Supporting-Technology Design Considerations

This chapter covers the following topics:

  • Content
  • Load Balancing
  • Wireless LANs
  • IP Telephony

You know how it always is, every new idea, it takes a generation or two until it becomes obvious that there's no real problem. I cannot define the real problem, but I'm not sure there's no real problem.

Richard Feynman, "Simulating Physics with Computers," International Journal of Theoretical Physics, 1982

For a successful technology, reality must take precedence over public relations, for nature cannot be fooled.

Richard Feynman, report of space shuttle Challenger disaster, 1986

In this chapter, you will learn security design considerations for a wide range of technologies such as content, load balancing, wireless LAN (WLAN), and IP telephony. Content refers primarily to caching but also includes content distribution networks (CDN). The load-balancing section covers security considerations around load-balancing services and load-balancing security technology (such as firewalls). WLAN and IP telephony are self-explanatory.

Most of the technologies here are immature either from a technology standpoint or from a security standpoint. As such, this chapter is light on configuration specifics because many of these specifics and features will change in the short term. Instead, this chapter focuses on general design considerations for deploying the technology, which you can then leverage to evaluate the specific security features available at the time.

Part I. Network Security Foundations

Network Security Axioms

Security Policy and Operations Life Cycle

Secure Networking Threats

Network Security Technologies

Part II. Designing Secure Networks

Device Hardening

General Design Considerations

Network Security Platform Options and Best Deployment Practices

Common Application Design Considerations

Identity Design Considerations

IPsec VPN Design Considerations

Supporting-Technology Design Considerations

Designing Your Security System

Part III. Secure Network Designs

Edge Security Design

Campus Security Design

Teleworker Security Design

Part IV. Network Management, Case Studies, and Conclusions

Secure Network Management and Network Security Management

Case Studies



Appendix A. Glossary of Terms

Appendix B. Answers to Applied Knowledge Questions

Appendix C. Sample Security Policies

INFOSEC Acceptable Use Policy

Password Policy

Guidelines on Antivirus Process


Network Security Architectures
Network Security Architectures
ISBN: 158705115X
EAN: 2147483647
Year: 2006
Pages: 249
Authors: Sean Convery © 2008-2020.
If you may any questions please contact us: