Security risks of firewalls and VPNs

What are the key security risks and considerations to adopt firewall/VPN technology?

Puneet Mehta, SDG

What are the key security risks and considerations to adopt firewall/VPN technology?

Some key security risks and standards that should be considered while adopting a firewall/VPN are:

Single point of failure
Loose security policies
support protection
Limitation of technology
False sense of security
Weak encryption
Latency risks

Risks are threats to your objectives. A proper risk analysis should be done before making any technology decision. A risk analysis should address:

What is at risk?
What is its value?
What are the threats?
What is the probability of occurrence?

Some firewall/VPN standards to consider:

Open architecture
Packet filteration
Default to denial
Auditing capabilities
Access control
Logging capabilities
Intrusion detection
Extended user authentication
Secured subnets
Strong encryption
Network management systems
Secure back-up
Stateful inspection
Real-time traffic monitoring & alerting system
Device management
Secure tunneling

This was last published in August 2005

Dig Deeper on Network Security Best Practices and Products

Related Q&A from Puneet Mehta

How do VPN concentrators and network access servers (NAS) differ?

Find out if there's a difference between a virtual private network (VPN) concentrator and a network access server (NAS) in this explanation from our ... Continue Reading

What keeps unauthorized users from accessing my IP address/Internet?

Our network security expert explains how to keep unauthorized users from accessing your router's IP address for Internet access in this advice ... Continue Reading

Controlling network access by MAC address restriction on wired networks

If you've used MAC address restriction to control your network access on your wireless router, can you extend this to your wired network? Our ... Continue Reading

SearchUnifiedCommunications

Microsoft-Cisco video interoperability delayed until later in 2020

Microsoft and Cisco said a long-awaited integration between their video conferencing room systems, originally slated to launch in...

Businesses replacing phone calls with video meeting platforms

Organizations are dropping their audio conferencing services in favor of video meeting platforms as they consolidate overlapping ...

Slack expands shared channels, but limits remain

Slack now lets as many as 20 organizations communicate in a shared channel. But users will have to wait for other enhancements to...

SearchMobileComputing

The iOS 14 update offers little to enterprise users

Enterprises won't see much benefit from the features in the iOS 14 update Apple announced this week, but some changes may improve...

Microsoft Authenticator for Android update adds options

This month's Microsoft Authenticator for Android update allows users to check their recent account activity and change passwords ...

Global smartphone sales took sizable hit in Q1

The first quarter of 2020 brought a 20% decline in global smartphone sales. Analysts cited weak demand and pandemic-related ...

SearchDataCenter

IoT data center tech aims to improve operational efficiency

IoT tech can make data center operations data-driven and automated. For a successful implementation, IT managers should evaluate ...

An introduction to DCIM software metrics and terms

Infrastructure management is no easy task. The right software can help admins track how efficient their server racks and ...

6 steps to prep your organization for ISO 9001 certification

ISO 9001 is a quality management standard. Before your team decides to become certified with an official audit, you should have ...

SearchITChannel

ConnectWise ups ante in cybersecurity services market

ConnectWise is pushing deeper into the security market by launching an MSP-specific cybersecurity framework. Get insight into the...

Pandemic influences IT staffing trends

The pandemic and economic uncertainty is influencing IT staffing priorities within the tech industry, according to new research; ...

MSPs expand into managed physical security services

Companies such as Deep Sentinel and Viakoo are tapping partners to deliver physical security services. Learn how MSPs are ...

Security risks of firewalls and VPNs

What are the key security risks and considerations to adopt firewall/VPN technology?

Dig Deeper on Network Security Best Practices and Products

3 key questions to ask about unified communications security

A glossary of 10 essential network security terms

Senators want potential VPN threat investigated by DHS

How can professionals boost public hotspot security?

Related Q&A from Puneet Mehta

How do VPN concentrators and network access servers (NAS) differ?

What keeps unauthorized users from accessing my IP address/Internet?

Controlling network access by MAC address restriction on wired networks

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchUnifiedCommunications

Microsoft-Cisco video interoperability delayed until later in 2020

Businesses replacing phone calls with video meeting platforms

Slack expands shared channels, but limits remain

SearchMobileComputing

The iOS 14 update offers little to enterprise users

Microsoft Authenticator for Android update adds options

Global smartphone sales took sizable hit in Q1

SearchDataCenter

IoT data center tech aims to improve operational efficiency

An introduction to DCIM software metrics and terms

6 steps to prep your organization for ISO 9001 certification

SearchITChannel

ConnectWise ups ante in cybersecurity services market

Pandemic influences IT staffing trends

MSPs expand into managed physical security services

Dig Deeper on Network Security Best Practices and Products

3 key questions to ask about unified communications security

A glossary of 10 essential network security terms

Senators want potential VPN threat investigated by DHS

How can professionals boost public hotspot security?

Related Q&A from Puneet Mehta

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.