- 1、本文档共32页,可阅读全部内容。
- 2、原创力文档(book118)网站文档一经付费(服务费),不意味着购买了该文档的版权,仅供个人/单位学习、研究之用,不得用于商业用途,未经授权,严禁复制、发行、汇编、翻译或者网络传播等,侵权必究。
- 3、本站所有内容均由合作方或网友上传,本站不对文档的完整性、权威性及其观点立场正确性做任何保证或承诺!文档内容仅供研究参考,付费前请自行鉴别。如您付费,意味着您自己接受本站规则且自行承担风险,本站不退款、不进行额外附加服务;查看《如何避免下载的几个坑》。如果您已付费下载过本站文档,您可以点击 这里二次下载。
- 4、如文档侵犯商业秘密、侵犯著作权、侵犯人身权等,请点击“版权申诉”(推荐),也可以打举报电话:400-050-0827(电话支持时间:9:00-18:30)。
查看更多
Top-Down Network Design [教程]
Chapter 1: Analyzing Business Goals and Constraints Copyright 2004 Cisco Press Top-Down Network DesignChapter EightDeveloping Network Security Strategies Network Security DesignThe 12 Step Program Identify network assets Analyze security risks Analyze security requirements and tradeoffs Develop a security plan Define a security policy Develop procedures for applying security policies The 12 Step Program (continued) Develop a technical implementation strategy Achieve buy-in from users, managers, and technical staff Train users, managers, and technical staff Implement the technical strategy and security procedures Test the security and update it if any problems are found Maintain security Network Assets Hardware Software Applications Data Intellectual property Trade secrets Company’s reputation Security Risks Hacked network devices Data can be intercepted, analyzed, altered, or deleted User passwords can be compromised Device configurations can be changed Reconnaissance attacks Denial-of-service attacks Security Tradeoffs Tradeoffs must be made between security goals and other goals: Affordability Usability Performance Availability Manageability A Security Plan High-level document that proposes what an organization is going to do to meet security requirements Specifies time, people, and other resources that will be required to develop a security policy and achieve implementation of the policy A Security Policy Per RFC 2196, “The Site Security Handbook,” a security policy is a “Formal statement of the rules by which people who are given access to an organization’s technology and information assets must abide.” The policy should address Access, accountability, authentication, privacy, and computer technology purchasing guidelines Security Mechanisms Physical security Authentication Authorization Accounting (Auditing) Data encryption Packet filters Firewalls Intrusion Detection Systems (IDSs) Modularizing Security Design Security defense in depth Network security s
您可能关注的文档
最近下载
- 冀教版六年级上册英语Lesson 10《How Many Are There》教学课件.pptx
- 雷军英文简历.ppt
- 钢管落地式卸料平台施工方案.doc VIP
- 纳布啡:术后镇痛泵中的高效药物.docx
- 电动垂直起降航空器(eVTOL)起降场 技术要求.docx VIP
- 2023-中国农业大学介绍(完整版).pptx
- 小学残疾儿童送教上门教案(40篇).pdf
- 2024新外研版英语三年级上册 Unit 1 Let's be friends! 自测题(含答案).docx
- 2024年河北省继续医学教育公共必修课参考答案.pdf VIP
- GB/T 10781.8-2021白酒质量要求 第8部分:浓酱兼香型白酒.pdf
文档评论(0)