Self-Defending Networks: The Next Generation of Network Security


book cover
Self-Defending Networks: The Next Generation of Network Security
By Duane De Capite
...............................................
Publisher: Cisco Press
Pub Date: August 31, 2006
Print ISBN-10: 1-58705-253-9
Print ISBN-13: 978-1-58705-253-8
Pages: 250
 

Table of Contents  | Index
overview

Protect your network with self-regulating network security solutions that combat both internal and external threats.

  • Provides an overview of the security components used to design proactive network security

  • Helps network security professionals understand what the latest tools and techniques can do and how they interact

  • Presents detailed information on how to use integrated management to increase security

  • Includes a design guide with step-by-step implementation instructions

Self-Defending Networks: The Next Generation of Network Security helps networking professionals understand how to deploy an end-to-end, integrated network security solution. It presents a clear view of the various components that can be used throughout the network to not only monitor traffic but to allow the network itself to become more proactive in preventing and mitigating network attacks. This security primer provides unique insight into the entire range of Cisco security solutions, showing what each element is capable of doing and how all of the pieces work together to form an end-to-end Self-Defending Network. While other books tend to focus on individual security components, providing in-depth configuration guidelines for various devices and technologies, Self-Defending Networks instead presents a high-level overview of the entire range of technologies and techniques that comprise the latest thinking in proactive network security defenses. This book arms network security professionals with the latest information on the comprehensive suite of Cisco security tools and techniques. Network Admission Control, Network Infection Containment, Dynamic Attack Mitigation, DDoS Mitigation, Host Intrusion Prevention, and Integrated Security Management are all covered, providing the most complete overview of various security systems. It focuses on leveraging integrated management, rather than including a device-by-device manual to implement self-defending networks.



book cover
Self-Defending Networks: The Next Generation of Network Security
By Duane De Capite
...............................................
Publisher: Cisco Press
Pub Date: August 31, 2006
Print ISBN-10: 1-58705-253-9
Print ISBN-13: 978-1-58705-253-8
Pages: 250
 

Table of Contents  | Index

   Copyright
       About the Author
       About the Contributing Author
       About the Technical Reviewers
       Acknowledgments
       Icons Used in This Book
       Command Syntax Conventions
       Foreword
       Introduction
        Chapter 1.  Understanding Types of Network Attacks and Defenses
      Categorizing Network Attacks
      Understanding Traditional Network Defenses
      Introducing Cisco Self-Defending Networks
      Summary
      References
        Chapter 2.  Mitigating Distributed Denial-of-Service Attacks
      Understanding Types of DDoS Attacks
      DDoS Mitigation Overview
      Using Cisco Traffic Anomaly Detector
      Configuring Cisco Guard
      Summary
      References
        Chapter 3.  Cisco Adaptive Security Appliance Overview
      Antispoofing
      Intrusion Prevention Service
      Protocol Inspection Services
      HTTP Inspection Engine
      Configuring Content Security and Control Security
      Summary
      References
        Chapter 4.  Cisco Incident Control Service
      Implementing Outbreak Management with Cisco ICS
      Displaying Outbreak Reports
      Displaying Devices
      Viewing Logs
      Summary
      References
        Chapter 5.  Demystifying 802.1x
      Fundamentals of 802.1x
      Introducing Cisco Identity-Based Networking Services
      Machine Authentication
      Section 802.1.  x and NAC
      Using EAP Types
      VPN and 802.1x
      Summary
      References
        Chapter 6.  Implementing Network Admission Control
      Network Admission Control Overview
      NAC Framework Benefits
      NAC Framework Components
      Operational Overview
      Deployment Models
      Summary
      References
        Chapter 7.  Network Admission Control Appliance
      NAC Appliance Features
      NAC Appliance Manager
      Summary
      References
        Chapter 8.  Managing the Cisco Security Agent
      Management Center for Cisco Security Agents
      Cisco Security Agent
      Summary
      References
        Chapter 9.  Cisco Security Manager
      Getting Started
      Device View
      Map View
      Policy View
      IPS Management
      Object Manager
      Value Override Per Device
      Summary
      References
        Chapter 10.  Cisco Security Monitoring, Analysis, and Response System
      Understanding Cisco Security MARS Features
      Summary Dashboard
      Incidents
      Rules
      Query/Reports
      Management
      Admin
      Cisco Security Manager Linkages
      Summary
      References
   Index