Security risks of firewalls and VPNs

What are the key security risks and considerations to adopt firewall/VPN technology?

Puneet Mehta, SDG

What are the key security risks and considerations to adopt firewall/VPN technology?

Some key security risks and standards that should be considered while adopting a firewall/VPN are:

Single point of failure
Loose security policies
support protection
Limitation of technology
False sense of security
Weak encryption
Latency risks

Risks are threats to your objectives. A proper risk analysis should be done before making any technology decision. A risk analysis should address:

What is at risk?
What is its value?
What are the threats?
What is the probability of occurrence?

Some firewall/VPN standards to consider:

Open architecture
Packet filteration
Default to denial
Auditing capabilities
Access control
Logging capabilities
Intrusion detection
Extended user authentication
Secured subnets
Strong encryption
Network management systems
Secure back-up
Stateful inspection
Real-time traffic monitoring & alerting system
Device management
Secure tunneling

This was last published in August 2005

Dig Deeper on Network Security Best Practices and Products

Related Q&A from Puneet Mehta

How do VPN concentrators and network access servers (NAS) differ?

Find out if there's a difference between a virtual private network (VPN) concentrator and a network access server (NAS) in this explanation from our ... Continue Reading

What keeps unauthorized users from accessing my IP address/Internet?

Our network security expert explains how to keep unauthorized users from accessing your router's IP address for Internet access in this advice ... Continue Reading

Controlling network access by MAC address restriction on wired networks

If you've used MAC address restriction to control your network access on your wireless router, can you extend this to your wired network? Our ... Continue Reading

SearchUnifiedCommunications

Microsoft update of Teams Rooms for Android falls short

Microsoft has yet to add to Teams Rooms on Android critical features available on the Windows version. Missing features include ...

5 steps to managing team collaboration apps

Team collaboration apps offer measurable productivity and cost benefits. Follow these five steps to address technical, security ...

How to improve virtual collaboration in the enterprise

In the ideal team collaboration environment, technology enables a nuanced work experience while fading into the background. ...

SearchMobileComputing

AR use cases gain ground due to COVID-19, maturing tech

AR technology is growing beyond technical instruction, helped by work-from-home mandates and maturing technology.

Samsung introduces its cheapest A Series 5G phone yet

The Korean smartphone maker announced five additions to its midtier Galaxy A Series, including the A02s, A12, and three 5G phones...

LG to stop selling mobile phones

The Korean manufacturer will drop mobile phones and focus on electronic vehicles, smart homes and robotics. Its mobile phone unit...

SearchDataCenter

New Intel Ice Lake processors boost performance, security

Intel launches third-generation Xeon Scalable processors that bolster security, accelerate common data center workloads by 46% on...

IBM tools speed mainframe application modernization projects

IBM has released new versions of its application modernization tools designed to bring its Z series of mainframe applications in ...

Nvidia vs. AMD: Compare GPU offerings

Chip vendors Nvidia and AMD each offer GPUs optimized for large data centers. Compare the two to decide which best suits your ...

SearchITChannel

SAP skills, cloud development expertise in demand

IT services firms Pythian and Ensono have gone the acquisition route to build out their respective SAP and cloud-native ...

Logically buys MSSP company, sets sights on $100M

Logically's purchase of MSSP company Cerdant creates a security cross-selling opportunity, according to Logically CEO; other IT ...

Tech Data-Synnex merger poses IT distribution questions

The merger of IT distributors Tech Data and Synnex presents synergies -- as well as some areas of overlap -- between their ...

Security risks of firewalls and VPNs

What are the key security risks and considerations to adopt firewall/VPN technology?

Dig Deeper on Network Security Best Practices and Products

What does a VPN concentrator do?

How can professionals boost public hotspot security?

Deep packet inspection vendors: Quite the diverse crew

Understanding MPLS IP VPN encryption

Related Q&A from Puneet Mehta

How do VPN concentrators and network access servers (NAS) differ?

What keeps unauthorized users from accessing my IP address/Internet?

Controlling network access by MAC address restriction on wired networks

SearchUnifiedCommunications

Microsoft update of Teams Rooms for Android falls short

5 steps to managing team collaboration apps

How to improve virtual collaboration in the enterprise

SearchMobileComputing

AR use cases gain ground due to COVID-19, maturing tech

Samsung introduces its cheapest A Series 5G phone yet

LG to stop selling mobile phones

SearchDataCenter

New Intel Ice Lake processors boost performance, security

IBM tools speed mainframe application modernization projects

Nvidia vs. AMD: Compare GPU offerings

SearchITChannel

SAP skills, cloud development expertise in demand

Logically buys MSSP company, sets sights on $100M

Tech Data-Synnex merger poses IT distribution questions