Search /
Docfinder:
Advanced search  |  Help  |  Site map
RESEARCH CENTERS
SITE RESOURCES
Click for Layer 8! No, really, click NOW!
Networking for Small Business
TODAY'S NEWS
Security /

More Detection, more! - Part II

Related linksToday's breaking news
Send to a friendFeedback

Sign up to receive this and other networking newsletters in your inbox.

By Winn Schwartau
Network World on Security, 05/03/99

The emphasis the security industry has placed on Intrusion Detection/Reaction processes has pretty much concentrated on those detection methods that have already reached some degree of popularity, such as IP sniffing, perimeter penetration detection and host based audit analysis. And that is a good beginning.

Network protection, though, is about a lot more than just seeing if an acne-scarred, Jolt-drinking teenage punk is push-button hacking your front doors. It's a lot more than stopping an ex-KGB intelligence officer from stealing files. We cannot forget two other factors that are so often overlooked when building network security programs:

· The insider, the ex-employee, the disgruntled worker. Think about this for one terrible moment. Which of your staff do you provide the greatest physical access to your most sensitive areas, especially during low population off-hours? Who are the two lowest paid groups of people in your organization? The answers to both questions are the same: Cleaning staff and janitors. It is so much easier to launch attacks when one has both trust and access; technical acuity is not necessary.

· The network itself. Murphy's Law prevails at every turn. Equipment failures that affect network performance. Induced errors, internally or externally. Software glitches. Crash ... sis-boom-bah!

So how can we change our views of Intrusion Detection to accommodate a wider spectrum of reality than mere IP and Internet attacks? Can we look at networks in a different way to help with the insider problem that studies say account for greater than 60% of computer crime?

Read the next few issues and you will find out how much you really may know about your networks but aren't taking into consideration.

Winn Schwartau is a security maven, writer and speaker. His recent book "Time Based Security," creates a new paradigm for measuring and quantifying security in any network. His hit books include "Information Warfare" in all three editions. He owns www.infowar.com, the worlds' biggest site for security and information warfare. His team provides extensive security consulting on three continents. In addition, he is a popular, inventive and exciting speaker a boon to any event. Winn can be reached at winn@infowar.com or (727) 393-6600.

RELATED LINKS

Start-up puts hackers on BlackICE
Network World, 04/21/99

Network Associates ships intrusion detection and response tool
Network World, 04/07/99

Review: eNTrax Security Suite
Network World, 03/22/99

Sound the alarm!
Network World, 03/16/99

Archive of Network World on Security newsletters


NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!
New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE
Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.
* HOME    * RESEARCH CENTERS     * NEWS     * EVENTS

Contact us | Terms of Service/Privacy | How to Advertise
Reprints and links | Partnerships | Subscribe to NW
About Network World, Inc.

Copyright, 1994-2006 Network World, Inc. All rights reserved.