>

Most Viewed Networking Devices:

  1. Small business firewalls
  2. Computer networking hardware
  3. High speed gigabit PCI adapter
  4. USB 3.0 PCI Card for Super Speed Data Transfer Rate
  5. Small Business Computer Network with Apple Mac Mini Server
  6. NSA 240 Sonicwall Small Business Network Security
  7. Cisco WRVS4400N Wireless Security Router
  8. Cisco RV 120W Wireless-N VPN Firewall and VLAN Router
  9. Cisco RV016 Multi WAN Router For Small Business
  10. Cisco RV220W Small Business Router
  11. Cisco RV082 Dual WAN VPN Router
  12. Edimax EnduraLINK ER-1088 Multi WAN Routers
  13. TL-R4299G Dual WAN Router for Internet Café
  14. New WNDR4500 N900 Vs Tew-692GR N900 Routers
  15. Netgear WNDR4000 and WNDR3800 Dual Band Routers
  16. Linksys E2500 Advanced Dual Band Router Vs E2000
  17. Linksys E-4200 Dual Band Gigabit Router

Most viewed Security Management:

  1. Information security management
  2. Firewalls Security Guidelines
  3. Business Continuity and Disaster Recovery Planning
  4. An Example of LAN Network Risk Assessment
  5. Information security policy guidelines
  6. Network Security Best Practices
  7. IT Security Risk Assessment

Most Viewed Networking Concepts:

  1. Local area network topology
  2. LAN Cable - standard deployment
  3. Easy way to calculate subnet mask
  4. VLAN tutorial
  5. WAN technologies
  6. Route summarization
  7. Understanding firewall with DMZ

 
«  
  »

Internet Security System


In all business or the organizations, the owner or the manager of the network infrastructures should implement the Internet Security System to protect the private networks against any types of internet threats.

Internet connectivity is normally provided via a perimeter router (and a secure firewall) connecting via an Internet Service Provider (ISP). Some Internet connections may be provided via broadband solution (using xDSL or cable) using a VPN encrypted tunnel. Due to the high security risks associated with the Internet, an internet security system should be implemented by following a number of basic security procedures. Any business communications over the Internet must be securely encrypted (VPN), and any Internet connection must be fire-walled with a suitable security policy to protect internal assets.

In enterprise systems, the Information Technology managers typically implement an Internet security system by following five steps to get started with the security review:

  1. Start by reviewing the current state of the business.
  2. Analyze the technology currently being used.
  3. Start a risk analysis process.
  4. Create the plans.
  5. Begin your security implementation process.

Each step will link into a succeeding step. Internet security system with this approach should be used for each process or department within the business, as well as for the holistic enterprise.

Business Security and analysis

Business Security and analysis

1. Reviewing the current state of the business

In most business or corporate networks, the Internet security system is already in place. Probably you need to start your security analysis from scratch by evaluating the current internet security system in place that is relevant to current security requirements.

Identifying the security requirements for the business commonly follows the steps below:

  1. Identify the core business by reviewing such questions like What are you protecting against?; what business segments to protect?; how the business security is implemented? And so on.
  2. Identify the stakeholders, can be the business owner, applications or process owner, or anyone who has any type of ownership in security.
  3. Understanding the company from both an internal and external perspective. Identify the number of employees, the customer base, and the volume of sales. Identify the vendors and business partners.
  4. Identify the vendors and business partners with which you do business. In many cases they connect directly to the network system that can also be a point of entry for unauthorized access.
  5. Identify industry trends and standards.

2. Analyze the technology being used

The next step in reviewing the internet security system requirements is by analyzing the technology currently in used by the organization. This will include the private / corporate network, or by definition a secured network that typically support data processing systems, messaging systems, patching management system, corporate anti-virus system, and so on.

The third steps in reviewing the internet security system requirements is analyzing the risks based on the information collected from the above two steps. You need to be able to identify each point where security could be an issue or a concern. With this risks assessment, you can identify the threats to the business assets, and you can evaluate the vulnerability to and likelihood of the occurrence as well as estimate the potential impacts.

Read more detail about Risk security assessment here.

4. Create the Plans

The fourth step in reviewing the internet security system requirement is to create plans and policies. You need to check the existing environment to see if you have any existing management of information security, security policies, and/or procedures including physical security, LAN security standards, Internet access policy, and even business recovery and disaster recovery plans.

At this point, you have decided which threats pose an unacceptable risk to your computing environment and what level of action you are willing to take to defend against them. Studying the security plans that your company has and their implementation may help you decide which security measures are most important for your environment. Based on the security standard policies in place, you need to review how good the policies are implemented. Policies are only good if they are implemented.

5. Security implementation

The last step is to implement the internet security system. This project should address the design, structure, and configuration of an evolving secure business infrastructure. The technical infrastructure will ensure that an internet security system environment is in place to support the user community and keep the business running.

The minimum requirement with regards to the implementation of the Internet Security system is:

  • All business / corporate data communications over the Internet must be encrypted using a secure tunneling – the VPN.
  • Any Internet connection must be fire-walled.
  • If using a perimeter screening router then it must have a suitable security policy to function to block non-authorized Internet originated traffic.
  • The router itself must also be secure from common Internet hacking techniques.
  • A suitable firewall must also be used to restrict inbound (from the Internet) Internet connections but allow authorized return (established) connections.

Check also business firewalls and firewall ports.

All business / corporate data traversing a public network such as the Internet must be encrypted. A strong encryption policy (VPN) must be used to protect network traffic from data manipulation and eves-dropping attacks.

The internal network must be protected with a firewall and if using a perimeter router (dual defenses) then it must also be configured to protect the internal network (and itself). This can be achieved by the use of a correctly configured extended access-list to block inbound (from the Internet) non-authorized traffic. Care must be taken not to block legitimate VPN traffic or valid established sessions.

The router should have SNMP disabled on the external Internet connection. It should be using strong SNMP and password security, with all TCP and UDP small-services (including http) disabled. Telnet restrictions should be enforced such that IP management is only allowed from authorized (internal) addresses. Refer to the Security standards on firewall protection.

Internet security system - diagram

Internet security system - diagram

By not adhering to this internet security system standard, the internal network is capable of being readily compromised from the Internet. This includes such security threats as information espionage, data manipulation, device tampering and message masquerading.


See also related posts:

Ki Grinsing

Share
December 1st, 2009 | Tags: | Category: Information Security

2 comments to Internet Security System

  • orlando rental in orlando
    September 16th, 2010 at 7:30 pm

    This is my 2nd visit to your blog. We’re starting off a fresh initiative in the same niche as your blog. Your website supplied us with important info to work with. You have accomplished a extraordinary job.

  • Tina @ Orlando Wireless 4G
    January 21st, 2011 at 2:23 am

    Hello there, just browsing for information for my Orlando 4g site. Can’t believe the amount of information out there. Wasn’t exactly what I was looking for, but cool site. Have a good day. Orlando 4g

Leave a Reply

 

 

 

You can use these HTML tags

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>