Designing Network Security - Merike Kaeo

Designing Network Security

(Autor)

Buch | Hardcover
768 Seiten
2003 | 2nd edition
Cisco Press (Verlag)
978-1-58705-117-3 (ISBN)
59,95 inkl. MwSt
  • Titel ist leider vergriffen;
    keine Neuauflage
  • Artikel merken
Providing a comprehensive coverage of Frame Relay technologies and the Cisco Frame Relay solutions developed in Cisco IOS Software from release 12.0 up to 12.2, this work is for both Frame Relay beginners, who need to understand the technology, and advanced readers, who need information on the wide range of Frame Relay features Cisco offers.
A practical guide to creating a secure network infrastructure



Understand basic cryptography and security technologies
Identify the threats and common attacks to a network infrastructure
Learn how to create a security policy
Find out how to recover from a security breach
Study specific implementation scenarios for securing your network environment
Learn about advances in security technologies

Designing Network Security, Second Edition, is a practical guide designed to help you understand the fundamentals of securing your corporate network infrastructure. This book takes a comprehensive look at underlying security technologies, the process of creating a security policy, and the practical requirements necessary to implement a corporate security policy.

You will gain a thorough understanding of basic cryptography, the most widely deployed security technologies, and key emerging security technologies. You will be able to guide the architecture and implementation of a security policy for a corporate environment by knowing possible threats and vulnerabilities and understanding the steps required to perform a risk management assessment. Through the use of specific configuration examples, you will learn about the features required in network infrastructure equipment to implement the given security policy, including securing the internal corporate infrastructure, Internet access, and the remote access environment.

This new edition includes coverage of new security features including SSH on routers, switches, and the PIX(r) Firewall; enhancements to L2TP and IPSec; Cisco(r) LEAP for wireless networks; digital certificates; advanced AAA functionality; and Cisco Intrusion Detection System features and products. Additional practical examples include current security trends using VPN, wireless, and VoIP networking examples.

This book is part of the Networking Technology Series from Cisco Press(r), which offers networking professionals valuable information for constructing efficient networks, understanding new technologies, and building successful careers.

Merike Kaeo, CCIE No. 1287, is currently a consultant focusing primarily on security-related products and network design solutions. She has been in the networking industry more than 15 years, starting out at the National Institutes of Health in Bethesda, MD, from 1988 to 1993, designing and implementing the original FDDI backbone for the NIH campus using Cisco routers. From 1993 to 2000, Merike was employed by Cisco Systems, Inc., where she worked primarily on technical issues relating to router performance, network routing protocols, network design, and network security. She was a lead member of the Cisco security initiative, has acted as a technical advisor for security startup companies, and has been an instructor and speaker in a variety of security-related conferences. Merike received her BSEE from Rutgers University in 1987 and completed her MSEE degree from George Washington University in 1998.

Introduction.
I. SECURITY FUNDAMENTALS.

1. Basic Cryptography.


Cryptography. Authentication and Authorization. Namespace. Key Management. Key Escrow. Summary. Review Questions.

2. Security Technologies.


Identity Technologies. Application Layer Security Protocols. Transport Layer Security Protocols. Network Layer Security. Link-Layer Security Technologies. Public Key Infrastructure and Distribution Models. Summary. Review Questions.

3. Applying Security Technologies to Real Networks.


Virtual Private Networks (VPNs). Wireless Networks. Voice over IP (VoIP) Networks. Summary. Review Questions.

4. Routing Protocol Security.


Routing Basics. Routing Protocol Security Details. Summary. Review Questions.

II. THE CORPORATE SECURITY POLICY.

5. Threats in an Enterprise Network.


Types of Threats. Motivation of Threat. Common Protocol Vulnerabilities. Common Network Scenario Threats and Vulnerabilities. Routing Protocols. Social Engineering. Summary. Review Questions.

6. Considerations for a Site Security Policy.


Where to Begin. Risk Management. A Security Policy Framework. Summary. Review Questions.

7. Design and Implementation of the Corporate Security Policy.


Physical Security Controls. Logical Security Controls. Infrastructure and Data Integrity. Data Confidentiality. Security Policy Verification and Monitoring. Policies and Procedures for Staff. Security Awareness Training. Summary. Review Questions.

8. Incident Handling.


Building an Incident Response Team. Detecting an Incident. Handling an Incident. Incident Vulnerability Mitigation. Responding to the Incident. Recovering from an Incident. Summary. Review Questions.

III. PRACTICAL IMPLEMENTATION.

9. Securing the Corporate Network Infrastructure.


Identity - Controlling Network Device Access. Integrity. Data Confidentiality. Network Availability. Audit. Implementation Examples. Summary. Review Questions.

10. Securing Internet Access.


Internet Access Architecture. External Screening Router Architecture. Advanced Firewall Architecture. Implementation Examples. Summary. Review Questions.

11. Securing Remote Dial-In Access.


Dial-In Security Concerns. Authenticating Dial-In Users and Devices. Authorization. Accounting and Billing. Using AAA with Specific Features. Encryption for Virtual Dial-In Environments. Summary. Review Questions.

12. Securing VPN, Wireless, and VoIP Networks.


Virtual Private Networks. Wireless Networks. Voice over IP Networks. Summary. Review Questions.

IV. APPENDIXES.

Appendix A: Sources of Technical Information.
Appendix B: Reporting and Prevention Guidelines: Industrial Espionage and Network Intrusions.
Appendix C: Port Numbers.
Appendix D: Mitigating Distributed Denial-of-Service Attacks.
Appendix E: Answers to Review Questions.
Glossary.
Index.

Erscheint lt. Verlag 13.11.2003
Verlagsort Indianapolis
Sprache englisch
Maße 239 x 203 mm
Gewicht 1492 g
Themenwelt Informatik Netzwerke Sicherheit / Firewall
ISBN-10 1-58705-117-6 / 1587051176
ISBN-13 978-1-58705-117-3 / 9781587051173
Zustand Neuware
Haben Sie eine Frage zum Produkt?
Vorauflage
1999
48,60 €
Mehr entdecken
aus dem Bereich
Cyber-Sicherheit - Norbert Pohlmann
Cyber-Sicherheit
Das Lehrbuch für Konzepte, Prinzipien, Mechanismen, Architekturen und …

von Norbert Pohlmann

Buch | Softcover (2022)
Springer Vieweg (Verlag)
34,99
Praxisbuch ISO/IEC 27001 - Michael Brenner; Nils gentschen Felde; Wolfgang Hommel
Praxisbuch ISO/IEC 27001
Management der Informationssicherheit und Vorbereitung auf die …

von Michael Brenner; Nils gentschen Felde; Wolfgang Hommel

Buch (2024)
Carl Hanser (Verlag)
69,99
Hackbibel 3 - Chaos Computer Club
Hackbibel 3

von Chaos Computer Club

Buch | Softcover (2024)
KATAPULT Verlag
28,00
auf Facebook teilen
bei Twitter
Link zu dieser Seite kopieren