Security risks of firewalls and VPNs

What are the key security risks and considerations to adopt firewall/VPN technology?

Puneet Mehta, SDG

What are the key security risks and considerations to adopt firewall/VPN technology?

Some key security risks and standards that should be considered while adopting a firewall/VPN are:

Single point of failure
Loose security policies
support protection
Limitation of technology
False sense of security
Weak encryption
Latency risks

Risks are threats to your objectives. A proper risk analysis should be done before making any technology decision. A risk analysis should address:

What is at risk?
What is its value?
What are the threats?
What is the probability of occurrence?

Some firewall/VPN standards to consider:

Open architecture
Packet filteration
Default to denial
Auditing capabilities
Access control
Logging capabilities
Intrusion detection
Extended user authentication
Secured subnets
Strong encryption
Network management systems
Secure back-up
Stateful inspection
Real-time traffic monitoring & alerting system
Device management
Secure tunneling

This was last published in August 2005

Dig Deeper on Network Security Best Practices and Products

Related Q&A from Puneet Mehta

How do VPN concentrators and network access servers (NAS) differ?

Find out if there's a difference between a virtual private network (VPN) concentrator and a network access server (NAS) in this explanation from our ... Continue Reading

What keeps unauthorized users from accessing my IP address/Internet?

Our network security expert explains how to keep unauthorized users from accessing your router's IP address for Internet access in this advice ... Continue Reading

Controlling network access by MAC address restriction on wired networks

If you've used MAC address restriction to control your network access on your wireless router, can you extend this to your wired network? Our ... Continue Reading

SearchUnifiedCommunications

Enterprises mull software-based business phone alternatives

Cellphone usage has outpaced POTS in the home, so why are enterprises still using desk phones? Business phone alternatives can ...

Zoom Phone system users share their success stories and setbacks

Tech leaders at Zoomtopia explained how migrating to the Zoom Phone system provides their employees with an integrated ...

RingCentral offers bulk SMS for reaching customers

A high-volume SMS API will let RingCentral users send thousands of messages at a time, a move that should help customers with ...

SearchMobileComputing

5G isn't for the iPhone 12 buyer

U.S. carriers are years away from delivering reliable 5G service nationwide, so the supporting technology in the iPhone 12 is not...

Learn 5 Microsoft Intune security features for mobile admins

Intune admins must be familiar with all the most essential security features that the platform offers. Learn about features such ...

Microsoft adding voice commands to Outlook mobile app

Voice commands built into the Outlook mobile app will speed up writing emails, scheduling meetings and calling colleagues, ...

SearchDataCenter

4 ways data center operations must adapt to the cloud era

The role of the traditional data center has changed dramatically as enterprises adopt cloud services, but IT operations ...

Top 4 ways to reduce data center power consumption

Infrastructure power requirements can drive up operating costs. Data center managers can cut their utility bills if they address ...

IBM cloud revenues climb as hardware continues to decline

IBM cloud revenues continue to increase as hardware sales drop, sharpening the company's strategy to focus on hybrid cloud.

SearchITChannel

Why 'channel' is a confusing term for MSPs and what to use

Instead of using 'channel,' for marketing, Dave Sobel thinks that solutions providers should consider 'ecosystem,' as channel is ...

Accenture, ServiceNow launch business group

The new Accenture ServiceNow Business Group aims to initially deliver industry offerings in financial services, government ...

When an SAP S/4HANA selective data transition makes sense

An SAP S/4HANA selective data transition might be the best approach for a customer's ECC conversion. Learn how this approach ...

Security risks of firewalls and VPNs

What are the key security risks and considerations to adopt firewall/VPN technology?

Dig Deeper on Network Security Best Practices and Products

What does a VPN concentrator do?

How can professionals boost public hotspot security?

Deep packet inspection vendors: Quite the diverse crew

Understanding MPLS IP VPN encryption

Related Q&A from Puneet Mehta

How do VPN concentrators and network access servers (NAS) differ?

What keeps unauthorized users from accessing my IP address/Internet?

Controlling network access by MAC address restriction on wired networks

Start the conversation

0 comments

Please create a username to comment.

SearchUnifiedCommunications

Enterprises mull software-based business phone alternatives

Zoom Phone system users share their success stories and setbacks

RingCentral offers bulk SMS for reaching customers

SearchMobileComputing

5G isn't for the iPhone 12 buyer

Learn 5 Microsoft Intune security features for mobile admins

Microsoft adding voice commands to Outlook mobile app

SearchDataCenter

4 ways data center operations must adapt to the cloud era

Top 4 ways to reduce data center power consumption

IBM cloud revenues climb as hardware continues to decline

SearchITChannel

Why 'channel' is a confusing term for MSPs and what to use

Accenture, ServiceNow launch business group

When an SAP S/4HANA selective data transition makes sense

Dig Deeper on Network Security Best Practices and Products

What does a VPN concentrator do?

How can professionals boost public hotspot security?

Deep packet inspection vendors: Quite the diverse crew

Understanding MPLS IP VPN encryption

Related Q&A from Puneet Mehta

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.