What security measures are recommended for each level of the TCP/IP model?

Find out where to put security measures and what options are available in the TCP/IP model in this expert response from Michael Gregg.

Michael Gregg, Superior Solutions, Inc.

What would you recommend for security at each level of the TCP/IP model?

Well I don't know that I would recommend security at each level of TCP/IP but I would say that security can be layered in at more than one.

One of the key concepts of security is defense in depth, and as such we should be trying to layer security. At the lower levels you may implement WEP, WPA, 802.1x or even EAP. Higher up at the IP layer we have IPSec. While it's just an add-on to IPv4 it is built in to IPv6. Tunnel and transport mode are two potential options.

Moving up to higher layers there are protocols such as Secure Sockets Layer (SSL) and Transport Layer Security (TLS.) At the top, or application layer, there are choices here such as PGP instead of clear text mail, SSH/SFTP as a replacement for FTP or even protocols such as DNS Secure.

This was last published in July 2008

Dig Deeper on Network Security Best Practices and Products

OSI model (Open Systems Interconnection) OSI (Open Systems Interconnection) is a reference model for how applications communicate over a network.

Session Initiation Protocol (SIP) Session Initiation Protocol (SIP) is a signaling protocol used for initiating, maintaining, modifying and terminating real-time sessions that involve video, voice, messaging and other communications applications and services between two or more endpoints on IP networks.

Network layer Located at Layer 3 of the Open Systems Interconnection (OSI) communications model, the network layer's primary function is to move data into and through other networks.

The OSI model layers explained: Get to know the network Do you know what each layer of the OSI model represents? Infosec expert Adam Gordon helps you get up to speed in preparation for Domain 4 of the CISSP exam.

Internet Protocol suite (IP suite) Internet Protocol suite (IP suite) is the standard network model and communication protocol stack used on the Internet and on most other computer networks. While other networking models exist, the IP suite is overwhelmingly the global standard for computer-to-computer communication.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Networking experts

View all Networking questions and answers

What security measures are recommended for each level of the TCP/IP model?

Find out where to put security measures and what options are available in the TCP/IP model in this expert response from Michael Gregg.

Dig Deeper on Network Security Best Practices and Products

Related Q&A from Michael Gregg

Expert tips to solve port 3389 issues when end users gets blocked

Disadvantages to a layered approach

Network security with foreign network cards

Have a question for an expert?

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchUnifiedCommunications

Amazon Chime gets integration with Dolby Voice Room

Slack services partners to help vendor target enterprises

How IT can help prevent UC tool communication overload

SearchMobileComputing

Deploy kiosk devices with the Managed Home Screen Android app

New Outlook features appeal to users on the go

Smartphone market trends elicit longer refresh cycles

SearchDataCenter

Microsoft quantum development turns toward hardware

Top 5 options for Linux certifications

New hardware, use cases shape server benchmarking needs

SearchITChannel

Slack services partners to help vendor target enterprises

Vancouver Canucks defend data with Veeam backup

Synchronoss joins US big four operators in cross-carrier messaging initiative

Dig Deeper on Network Security Best Practices and Products

Related Q&A from Michael Gregg

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.