What are the key security risks and considerations to adopt firewall/VPN technology?
Some key security risks and standards that should be considered while adopting a firewall/VPN are:
- Single point of failure
- Loose security policies
- support protection
- Limitation of technology
- False sense of security
- Weak encryption
- Latency risks
Risks are threats to your objectives. A proper risk analysis should be done before making any technology decision. A risk analysis should address:
- What is at risk?
- What is its value?
- What are the threats?
- What is the probability of occurrence?
Some firewall/VPN standards to consider:
- Open architecture
- Packet filteration
- Default to denial
- Auditing capabilities
- Access control
- Logging capabilities
- Intrusion detection
- Extended user authentication
- Secured subnets
- Strong encryption
- Network management systems
- Secure back-up
- Stateful inspection
- Real-time traffic monitoring & alerting system
- Device management
- Secure tunneling
This was last published in August 2005
Dig Deeper on Network Security Best Practices and Products
Find out if there's a difference between a virtual private network (VPN) concentrator and a network access server (NAS) in this explanation from our ...
Continue Reading
Our network security expert explains how to keep unauthorized users from accessing your router's IP address for Internet access in this advice ...
Continue Reading
If you've used MAC address restriction to control your network access on your wireless router, can you extend this to your wired network? Our ...
Continue Reading