You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Intrusion Detection Systems

Intrusion Detection Systems White Papers

SAFE: a Security Blueprint for Enterprise Networks

Overview The principle goal of Cisco's secure blueprint for enterprise networks (SAFE) is to provide best practice information to interested parties on designing and implementing secure networks. SAFE serves as a guide to network designers considering the security requirements of their network. SAFE takes a defense-in-depth approach to network security design. This type of design focuses on the expected threats and their methods of mitigation, rather than on "Put the firewall here, put the intrusion detection system there." This strategy results in a layered approach to security where the failure of one security system is not likely to lead to the compromise of network resources. SAFE is based on Cisco products and those of its partners.

This document begins with an overview of the architecture, then details the specific modules that make up the actual network design. The first three sections of each module describe the traffic flows, key devices, and expected threats with basic mitigation diagrams. Detailed technical analysis of the design follows, along with more detailed threat mitigation techniques and migration strategies. Appendix A details the validation lab for SAFE and includes configuration snapshots. Appendix B is a primer on network security.

Further White Paper Details
Publisher	Cisco Systems	File Format	HTML & PDF
Date Published	August 2003	Downloads	18
Format	White Papers
Topics	Intrusion Detection Systems, Firewalls, VPNs, Network Security

Did you find this white paper useful?

Security: New strides in preventing intrusions.

Publisher:
IBM

ThinkPads with Integrated Fingerprint Readers Secure Your Mobile Workforce

Publisher:
Insight Direct

Live video broadcast: Data Loss Prevention from the Inside Out

Publisher:
Cisco Systems

CAMNEP: Agent-Based Network Intrusion Detection System

Publisher:
IFAAMAS

Tags:
network security

Raising the bar for hackers (Security)

Publisher:
Siemens

Cisco set to cash in on network attack fears

Cisco has hinted it will be launching a gigabit speed intrusion detection system as well enhanced VPN products. The company already has the largest market share for network security devices, such as VPNs, firewalls and intrusion detection systems.

Channel:
Security Strategy

Symantec streamlines network security

Standalone network-protection products, such as intrusion-detection systems and firewalls, flag any unusual network behaviour as a security 'event'. Anti-virus firm Symantec has unveiled a package of network-security management tools designed to...

Channel:
Security Strategy

Microsoft funds secure code-writing course at Leeds Uni

Dr Nick Efford, who is designing the syllabus, said it will differ from modules at other universities. The module will be available to 100 undergraduates at Leeds from January 2004. The plan is that the material from the new module will be made...

Worm's spread shows holes in patch system

Security firm Symantec offered a more conservative number, based on its intrusion detection network. Intrusion detection systems have spotted PCs the worm compromised on the networks of most major consumer Internet providers, including America...

Channel:
Comment & Analysis

Analysis: The network is the security

This means that the network will perform the same functions that firewalls, intrusion detection and prevention, antivirus and content-filtering systems do today. Given the growing scope of threats and the limitations of current security...

Cisco goes shopping again

The acquisition of Protego further emphasises Cisco's commitment to network security, and (Protego's) leadership in security monitoring, threat management and mitigation complements our ongoing work in security," Richard Palmer, vice-president in...

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.

Publisher:
IBM

Also on silicon.com

Site Navigation:

Intrusion Detection Systems White Papers

SAFE: a Security Blueprint for Enterprise Networks

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific