Free Delivery Over $100
|
|
|||
|
||||
OverviewNetwork Security Architectures offers a comprehensive how-to guide to understanding and implementing the Cisco security blueprint. Written by the two authors of the Cisco Systems SAFE blueprint, it taps into the design strategies of the experts from Cisco. The book begins by discussing the whys and hows of security, identifying relevant lifecycle models and showing the history behind current architectures. Part II provides a broad overview of all of the important security considerations and moving parts to implementing a security plan, itemizing security threats, and listing the elements of security in a network systems. One chapter is dedicated to the concept of device hardening--an essential, element-specific guide to defending pieces of the network. Solutions are the focus of Part III, addressing the technology decisions that confront a security design engineer, including IPSec VPN, ICMP, NAT, and DHCP. This section also delves into identity issues and options and gives specific information on the security design process. In Part IV, the vulnerable edge and the threats that surround it are explored, specifically addressing campus networks and remote security design. Part V explores network management and network scanning. This section also discusses other ways to keep on top of threats, including using honeypots and sinkholes. It makes the comprehensive security presentation complete by providing readers with end-to-end real-world migration examples Full Product DetailsAuthor: Sean ConveryPublisher: Pearson Education (US) Imprint: Cisco Press Dimensions: Width: 19.00cm , Height: 3.70cm , Length: 23.30cm Weight: 1.082kg ISBN: 9781587142970ISBN 10: 158714297 Pages: 792 Publication Date: 24 March 2011 Audience: Professional and scholarly , Professional & Vocational Format: Paperback Publisher's Status: Out of Print Availability: Awaiting stock  Table of ContentsForeword. Preface. I. NETWORK SECURITY FOUNDATIONS. 1. Network Security Axioms. Network Security Is a System. Business Priorities Must Come First. Network Security Promotes Good Network Design. Everything Is a Target. Everything Is a Weapon. Strive for Operational Simplicity. Good Network Security Is Predictable. Avoid Security Through Obscurity. Confidentiality and Security Are Not the Same. Summary. Reference. Applied Knowledge Questions. 2. Security Policy and Operations Life Cycle. You Can't Buy Network Security. What Is a Security Policy? Security System Development and Operations Overview. Summary. References. Applied Knowledge Questions. 3. Secure Networking Threats. The Attack Process. Attacker Types. Vulnerability Types. Attack Results. Attack Taxonomy. Summary. References. Applied Knowledge Questions. 4. Network Security Technologies. The Difficulties of Secure Networking. Security Technologies. Emerging Security Technologies. Summary. References. Applied Knowledge Questions. II. DESIGNING SECURE NETWORKS. 5. Device Hardening. Components of a Hardening Strategy. Network Devices. Host Operating Systems. Applications. Appliance-Based Network Services. Rogue Device Detection. Summary. References. Applied Knowledge Questions. 6. General Design Considerations. Physical Security Issues. Layer 2 Security Considerations. IP Addressing Design Considerations. ICMP Design Considerations. Routing Considerations. Transport Protocol Design Considerations. DoS Design Considerations. Summary. References. Applied Knowledge Questions. 7. Network Security Platform Options and Best Deployment Practices. Network Security Platform Options. Network Security Device Best Practices. Summary. Reference. Applied Knowledge Questions. 8. Common Application Design Considerations. E-Mail. DNS. HTTP/HTTPS. FTP. Instant Messaging. Application Evaluation. Summary. References. Applied Knowledge Questions. 9. Identity Design Considerations. Basic Foundation Identity Concepts. Types of Identity. Factors in Identity. Role of Identity in Secure Networking. Identity Technology Guidelines. Identity Deployment Recommendations. Summary. References. Applied Knowledge Questions. 10. IPsec VPN Design Considerations. VPN Basics. Types of IPsec VPNs. IPsec Modes of Operation and Security Options. Topology Considerations. Design Considerations. Site-to-Site Deployment Examples. IPsec Outsourcing. Summary. References. Applied Knowledge Questions. 11. Supporting-Technology Design Considerations. Content. Load Balancing. Wireless LANs. IP Telephony. Summary. References. Applied Knowledge Questions. 12. Designing Your Security System. Network Design Refresher. Security System Concepts. Impact of Network Security on the Entire Design. Ten Steps to Designing Your Security System. Summary. Applied Knowledge Questions. III. SECURE NETWORK DESIGNS. 13. Edge Security Design. What Is the Edge? Expected Threats. Threat Mitigation. Identity Considerations. Network Design Considerations. Small Network Edge Security Design. Medium Network Edge Security Design. High-End Resilient Edge Security Design. Provisions for E-Commerce and Extranet Design. Summary. References. Applied Knowledge Questions. 14. Campus Security Design. What Is the Campus? Campus Trust Model. Expected Threats. Threat Mitigation. Identity Considerations. Network Design Considerations. Small Network Campus Security Design. Medium Network Campus Security Design. High-End Resilient Campus Security Design. Summary. References. Applied Knowledge Questions. 15. Teleworker Security Design. Defining the Teleworker Environment. Expected Threats. Threat Mitigation. Identity Considerations. Network Design Considerations. Software-Based Teleworker Design. Hardware-Based Teleworker Design. Design Evaluations. Summary. Reference. Applied Knowledge Questions. IV. NETWORK MANAGEMENT, CASE STUDIES, AND CONCLUSIONS. 16. Secure Network Management and Network Security Management. Utopian Management Goals. Organizational Realities. Protocol Capabilities. Tool Capabilities. Secure Management Design Options. Network Security Management Best Practices. Summary. References. Applied Knowledge Questions. 17. Case Studies. Introduction. Real-World Applicability. Organization. NetGamesRUs.com. University of Insecurity. Black Helicopter Research Limited. Summary. Reference. Applied Knowledge Questions. 18. Conclusions. Introduction. Management Problems Will Continue. Security Will Become Computationally Less Expensive. Homogeneous and Heterogeneous Networks. Legislation Should Garner Serious Consideration. IP Version 6 Changes Things. Network Security Is a System. Summary. References. Appendix A: Glossary of Terms. Appendix B: Answers to Applied Knowledge Questions. Chapters 1-16. Appendix C: Sample Security Policies. Index.ReviewsAuthor InformationSean Convery, CCIE No. 4232, is a security architect at Cisco Systems. He has been with the company for six years and is best known as the principal architect of the original Cisco SAFE Security Blueprint, as well as an author of several of its white papers. During his time at Cisco Systems, Sean has presented secure network design to thousands of Cisco customers around the world and consulted with scores of customers on security designs both large and small. Tab Content 6Author Website:Countries AvailableAll regions |
||||
