Network Security Fundamentals [Electronic resources] نسخه متنی

This is a Digital Library

With over 100,000 free electronic resource in Persian, Arabic and English

اصطلاحنامه مجموعه ها مرورالفبایی لغت نامه دهخدا

➟

جستجو در لغت نامه

بیشتر

کتابخانه شخصی پرسش از کتابدار ارسال منبع

Network Security Fundamentals [Electronic resources] - نسخه متنی

Gert De Laet, Gert Schauwers

| ،

افزودن به کتابخانه شخصی

میخواهم بخوانم

درحال خواندن

خوانده شده

ارسال به دوستان

آدرس پست الکترونیک گیرنده :

آدرس پست الکترونیک فرستنده :

نام و نام خانوارگی فرستنده :

پیغام برای گیرنده ( حداکثر 250 حرف ) :

کد امنیتی را وارد نمایید

ارسال

جستجو در متن کتاب

بیشتر

تنظیمات قلم

فونت

اندازه قلم

+ - پیش فرض

حالت نمایش

روز نیمروز شب

➟

جستجو در لغت نامه

بیشتر

لیست موضوعات

Acknowledgments

Icons Used in This Book

Command Syntax Conventions

Part I. Introduction

Chapter 1. Network Security Overview

Weaknesses and Vulnerabilities

Responsibilities for Network Security

Security Objectives

Chapter 2. Understanding VulnerabilitiesThe Need for Security

Risk and Vulnerability

TCP/IP Suite Weaknesses

Buffer Overflows

Spoofing Techniques

Social Engineering

Chapter 3. Understanding Defenses

Intrusion Detection System

PC CardBased Solutions

Physical Security

Encrypted Login

Reusable Passwords

Antivirus Software

Encrypted Files

Part II. Building Blocks

Chapter 4. Cryptography

Cryptography versus Cryptanalysis

Modern-Day Techniques

Chapter 5. Security Policies

Defining a Security Policy?

Importance of a Security Policy

Development Process

Incident Handling Process

Sample Security Policy

Chapter 6. Secure Design

Network DesignPrinciples

Network DesignMethodology

Return on Investment

Physical Security Issues

Switches and Hubs

Part III. Tools and Techniques

Chapter 7. Web Security

Chapter 8. Router Security

Basic Router Security

Router Security to Protect the Network

References in This Chapter

Chapter 9. Firewalls

Firewall Basics

Different Types of Firewalls

Enhancements for Firewalls

Case Study: Placing Filtering Routers and Firewalls

Chapter 10. Intrusion Detection System Concepts

Introduction to Intrusion Detection

Host-Based IDSs

Network-Based IDSs

IDS Management CommunicationsMonitoring the Network

Sensor Maintenance

Case Study: Deployment of IDS Sensors in the Organization and Their Typical Placement

Chapter 11. Remote Access

Lock-and-Key Feature

Two-Factor Identification

Case Study: Configuring Secure Remote Access

Chapter 12. Virtual Private Networks

Generic Routing Encapsulation Tunnels

VPNs with IPSec

Case Study: Remote Access VPN

Chapter 13. Public Key Infrastructure

Public Key Distribution

Trusted Third Party

Enrollment Procedure

Revocation Procedure

Case Study: Creating Your Own CA

Chapter 14. Wireless Security

Different WLAN Configurations

What Is a WLAN?

How Wireless Works

Risks of Open Wireless Ports

War-Driving and War-Chalking

SAFE WLAN Design Techniques and Considerations

Case Study: Adding Wireless Solutions to a Secure Network

Chapter 15. Logging and Auditing

Simple Network Management Protocol

Remote Monitoring

Service Assurance Agent

Part IV. Appendixes

Appendix A. SAFE Blueprint

Introduction to the SAFE Blueprint

SAFE Blueprint: Overview of the Architecture

References in This Appendix

Appendix B. SANS Policies

SANS Initiatives and Programs

Security Policy Project

Is It a Policy, a Standard, or a Guideline?

References in This Appendix

Appendix C. NSA Guidelines

Security Guides

References in This Appendix

Appendix D. Answers to Chapter Q&A

Website References

توضیحات

افزودن یادداشت جدید

Chapter 11 Q&A

1:	What does AAA stand for, and what is its function?
A1:	Answer: AAA stands for authentication, authorization, and accounting and provides security to Cisco IOS routers and network devices.
2:	What is authentication used for?
A2:	Answer: By requiring the user's username and password, authentication enables administrators to identify who can connect to a router.
3:	What is authorization used for?
A3:	Answer: Authorization allows administrators to control the level of access users have after they have successfully gained access to a device.
4:	What is accounting used for?
A4:	Answer: Accounting allows administrators to collect information about users. More specifically, administrators can track which user logged in to which router, which Cisco IOS commands a user issued, and how many bytes were transferred during a user's session.
5:	What are the three types of authentication servers supported by Cisco IOS?
A5:	Answer: The three types of authentication servers supported by Cisco IOS are TACACS+, RADIUS, and Kerberos.
6:	List three characteristics of the TACACS+ protocol.
A6:	Answer: Three characteristics of the TACACS+ protocol are as follows: Packets sent between client/server are TCP. TCP port is 49. There is packet encryption.
7:	List three characteristics of the RADIUS protocol.
A7:	Answer: Three characteristics of the RADIUS protocol are as follows: Packets sent between client/server are UDP. UDP port is 1812. There is password encryption.
8:	What Cisco IOS command is used to enable AAA on a router?
A8:	Answer: The Cisco IOS command to enable AAA on a Cisco IOS device is aaa new-model .
9:	What is the Cisco IOS lock-and-key feature?
A9:	Answer: The lock-and-key feature uses dynamic access lists to create specific, temporary openings in the network in response to a user's successful authentication.
10:	Give an example of two-factor identification.A10:	Answer: One example of two-factor identification is as follows: When retrieving money from an account at an ATM, a customer needs both a PIN number and the magnetic-strip card.