 |
|
|
Intrusion Detection/Vulnerability Assessment (ID/VA) (May 22, 2002) ID/VA products/services can be deployed as either host-based or network-based and, as with firewalls, appliance-based ID/VA solutions are beginning to emerge. Each of these types of deployments has its strengths and weaknesses; however, it will be a comprehensive ID/VA solution consisting of both host- and network-based technologies that will eventually be required to solidify corporate's total network security requirements. This paper attempts to explore the current challenge called ID/VA and the offerings to date.. It walks through what defines the technology as well as the market. If your looking to purchase this type of technology, this discussion will be invaluable. VPN Architecture (May 22, 2002) As more highly sensitive data are placed on internal networks, and systems are being opened up to external users and remote and mobile workforces, we believe that organizations will look for ways to communicate and transact business more efficiently with increased levels of security. VPNs are a way that organizations can accomplish this. VPNs allow organizations to build a secure communications network, leveraging the public Internet as a low-cost transport mechanism. This paper gives a detailed overview of what VPN is and how it should be deployed to be cost effective. In addition, it addresses the VPN key players and subsequent Market that drives the proliferation of this technology. If you are looking at VPN, this is a document you cannot afford to not read. Two Factor Authentication (April 4, 2002) This paper attempts to address the current challenge called Authentication. It brings a fresh perspective to the seasoned technologies and surprisingly negates the effectiveness of biometrics as a solution. It also details out the pros and cons of the different methods of two factor Authentication. Embedded Firewall Strategy
(April 4, 2002) By definition, a perimeter defense requires that it be the only path to the protected assets. Wouldn't it be nice if we had a solution that addresses the internal threat as well as the external one, a security solution that takes advantage of the perimeter defense technology and applies it to internal resources; however, at the same time can be centrally managed, cost little more than an Ethernet card? Sounds pretty far fetched? Not quite. Today there is a solution that does just that, an Embedded Firewall. Now More than Ever, Cybersecurity
Audits Are Key One of the major legal risks arising from cybersecurity breaches is the possibility of derivative suits against corporate officers and directors alleging that they have breached their duty of care by failing adequately to protect against security breaches. Directors and officers have a feduciary obligation to use reasonable care in overseeing the business operations of the company, under the doctrine of corporate duty of care. Traditionally, directors and officers could defend against a duty of care claim by showing that they acted with reasonable care by relying on information reasonably available to them. Cybersecurity Audits can midigate this risk. |
| ESC Home Page |
© 2006 Enterprise Systems Consulting, Inc. all rights reserved.