Title :
Security issues in networks with Internet access
Author :
Landwehr, Carl E. ; Goldschlag, David M.
Author_Institution :
Center for High Assurance Comput. Syst., Naval Res. Lab., Washington, DC, USA
fDate :
12/1/1997 12:00:00 AM
Abstract :
This paper describes the basic principles of designing and administering a relatively secure network. The principles are illustrated by describing the security issues a hypothetical company faces as the networks that support its operations evolve from strictly private, through a mix of Internet and private nets, to a final state in which the Internet is finally integrated into its operations and the company participates in international electronic commerce. At each stage, the vulnerabilities and threats that the company faces, the countermeasures that it considers, and the residual risk the company accepts are noted. Network security policy and services are discussed, and a description of Internet architecture and vulnerabilities provides additional technical detail underlying the scenario. Lastly, a number of building blocks for secure networks are presented that can mitigate some of the vulnerabilities
Keywords :
Internet; business communication; commerce; electronic trading; security of data; Internet access; Internet architecture; building blocks; countermeasures; international electronic commerce; network administration; network security policy; network security services; private networks; residual risk; secure network design; security issues; threats; vulnerabilities; Companies; Computer networks; Computer security; Electronic commerce; Electronic countermeasures; IP networks; Intelligent networks; Laboratories; Protection; Web and internet services;
Journal_Title :
Proceedings of the IEEE
