NETWORK WORLD NEWSLETTER: M. E. KABAY ON SECURITY 12/21/04 Today's focus: Firewalls: FAQs and white papers
Dear [EMAIL PROTECTED], In this issue: * Information resources concerning firewalls * Links related to Security * Featured reader resource _______________________________________________________________ This newsletter is sponsored by BMC Software Linking IT Priorities to Business Objectives, an IDC whitepaper. Get insights from IDC on aligning business goals and IT priorities. IDC offers practical, actionable information on how Business Service Management can help you reduce operating costs, improve service levels, respond faster to business needs and protect delivery of business-critical. Click here to download this whitepaper now. http://www.fattail.com/redir/redirect.asp?CID=91627 _______________________________________________________________ [EMAIL PROTECTED] February 13-15, 2005 Scottsdale, AZ 16 years of technology in bloom. Through the years, 1,500 companies have launched technologies live on our stage, a few have launched revolutions. You've heard of Palm, TiVo and Java? [EMAIL PROTECTED] will be the best way to get your head - and your hands - aroun??! http://www.fattail.com/redir/redirect.asp?CID=91589 _______________________________________________________________ Today's focus: Firewalls: FAQs and white papers By M. E. Kabay As a teacher, I am always looking for useful information for my students. I think of you, Dear Readers, as students and fellow teachers, too, because the nature of security forces all of us to keep learning all the time. Today I'd like to point you to some useful free resources for learning and teaching about firewalls. CSE FAQ Starting with materials for your newest employees, there's a simple list of frequently-asked questions on the Web site of the Communications Security Establishment of the Government of Canada at: <http://www.cse-cst.gc.ca/en/knowledge_centre/FAQ.html> The FAQ includes a list of older books about firewalls (the newest is from 1997). Firewalls FAQ A more technical firewalls FAQ is from C. Matthew Curtin and is dated 2001: <http://www.faqs.org/faqs/firewalls-faq/> This document is far more detailed and goes into technical details that will interest system and network administrators. Major topics include: * Background and firewall basics * Design and implementation issues * Various attacks * How do I ... * Some commercial products and vendors * Glossary of firewall-related terms * TCP and UDP ports CERT/CC Security Improvement Modules on Firewalls The Computer Emergency Response Team Coordination Center (CERT/CC) of the Software Engineering Institute of Carnegie Mellon University has an extensive series of documents beginning with "Deploying Firewalls" at: <http://www.cert.org/security-improvement/modules/m08.html> According to the introduction, "These practices are intended primarily for experienced system and network administrators and integrators." The recommended practices are divided into four sections: * Prepare * Configure * Test * Deploy Each of the sections has one or more documents, some of them several pages long, with well-structured information. You will also want to explore the other Security Improvement Modules available through the link at the bottom of every page. White papers from Fortinet One of the resources I stumbled upon in my research is a collection of white papers from Fortinet: <http://www.fortinet.com/> The papers that caught my eye are listed on a form at: http://www.fortinet.com/leads/action/leadRequest.do?categoryId=10 They include a series of documents looking at vertical markets, such as educational institutions and healthcare, in which I am particularly interested. They also have case studies, which are always valuable for teaching. Incidentally, the form doesn't work with Opera 7.54, which is my standard browser; I had to switch to the dreaded Internet Explorer to fill in the registration form for the request. One nice feature is that once you have registered, you can download all the papers you want as PDF files. I hope you will find these resources helpful in your learning and training. Just for the record, I have no ties whatsoever to any of the organizations listed in this article. RELATED EDITORIAL LINKS Network World's firewall research center http://www.nwfusion.com/topics/firewalls.html Nortel working on new security routers Network World, 12/20/04 http://www.nwfusion.com/news/2004/122004switchsecurity.html User group to reveal model for IS security future Network World, 12/20/04 http://www.nwfusion.com/news/2004/122004-nac-security.html 3Com buys TippingPoint for $430 million Network World, 12/20/04 http://www.nwfusion.com/news/2004/1220043com.html _______________________________________________________________ To contact: M. E. Kabay M. E. Kabay, Ph.D., CISSP, is Associate Professor in the Division of Business and Management at Norwich University in Northfield, Vt. Mich can be reached by e-mail <mailto:[EMAIL PROTECTED]> and his Web site <http://www2.norwich.edu/mkabay/index.htm>. A Master's degree in the management of information assurance in 18 months of study online from a real university - see <http://www3.norwich.edu/msia> _______________________________________________________________ This newsletter is sponsored by BMC Software Linking IT Priorities to Business Objectives, an IDC whitepaper. Get insights from IDC on aligning business goals and IT priorities. IDC offers practical, actionable information on how Business Service Management can help you reduce operating costs, improve service levels, respond faster to business needs and protect delivery of business-critical. Click here to download this whitepaper now. http://www.fattail.com/redir/redirect.asp?CID=91626 _______________________________________________________________ ARCHIVE LINKS Archive of the Security newsletter: http://www.nwfusion.com/newsletters/sec/index.html Breaking security news: http://www.nwfusion.com/topics/security.html _______________________________________________________________ Steps for consolidating SAN islands around multi-service directors This on-demand webcast "SAN Consolidation, Reduce Costs and Simplify Management" illustrates how SAN consolidation is the fundamental first step toward future architectures such as on-demand and real-time computing. http://www.fattail.com/redir/redirect.asp?CID=91590 _______________________________________________________________ FEATURED READER RESOURCE THE EXTENDED ENTERPRISE: NW'S ANNUAL GUIDE Here we analyze the latest tools, techniques and strategies for extending your business reach. Find out how connecting to your business partners is influencing those relationships, how you can make your business partners take security issues as seriously as you do and more. Click here: <http://www.nwfusion.com/ee/2004/?ts> _______________________________________________________________ May We Send You a Free Print Subscription? You've got the technology snapshot of your choice delivered at your fingertips each day. Now, extend your knowledge by receiving 51 FREE issues to our print publication. Apply today at http://www.subscribenw.com/nl2 International subscribers click here: http://nww1.com/go/circ_promo.html _______________________________________________________________ SUBSCRIPTION SERVICES To subscribe or unsubscribe to any Network World e-mail newsletters, go to: <http://www.nwwsubscribe.com/Changes.aspx> To unsubscribe from promotional e-mail go to: <http://www.nwwsubscribe.com/Preferences.aspx> To change your e-mail address, go to: <http://www.nwwsubscribe.com/ChangeMail.aspx> Subscription questions? Contact Customer Service by replying to this message. This message was sent to: [EMAIL PROTECTED] Please use this address when modifying your subscription. _______________________________________________________________ Have editorial comments? Write Jeff Caruso, Newsletter Editor, at: <mailto:[EMAIL PROTECTED]> Inquiries to: NL Customer Service, Network World, Inc., 118 Turnpike Road, Southborough, MA 01772 For advertising information, write Kevin Normandeau, V.P. of Online Development, at: <mailto:[EMAIL PROTECTED]> Copyright Network World, Inc., 2004 ------------------------ This message was sent to: [EMAIL PROTECTED]
