This chapter covers the following topics:
The Need for Network Security
Security Policy Characteristics, Goals, and Components
The Security Wheel
The first step in implementing security in a networked environment is to determine how that security will be defined and enforced. A security policy provides the overall framework for the network security implementation and provides the rationale and the motive for the guidelines and procedures that will be used. The security policy is the blueprint, or constitution, that describes in broad terms how security will be conducted in the network. Without a security policy, efforts to implement and enforce security in a networked environment can be haphazard and uncoordinated.