saag-3----Page:6
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20
|
Access Control Authentication Non-repudiation Data Confidentiality Communication Security Data Integrity Availability Privacy Limit & control access to network elements, services & applications Examples: password, ACL, firewall Prevent ability to deny that an activity on the network occurred Examples: system logs, digital signatures Ensure information only flows from source to destination Examples: VPN, MPLS, L2TP Ensure network elements, services and application available to legitimate users Examples: IDS/IPS, network redundancy, BC/DR Provide Proof of Identity Examples: shared secret, PKI, digital signature, digital certificate Ensure confidentiality of data Example: encryption Ensure data is received as sent or retrieved as stored Examples: MD5, digital signature, anti-virus software Ensure identification and network use is kept private Examples: NAT, encryption Eight Security Dimensions Address the Breadth of Network Vulnerabilities Eight Security Dimensions applied to each Security Perspective (layer and plane) |