Differences between revisions 4 and 7 (spanning 3 versions)

Describe NetworkSecurityEssentials4

This page includes Dr. A's own notes on Network Security Essentials 4th Edition.

Chapter 1

No clear boundary exists between computer security and network/Internet security. This book comes to the problem from the network security side.
CIA triad from "computer security"
1. Confidentiality
2. Integrity
3. Availability
4. Many experts add:
  1. Authenticity
  2. Accountability (non-repudiation, deterrence, fault isolation, intrusion detection and prevention, after-action recovery and legal action)
Computer security is complex
1. Requirements stated in one word, but mechanisms to fulfill requirements often complex
2. Security mechanisms prone to attack
3. Threat analysis to a security service may reveal additional complexity
4. Placement of the mechanisms not trivial... see the rest on page 8.
OSI securiity model
1. Users and software use Security Services which in turn use...
2. Security Mechanisms to block
3. Security Attacks. An example can be seen here:

OSI Model.png

NetworkSecurity/NetworkSecurityEssentials4 (last edited 2011-04-04 15:47:11 by vmhost3b)

-  ⇤ ← Revision 4 as of 2011-01-09 18:28:25 → 
  Size: 1150
  Editor: 71-88-174-166
  Comment:
+   ← Revision 7 as of 2011-01-09 18:33:21 → ⇥
  Size: 1227
  Editor: 71-88-174-166
  Comment:
-Deletions are marked like this.
+Additions are marked like this.
 Line 24:
+{{attachment:OSI Model.png}}
    1. You should know these categories well!