Network Security Architectures

4.06 avg rating
( 16 ratings by Goodreads )
)  
9781587051159: Network Security Architectures
View all copies of this ISBN edition:
 
 

Expert guidance on designing secure networks

  • Understand security best practices and how to take advantage of the networking gear you already have
  • Review designs for campus, edge, and teleworker networks of varying sizes
  • Learn design considerations for device hardening, Layer 2 and Layer 3 security issues, denial of service, IPsec VPNs, and network identity
  • Understand security design considerations for common applications such as DNS, mail, and web
  • Identify the key security roles and placement issues for network security elements such as firewalls, intrusion detection systems, VPN gateways, content filtering, as well as for traditional network infrastructure devices such as routers and switches
  • Learn 10 critical steps to designing a security system for your network
  • Examine secure network management designs that allow your management communications to be secure while still maintaining maximum utility
  • Try your hand at security design with three included case studies
  • Benefit from the experience of the principal architect of the original Cisco Systems SAFE Security Blueprint

Written by the principal architect of the original Cisco Systems SAFE Security Blueprint, Network Security Architectures is your comprehensive how-to guide to designing and implementing a secure network. Whether your background is security or networking, you can use this book to learn how to bridge the gap between a highly available, efficient network and one that strives to maximize security. The included secure network design techniques focus on making network and security technologies work together as a unified system rather than as isolated systems deployed in an ad-hoc way.

Beginning where other security books leave off, Network Security Architectures shows you how the various technologies that make up a security system can be used together to improve your network's security. The technologies and best practices you'll find within are not restricted to a single vendor but broadly apply to virtually any network system. This book discusses the whys and hows of security, from threats and counter measures to how to set up your security policy to mesh with your network architecture. After learning detailed security best practices covering everything from Layer 2 security to e-commerce design, you'll see how to apply the best practices to your network and learn to design your own security system to incorporate the requirements of your security policy. You'll review detailed designs that deal with today's threats through applying defense-in-depth techniques and work through case studies to find out how to modify the designs to address the unique considerations found in your network.

Whether you are a network or security engineer, Network Security Architectures will become your primary reference for designing and building a secure network.

This book is part of the Networking Technology Series from Cisco Press, which offers networking professionals valuable information for constructing efficient networks, understanding new technologies, and building successful careers.

"synopsis" may belong to another edition of this title.

Review:

Network security is finally getting the attention it's long deserved, with organizations devoting time and money to the problem and more than a few independent consultants peddling their services in the area. Network security, though, is hard to do right, largely because it's not concerned with making the network do something (like connect the head office to the factory), but with making it not do something (allow access to an ill-defined community of malefactors). Network Security Architectures explains the generally accepted design practices that make networks as resistant as possible to damage and invasion.

Relatively little of this book is concerned with software configuration details, and it's generally not a paean to Cisco Systems products. Rather, this is a design guide, advising that it's usually best to put the proxy server inside the firewall and often a good idea to put IP phones on a private (RFC 1918) address range. Sean Convery--he wrote one of Cisco's standard security white papers--diligently explains why his advice is as it is, and how anticipated evolutions in technology might change design decisions. He makes clear that network security is an evolving discipline, but in this book documents the state of the art very well. Read this, then keep up with the latest on the Web sites, and you'll be in great shape to keep your networks safe. --David Wall

Topics covered: How to design data networks (including those that carry voice over IP) to be as inherently secure as possible. Threat assessment, device hardening, safe routing, VPNs, and the specific risks and requirements of applications (such as email) are covered. Detailed designs appear for common situations, such as securing telecommuter connections and tightening security on a corporate campus.

About the Author:

Sean Convery, CCIE No. 4232, is a security architect at Cisco Systems. He has been with the company for six years and is best known as the principal architect of the original Cisco SAFE Security Blueprint, as well as an author of several of its white papers. During his time at Cisco Systems, Sean has presented secure network design to thousands of Cisco customers around the world and consulted with scores of customers on security designs both large and small.

"About this title" may belong to another edition of this title.

Other Popular Editions of the Same Title

9781587142970: Network Security Architectures (paperback) (Networking Technology)

Featured Edition

ISBN 10:  158714297X ISBN 13:  9781587142970
Publisher: Cisco Press, 2004
Softcover

9788131770160: Network Security Architectures

Pearso..., 2011
Softcover

Top Search Results from the AbeBooks Marketplace

1.

Convery, Sean
Published by Cisco Press (2004)
ISBN 10: 158705115X ISBN 13: 9781587051159
New Hardcover Quantity Available: 2
Seller:
Save With Sam
(North Miami, FL, U.S.A.)

Book Description Cisco Press, 2004. Hardcover. Condition: New. Brand New!. Seller Inventory # VIB158705115X

More information about this seller | Contact this seller

Buy New
US$ 46.12
Convert currency

Add to Basket

Shipping: FREE
Within U.S.A.
Destination, rates & speeds

2.

Convery, Sean
Published by Cisco Press (2004)
ISBN 10: 158705115X ISBN 13: 9781587051159
New Hardcover Quantity Available: 1
Seller:
Irish Booksellers
(Portland, ME, U.S.A.)

Book Description Cisco Press, 2004. Condition: New. book. Seller Inventory # M158705115X

More information about this seller | Contact this seller

Buy New
US$ 64.87
Convert currency

Add to Basket

Shipping: US$ 15.00
Within U.S.A.
Destination, rates & speeds

3.

Convery, Sean
ISBN 10: 158705115X ISBN 13: 9781587051159
New Quantity Available: 1
Seller:
BennettBooksLtd
(San Diego, CA, U.S.A.)

Book Description Condition: New. New. Seller Inventory # SX-158705115X

More information about this seller | Contact this seller

Buy New
US$ 77.23
Convert currency

Add to Basket

Shipping: US$ 4.95
Within U.S.A.
Destination, rates & speeds

4.

Convery, Sean
ISBN 10: 158705115X ISBN 13: 9781587051159
New Quantity Available: 1
Seller:
BennettBooksLtd
(San Diego, CA, U.S.A.)

Book Description Condition: New. New. Seller Inventory # S-158705115X

More information about this seller | Contact this seller

Buy New
US$ 77.91
Convert currency

Add to Basket

Shipping: US$ 4.95
Within U.S.A.
Destination, rates & speeds

5.

Sean Convery
Published by Cisco Press (2004)
ISBN 10: 158705115X ISBN 13: 9781587051159
New Hardcover Quantity Available: 1
Seller:
Ergodebooks
(RICHMOND, TX, U.S.A.)

Book Description Cisco Press, 2004. Hardcover. Condition: New. 2nd. Seller Inventory # DADAX158705115X

More information about this seller | Contact this seller

Buy New
US$ 100.64
Convert currency

Add to Basket

Shipping: US$ 1.99
Within U.S.A.
Destination, rates & speeds