What is layered defense approach to network security?

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Network security Where can I find Puneet Mehta's most recent network security advice? How do VPN concentrators and network access servers (NAS) differ? What keeps unauthorized users from accessing my IP address/Internet? Controlling network access by MAC address restriction on wired networks Retrieve network resources and email after installing ISA Server 2004 What does a QM FSM error signify on a VPN Concentrator? How to block porn with ISA-server firewalls Who is responsible for updating network firewalls? How to locate the lost IP address of an access point (AP) What HIPPA-compliant software would you recommend for online medicine? Network Security Best Practices and Products 3Com acquisition confirms HP-Cisco battle for China Enterprises demand next-generation firewalls with IPS, app visibility Preventing hacker attacks with network behavior analysis IPS Is there a way to trace my stolen laptop computer? Integrating NAC with network security tools Should organizations separate technical from administrative security? What network equipment is needed to secure a small business LAN? Ethical hacking and countermeasures: Network penetration testing intro Are you on a domain name system (DNS) blacklist database? Rogue access points: Preventing, detecting and handling best practices

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary anti-replay protocol  (SearchNetworking.com) dynamic packet filter  (SearchNetworking.com) HELLO packet  (SearchNetworking.com) packet filtering  (SearchNetworking.com) rule base  (SearchNetworking.com) stateful inspection  (SearchNetworking.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

A layered defense uses multiple approaches to security enforcement at multiple areas within a network. This approach removes single points of security failure in order to secure enterprise information assets. A common example to security enforcement would consist of the following:

• Endpoint security to ensure valid identity and security policy compliance of the connected device


• Secure communications to ensure that information is protected from unauthorized discovery over the network


• Perimeter security to keep the "bad stuff" out by securing the boundaries between zones of different levels of trust


• Core network security to keep an eye on any malicious software and traffic anomalies by enforcing network policy and enabling survivability

For more information: