Security Implementation
Google

 

 

Security Implementation

Virus Control

  • Install Anti-Virus and Anti-Spyware.

User Authentication

  • Rollout dynamic password authentication for remote users.

Secure Communication

  • Remote access via SSL and IPSec VPN.
  • Establish secure wireless network communication.
  • Kerberos Security which protects electronic transmissions that get sent across the network.
  • Port access limited to mail, web and remote & terminal server users.

Hardware/OS

  • Update OS with current releases of patches and security updates.
  • Need to review and upgrade applications for current releases.

Network

  • Install appropriate firewall hardware to create stronger access lists and more in-depth traffic inspection.

Trusted sources (Internal Users)

  • Address failure of anti-virus software to detect known threats introduced by trusted sources.

Un-trusted Sources

  • Hackers - Need to identify and respond to external threats including denial of service attacks, password attacks, data interception, impersonating IP address, application layer attacks, network reconnaissance in an attempt to obtain critical network information, etc.
  • Internal Users - Downloading non-approved software and applications from the web.

Other Hardware/Application Communication

  • Ensure that all third party server communication is secure.

External threats can be minimized by establishing:

  • Periodic Vulnerability Scanning and Reporting
  • Scanning the network on a periodic basis to identify potentially dangerous vulnerabilities and exposures.

System Log Protocol collection/monitoring

  • A protocol for transmitting event messages and alerts across an IP network.
  • Networks including routers, firewalls, printers, copiers, applications, servers generate information in Syslog format that needs to be collected and analyzed for vulnerabilities.
  • Real-time Syslog collection and analysis allows network administrators the ability to identify, access and react to threats.
  • Syslog is being standardized and/or recommended for a number of auditing applications, for example in the health care environment (IHE) as well as for formalized network management.

Simple Network Management Protocol (SNMP) Collection, monitoring, and alerting

  • SNMP enables network administrators to manage network performance, find and solve network problems, and plan for network growth.
 

 


 

About Us | TOS | Privacy Policy | Contact Us | ©2007 ZDA Enterprises All Rights Reserved.