IEC: Publications: Network Security: Technology Advances, Strategies, and Change Drivers

New Challenges
Trends in Telecom Management Networks
Main Directions for Secure Management Network Architecture and Policies: The Integrated Management Network
Benefits
End-User Acceptance
Next Steps

Protecting Port 80

Port 80 Protection Techniques

Developing Secure Software and Systems

Existing Approaches
New Proposals

Simply Stated: Basics for Securing the VoIP Network

Separate Voice and Data Path
End-to-End Security Measures
Secure Each Hop

Intelligent Revolution for Metro SANs

Secure MPLS IP-VPN over an Integrated Next-Generation Network

Security: The New Priority
Next-Generation Network (NGN): A New Choice for Business
MPLS IP-VPN: The Highly Secured Network
Reality Secured

Internet Backbone Routers and Routing Protocols Security

Internet Security
Router, Host, and Firewall
BGP: The Internet Backbone Foundation
Policy-Based Networking Security
Acceptable Use Policy
Backbone Attacks and Security Issues

Questions from the Security Zone: Are All VPNs Created Equal?

Rule-Based VPN: Not Ideal for Large-Scale Networks
Static Route-Based VPNs: Some Flexibility but Tedious Administration Adds Up
Dynamic VPNs: Free-Up Valuable IT Resources and Ease Management Process

Security Architecture for Next-Generation Telecommunication Networks

IP Security Principles
Security Architecture for Telecommunication Networks

Pushing Security throughout the Network

The Internet Ecosystem
Building Survivable Telecommunication Infrastructure
Future Directions: Collaborative Security-Aware Networks

Defense in Depth in the Data Center

Physical Infrastructure
Network Infrastructure
Securing the Server
Secure Connectivity
Post-Installation Testing
Disaster Recovery
Dollars and Sense
Keeping Your System Current

Guidelines for Information Protection and Misuse Prevention

Define the Program
Assess Risk
Manage and Control Risk
Monitor
Train
Adjust the Program

Wireless Security

Designing Security Architectures for Wireless Personal Area Networks: New Techniques

WPAN Security Architecture Overview
Prior Wireless Network Security
Wireless Security Design Principles

Extending Organizational Data Security Policies to Protect Remote and Mobile Users

Business Problems
Deployment of Mobile Devices
Availability of High-Speed Internet Access
Value of the Data
Threats to the Data
Encryption: A Solution for Data Security

Wireless LAN Security: Wireless Networking and the Need for Authentication

Wireless Infrastructure
Risks with Wireless LANs
Today's Access Control Tools
Standards-Based Authentication Additions to WLAN
Issues with Current WLAN Security Mechanisms

An Overview of Security Issues for Multihop Mobile Ad-Hoc Networks

An Example Scenario
Critical Security Issues

Designing and Implementing Security in Wireless LANs

Secure Wireless Networks
Additional Design Considerations

Wireless LAN Policies for Security and Management

The Policy Process
Step 1: Define and Document the Policy
Step 2: Management Buy-In
Step 3: Educate Employees
Step 4: Audit and Monitoring
Step 5: Enforcement : Get Proactive
Step 6: Revise and Fine-Tune the Policy
Wireless LAN Policy Checklist

Implementing Security in Wireless LANs

Develop a Detailed Policy
Location Planning and Security
Securing the WLAN
Positional Security: The Final Step

Using Intelligent Software to Secure Wireless LANs

The Wireless LAN
WLAN Security Hazards
Wireless LAN Security Standards
Software Architecture for Wireless Gateways and Access Points

Understanding Wireless LAN Security

Wireless LAN Security Concerns
Overview of Wireless LAN Security Approaches
Global Key Management
Insecure Algorithms
Limited Access Control and Filtering
Dynamic WEP
802.1x, EAP, and LEAP
Firewalls and Encrypted Tunnels

Service-Provider and Enterprise Business Issues

Persistent Policy Management for Digital Information: A Great Opportunity for Communications Service Providers

What Is PPM for Digital Information?
Why Is PPM for Digital Information Needed?
To Comply with the Exploding Legal and Regulatory Mandates
Why Aren't Traditional Security Solutions Enough?
What Are the Attributes of a Good PPM System?
What Are the Components of a PPM System?
Where PPM Should Be Used?
Comparing of Alternative PPM Systems?
What Is the Role of Service Providers in PPM?

Secure Instant Messaging

The Need for Control
Shortcomings of Current Approaches to IM
Requirements for Enterprise Class IM
Solutions
Sample Architecture

Secure Content Management Delivers Multilayered E-Mail Security

Multilayered Protection with Secure Content Management
An Integrated, Multilayer Design with Statistical Protection

Information Security for Enterprise Fiber-Optic Networks

Enterprise Servers and Fiber Channel Fabrics
InfiniBand over Fiber Channel

A New Business Imperative: Toward Automatic, Transparent, and Continuous Sensitive Data Protection

Sensitive Information Expansion
Trusted Users
Technology Enables Sensitive Information Sharing
The Need to Protect Broader Categories of Sensitive Data
Data Propagation
Limitations in Operating System and File Management Approaches
Toward a New Generation of Information Security Technology
Finding Sensitive Information at Rest
Finding Sensitive Information in Motion
Sensitive Data Policy Management
Sensitive Data Permission Wrapping

Core Security: Protecting Data at Rest and Ensuring Host Integrity

The Problem: An Increasing Rate of Malicious Activity Targeted at the IT Core
Asymmetric Warfare: Defending Against the Unknown
The Solution: Core Security

Integrated Intrusion Detection for Real-Time Management of Enterprise Networks

Enterprise Security Environment: Infrastructure and Management
Integrated Enterprise Intrusion Detection
Distributed Enterprise Security Service Architecture
Event Correlation
Knowledge Discovery and Knowledge Management Services

Intrusion-Alert Aggregation, Knowledge-Based Alert Evaluation, and Alert Correlation

Intrusion Alert Management System (IAMS) Architecture
Intrusion-Detection Alert Aggregation
Implementation and Experiments

Digital Leakage: What Is It? Why Is It a Problem? And What Can Be Done to Address It?

Digital Leakage
What Does a Digital Leak Cost?
What Security Solutions Are Being Deployed?
What Sort of Solution Should We Pursue?

The Role Broadband Services Will Play in the Coming Cyber-Security Environment

Cyber Threats: A Fact of Internet Life
Broadband Growth Rates
Awareness Is Increasing

Worm Mitigation on Broadband Networks: Service-Provider Strategies for Managing Worm Attacks

Network Worms
Worms and Broadband Networks
Famous Worms
P2P and Worms: A New Vector of Infection
Worm Traffic and Service Providers
Current Solutions
Future Considerations

The Top Ten Myths about Security

Authentication and Encryption

Biometric Authentication Systems: Are You Really Who You Claim to Be?

Access Control Based on User Authentication
Biometrics
How Does a Biometric Recognition System Work?
Anatomy of a Biometric System
Biometrics Based on Physical Characteristics
Threats to Biometrics-Based Systems and Their Commercial Applications
Attacks on Biometrics-Based Access-Control Systems
Biometrics Are No Secret

Protecting Data at Rest: Encrypting Stored Data and Controlling Data Access

Security Threats to Data at Rest
Solution Requirements for Protecting Data at Rest
Alternative Solutions to Protecting Data at Rest
Security Protection Boundaries

Application of Biometric Technology in Portable Storage Devices

Biometric Identification
Buyer's Needs Analysis
Benefits Analysis

Multimedia Security: Encryption Techniques

Multimedia Content Protection
Multimedia Cryptography Techniques
Overview of Multimedia Standards: JPEG and MPEG
Video Encryption Techniques

Multimedia Security: Watermarking Techniques

Applications of Digital Watermarking
Basic Principles of Digital Watermarking
Evaluation of Watermarking Systems
Digital Watermarking for Images: An Overview

An Improved Method for Authentication and Key Agreement for Wireless Networks

Background
State of the Art
Techniques
Model
Method
Sequence
Impact on Threat Entities
Sample Implementation

Regulation, Standards, and Protocols

Advances in Wireless LAN Security: Encryption and Protocols

Security Issues
Encryption Schemes and Protocols

Common Criteria and Telecommunications Infrastructures Protection

Security Certification Paradigm and Common Criteria
Focus on Protection Profile
Security-Assurance Requirements Overview
Existing Work on Common Criteria Related to Telecommunications Infrastructures
Advantages and Issues of Certified Telecommunication Infrastructures
Application to EMS
Emerging Architectures: NGOSS

Web Services Security: An Overview of Standards and Industrial Practice

Security Context
The Web Services Levels
The Communications Level
Security and Commercial Products
The Supporting Levels

Duty to Provide Adequate Network Security

Common Law Negligence

Secure File Transfer with the Secure Shell (SSH)

Transferring Files Safely with Secure Shell
Traditional Methods Provide Inadequate Security
Secure FTP Is a Better Answer
Secure File Transfer in System Administration
Secure File Transfer between Financial Institutions
Secure File Transfer in Healthcare
SSH Safeguards File Transfer

The Enemy Within

Know the Enemy
Some Famous Anecdotes
Risk Assessment and Mitigation: Overcoming the Enemy Within
Fifty Ways to Leak from Server

Security Implications of IPv6

A Brief Overview of IPv6
The State of IPv6 Deployment and Availability
Operating System Support
IPv6 and the Internet Underground
A Look at IPv6 Addressing and Standards
Firewalls and IPv6
Protection in an IPv6 World