firewalls control inbound and outbound network traffic

12 Security Tools Targets of host security: Known attacks
Exploitable services Worms and viruses Back doors and Trojans

13 Monitoring and Managing the ISP
Typical features of a Service Level Agreement (SLA):

14 Monitoring and Managing the ISP
Monitoring network link performance

15 Monitoring and Managing the ISP
In-band management: Telnet Virtual Terminal (VTY) session Secure Shell (SSH): preferred for security

16 Monitoring and Managing the ISP
SNMP enables administrators to gather data about the network Syslog uses syslog clients to generate and forward log messages to syslog servers

17 Backups and Disaster Recovery
Factors in choosing backup media: Amount of data Cost of media Performance Reliability Ease of offsite storage

18 Backups and Disaster Recovery
Methods of file backup: Normal Differential Incremental

19 Backups and Disaster Recovery
How to ensure successful backups: Swap media Review backup logs Trial restores Drive maintenance

20 Backups and Disaster Recovery
Use TFTP to protect configurations and Cisco IOS software Restore a Cisco IOS image using TFTP in ROMmon mode

21 Backups and Disaster Recovery
Steps to designing an effective recovery plan:

22 Backups and Disaster Recovery
Phases to creating and implementing a disaster recovery plan:

23 Summary ISPs provide desktop security services for customers, such as creating passwords, implementing patches and updates, and assigning permissions. Many protocols offer secure versions utilizing digital encryption, which should be used when the data being exchanged is confidential. Port filtering and Access Lists use TCP and UDP port features to permit or deny traffic. Firewalls can utilize hardware or software to define what traffic can come into or go out of parts of a network. ISPs are responsible for providing efficient and effective backup and disaster recovery methods for their customers.

24

Download ppt "Working at a Small-to-Medium Business or ISP – Chapter 8"

Similar presentations

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.
1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
System Security Scanning and Discovery Chapter 14.

System Security Scanning and Discovery Chapter 14.
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
Chapter 7 HARDENING SERVERS.

Chapter 7 HARDENING SERVERS.
Network Security Testing Techniques Presented By:- Sachin Vador.

Network Security Testing Techniques Presented By:- Sachin Vador.
ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.

ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.
Chp. 8: ISP Responsibility

Chp. 8: ISP Responsibility
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.
Factors to be taken into account when designing ICT Security Policies

Factors to be taken into account when designing ICT Security Policies
COEN 252: Computer Forensics Router Investigation.

COEN 252: Computer Forensics Router Investigation.
Network Security1 – Chapter 3 – Device Security (B) Security of major devices: How to protect the device against attacks aimed at compromising the device.

Network Security1 – Chapter 3 – Device Security (B) Security of major devices: How to protect the device against attacks aimed at compromising the device.
University of Missouri System 1 Security – Defending your Customers from Themselves StateNets Annual Meeting February, 2004.

University of Missouri System 1 Security – Defending your Customers from Themselves StateNets Annual Meeting February, 2004.
1 Chapter 6 Network Security Threats. 2 Objectives In this chapter, you will: Learn how to defend against packet sniffers Understand the TCP, UDP, and.

1 Chapter 6 Network Security Threats. 2 Objectives In this chapter, you will: Learn how to defend against packet sniffers Understand the TCP, UDP, and.
Directory and File Transfer Services Chapter 7. Learning Objectives Explain benefits offered by centralized enterprise directory services such as LDAP.

Directory and File Transfer Services Chapter 7. Learning Objectives Explain benefits offered by centralized enterprise directory services such as LDAP.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 IT Essentials PC Hardware and Software 4.1 Instructional Resource Chapter.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 IT Essentials PC Hardware and Software 4.1 Instructional Resource Chapter.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 ISP Responsibility Working at a Small-to-Medium Business or ISP – Chapter 8.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 ISP Responsibility Working at a Small-to-Medium Business or ISP – Chapter 8.
Chapter 2 Information Security Overview The Executive Guide to Information Security manual.

Chapter 2 Information Security Overview The Executive Guide to Information Security manual.
Securing Windows 7 Lesson 10. Objectives Understand authentication and authorization Configure password policies Secure Windows 7 using the Action Center.

Securing Windows 7 Lesson 10. Objectives Understand authentication and authorization Configure password policies Secure Windows 7 using the Action Center.

Similar presentations

Ads by Google