Network Security Fundamentals [Electronic resources] نسخه متنی

اینجــــا یک کتابخانه دیجیتالی است

با بیش از 100000 منبع الکترونیکی رایگان به زبان فارسی ، عربی و انگلیسی

جستجو بر اساس ... همه عنوان پدیدآور موضوع یادداشت تمام متن
اصطلاحنامه مجموعه ها مرورالفبایی لغت نامه دهخدا
جستجو در لغت نامه
بیشتر
کتابخانه شخصی پرسش از کتابدار ارسال منبع

Network Security Fundamentals [Electronic resources] - نسخه متنی

Gert De Laet, Gert Schauwers

| نمايش فراداده ، افزودن یک نقد و بررسی
افزودن به کتابخانه شخصی
میخواهم بخوانم
درحال خواندن
خوانده شده
ارسال به دوستان

آدرس پست الکترونیک گیرنده :

آدرس پست الکترونیک فرستنده :

نام و نام خانوارگی فرستنده :

پیغام برای گیرنده ( حداکثر 250 حرف ) :

کد امنیتی را وارد نمایید

ارسال
جستجو در متن کتاب
بیشتر
تنظیمات قلم

فونت

اندازه قلم

+ - پیش فرض

حالت نمایش

روز نیمروز شب
جستجو در لغت نامه
بیشتر
لیست موضوعات

Acknowledgments

Icons Used in This Book

Command Syntax Conventions

Foreword

Introduction

Part I. Introduction

Chapter 1. Network Security Overview

Defining Trust

Weaknesses and Vulnerabilities

Responsibilities for Network Security

Security Objectives

Conclusion

Q&A

Chapter 2. Understanding VulnerabilitiesThe Need for Security

Risk and Vulnerability

TCP/IP Suite Weaknesses

Buffer Overflows

Spoofing Techniques

Social Engineering

Conclusion

Q&A

Chapter 3. Understanding Defenses

Digital IDs

Intrusion Detection System

PC CardBased Solutions

Physical Security

Encrypted Login

Firewalls

Reusable Passwords

Antivirus Software

Encrypted Files

Biometrics

Conclusion

Q&A

Part II. Building Blocks

Chapter 4. Cryptography

Cryptography versus Cryptanalysis

Modern-Day Techniques

Conclusion

Q&A

Chapter 5. Security Policies

Defining a Security Policy?

Importance of a Security Policy

Development Process

Incident Handling Process

Security Wheel

Sample Security Policy

Conclusion

Q&A

Chapter 6. Secure Design

Network DesignPrinciples

Network DesignMethodology

Return on Investment

Physical Security Issues

Switches and Hubs

Conclusion

Q&A

Part III. Tools and Techniques

Chapter 7. Web Security

Hardening

Case Study

Conclusion

Q&A

Chapter 8. Router Security

Basic Router Security

Router Security to Protect the Network

CBAC

Case Study

Conclusion

Q&A

References in This Chapter

Chapter 9. Firewalls

Firewall Basics

Different Types of Firewalls

Enhancements for Firewalls

Case Study: Placing Filtering Routers and Firewalls

Summary

Q&A

Chapter 10. Intrusion Detection System Concepts

Introduction to Intrusion Detection

Host-Based IDSs

Network-Based IDSs

IDS Management CommunicationsMonitoring the Network

Sensor Maintenance

Case Study: Deployment of IDS Sensors in the Organization and Their Typical Placement

Conclusion

Q&A

Chapter 11. Remote Access

AAA Model

AAA Servers

Lock-and-Key Feature

Two-Factor Identification

Case Study: Configuring Secure Remote Access

Summary

Q&A

Chapter 12. Virtual Private Networks

Generic Routing Encapsulation Tunnels

IP Security

VPNs with IPSec

Case Study: Remote Access VPN

Conclusion

Q&A

Chapter 13. Public Key Infrastructure

Public Key Distribution

Trusted Third Party

PKI Topology

Enrollment Procedure

Revocation Procedure

Case Study: Creating Your Own CA

Conclusion

Q&A

Chapter 14. Wireless Security

Different WLAN Configurations

What Is a WLAN?

How Wireless Works

Risks of Open Wireless Ports

War-Driving and War-Chalking

SAFE WLAN Design Techniques and Considerations

Case Study: Adding Wireless Solutions to a Secure Network

Conclusion

Q&A

Chapter 15. Logging and Auditing

Logging

SYSLOG

Simple Network Management Protocol

Remote Monitoring

Service Assurance Agent

Case Study

Conclusion

Q&A

Part IV. Appendixes

Appendix A. SAFE Blueprint

Introduction to the SAFE Blueprint

SAFE Blueprint: Overview of the Architecture

Summary

References in This Appendix

Appendix B. SANS Policies

SANS Overview

SANS Initiatives and Programs

Security Policy Project

Is It a Policy, a Standard, or a Guideline?

References in This Appendix

Appendix C. NSA Guidelines

Security Guides

References in This Appendix

Appendix D. Answers to Chapter Q&A

Chapter 1 Q&A

Chapter 2 Q&A

Chapter 3 Q&A

Chapter 4 Q&A

Chapter 5 Q&A

Chapter 6 Q&A

Chapter 7 Q&A

Chapter 8 Q&A

Chapter 9 Q&A

Chapter 10 Q&A

Chapter 11 Q&A

Chapter 12 Q&A

Chapter 13 Q&A

Chapter 14 Q&A

Chapter 15 Q&A

Bibliography

Books

Website References

Index
توضیحات
افزودن یادداشت جدید

Index

[SYMBOL]
[A]
[B]
[C]
[D]
[E]
[F]
[G]
[H]
[I]
[J]
[K]
[L]
[M]
[N]
[O]
[P]
[Q]
[R]
[S]
[T]
[U]
[V]
[W]
[X]
[Z]

TACACS+ 2nd 3rd

accounting

ACS log

authorization

lock-and-key feature 2nd

RADIUS versus

summary of

TACACS+ server, for user authentication

tailgating

TCP

additional information on, RFC 793

Layer 4 of OSI model

segment format

sequence number prediction

three-way handshake preceding data exchange

TCP connections

resetting capability, network IDSs

resetting with router configured for nework IDS

TCP connections, ASA and

TCP SYN flood attacks

TCP SYN packets

in Land.C attacks

TCP/IP

fragmentation reassembly code

TCP/IP protocol suite

IP layer

mapped to OSI model

security issues 2nd

weaknesses of

closing a connection by FIN

covert channels

hijacking TCP connections

IP fragment attacks

SYN flood

TCP flags

TCP/UDP ports, stateless firewalls and

teardrop attacks

technological constraints in network design

technological constraints on network IDS

telecommunications standards

telecommuter connecting to branch office, protecting routers (case study) 2nd

telegraph, cryptography and

telephone calls, used in social engineering attacks

telephony, IP

Telnet

access to routers

router sessions via, configuring VTY password

Temporal Key Integration Protocol (TKIP)

Terminal Access Controller Access Control System plus
[See TACACS+]

terminals

logical virtual type terminal (VTY) lines, Telnet sessions on Cisco routers

terrorism, physical security and

terrorist groups

Internet, exploitation of

theft, risk of

three-way handshake, TCP connections

flags used in

timers and TCP flags, sequences of

time-based access lists, routers

timeout

console port of routers

timeouts and thresholds in session management by CBAC

timers, TCP/IP sessions

TKIP (Temporal Key Integration)

TLS (Transport Layer Security) 2nd

Token Ring networks

802.5 wireless standard, IEEE

NetScreen firewalls and

speed, values for

token-based authentication systems

tools used in network design process

top20

topologies of trust, PKI

traffic filtering, CBAC

traffic inspection, CBAC

traffic, inbound and outbound

traffic, network

analysis of

monitoring with RMON and SNMP

simulating

transform sets

establishing use of in IPSec policy

translation slots, PIX Firewall 2nd

translation table (NAT), viewing on Cisco router

Transmission Control Protocol
[See TCP]

Transmission Control Protocol/Internet Protocol
[See TCP/IP protocol suite]

Transport Layer Security
[See TLS]

Transport Layer Security (TLS)

transport layer, OSI

TCP protocol

transport mode (IPSec connections)

traps, SNMP

configuring recipient of

configuring router to send

Triple Data Encryption Standard (3DES)

Triple DES
[See 3DES encryption algorithm]

Trojan horses 2nd

troubleshooting SNMP, commands for

trust

least trusted

less trusted

trusted sites security zone (Internet Explorer)

trusted third-party protocol (PKI) 2nd

enrollment procedure for PKI users

topologies of trust, PKI

tunnel mode (IPSec)

tunneling

GRE (generic routing encapsulation) tunnels

selecting protocol for VPN

split tunneling

tunnels

LAN-to-LAN or Remote Access tunnel type

two-factor identification

typing biometrics


/ 196