原创力文档- 1、原创力文档(book118)网站文档一经付费(服务费),不意味着购买了该文档的版权,仅供个人/单位学习、研究之用,不得用于商业用途,未经授权,严禁复制、发行、汇编、翻译或者网络传播等,侵权必究。。
- 2、本站所有内容均由合作方或网友上传,本站不对文档的完整性、权威性及其观点立场正确性做任何保证或承诺!文档内容仅供研究参考,付费前请自行鉴别。如您付费,意味着您自己接受本站规则且自行承担风险,本站不退款、不进行额外附加服务;查看《如何避免下载的几个坑》。如果您已付费下载过本站文档,您可以点击 这里二次下载。
- 3、如文档侵犯商业秘密、侵犯著作权、侵犯人身权等,请点击“版权申诉”(推荐),也可以打举报电话:400-050-0827(电话支持时间:9:00-18:30)。
- 4、该文档为VIP文档,如果想要下载,成为VIP会员后,下载免费。
- 5、成为VIP后,下载本文档将扣除1次下载权益。下载后,不支持退款、换文档。如有疑问请联系我们。
- 6、成为VIP后,您将拥有八大权益,权益包括:VIP文档下载权益、阅读免打扰、文档格式转换、高级专利检索、专属身份标志、高级客服、多端互通、版权登记。
- 7、VIP文档为合作方或网友上传,每下载1次, 网站将根据用户上传文档的质量评分、类型等,对文档贡献者给予高额补贴、流量扶持。如果你也想贡献VIP文档。上传文档
查看更多
Server and domain isolation using IPsec and group Policy服务器和域隔离使用IPSec和组策略
Server and domain isolation using IPsec and group Policy -By Rashmi S. Thakur CS772 Introduction Early days , companies had to work with mainframes --- network access security was not much an issue since the only way to access the network was to enter a large, data center and sit down in front of a terminal to do anything. Not more prone to attacks and untrusted access….. Present Scenario… No more mainframes. Anyone can access the network from anywhere Large organizations needed security to protect their internal network from external attacks and access They also needed segments of internal networks i.e restricted access from one part of the network to the other... Solution! Use of firewalls! Firewalls could protect internal networks from outside attacks. They could also be used to separate segments of internal networks by setting rules for the firewall. Then why study server and domain isolation? It has been found out that using firewalls for internal network segmentation doesnt always work smoothly. Also internal attacks i.e attacks might come from malicious employees who can can subvert other protective measures--including firewalls--to get to the center of the network. compromised PCs might have spyware or malware. Goal of Logical Isolation The goal of logical isolation is to allow the internal network to be segmented and isolated to support a higher level of security without requiring hard physical boundaries Should not be too tight such that it is hard to do even daily business tasks. Should be manageable and scalable. Server and Domain Isolation Components
Trusted Hosts – The hosts with minimum security requirements. running a secure and managed operating system, antivirus software current application and operating system updates Host Authentication IPsec The 802.1X Protocol Host Authorization – Using Group policies to allow/deny access to servers. Steps in detail STEP 1: User logins to a client on the internal network( which is within the logica
您可能关注的文档
- Key Gender Issues - Tanzania Development Gateway关键的性别问题-坦桑尼亚发展网关.ppt
- Key Issues - A world top 100 University - Durham University关键问题-世界100强大学-杜伦大学.ppt
- j医学心理学 绪论.ppt
- Juliet(罗密欧与朱丽叶).ppt
- Judicial Interpretation’s司法解释的.ppt
- Kwanzaa课文理解.ppt
- k中文系文学欣赏与创作课题组.ppt
- Labour Disputes in Social Economy Organizations A First Look在社会经济组织一看劳资纠纷.ppt
- LABOUR LAW REVIEW劳动法律评论.ppt
- Labour and Tax Legislation劳动力和税收立法.ppt
- Service Mobility - field is being used for creating static contents 服务流动场被用于创建静态的内容.ppt
- Set representations of abstract lattices组抽象格表示.ppt
- Session 4 - Course 23 - Incentive Contracts会话4课程23 -激励合同.ppt
- SETTING MINIMUM CAPITALFOR INTERNATIONALLY …设置最小capitalfor国际….ppt
- Service Learning Project Visual Display Requirements服务学习项目的视觉显示要求.ppt
- Sex and Gender - Prior Lake-Savage Area Schools性别前野人湖地区的学校.ppt
- Sex & Gender性与性别.ppt
- SEX, GENDER and CULTURE - Home - Florida International 性,性别和文化-家居-佛罗里达国际.ppt
- SEX AND GENDER - IT Division - Website Hosting - Personal 性别-分-网站-个人.ppt
- Sex Discrimination at Work在工作中的性别歧视.ppt
文档评论(0)