Username: Save?
Password:
Home Forum Links Search Login Register*
    News: Keep The TechnoWorldInc.com Community Clean: Read Guidelines Here.
Recent Updates
[November 08, 2024, 04:31:03 PM]

[November 08, 2024, 04:31:03 PM]

[November 08, 2024, 04:31:03 PM]

[November 08, 2024, 04:31:03 PM]

[November 08, 2024, 04:31:03 PM]

[October 17, 2024, 05:05:06 PM]

[October 17, 2024, 04:53:18 PM]

[October 17, 2024, 04:53:18 PM]

[October 17, 2024, 04:53:18 PM]

[October 17, 2024, 04:53:18 PM]

[September 09, 2024, 12:27:25 PM]

[September 09, 2024, 12:27:25 PM]

[September 09, 2024, 12:27:25 PM]
Subscriptions
Get Latest Tech Updates For Free!
Resources
   Travelikers
   Funistan
   PrettyGalz
   Techlap
   FreeThemes
   Videsta
   Glamistan
   BachatMela
   GlamGalz
   Techzug
   Vidsage
   Funzug
   WorldHostInc
   Funfani
   FilmyMama
   Uploaded.Tech
   MegaPixelShop
   Netens
   Funotic
   FreeJobsInc
   FilesPark
Participate in the fastest growing Technical Encyclopedia! This website is 100% Free. Please register or login using the login box above if you have already registered. You will need to be logged in to reply, make new topics and to access all the areas. Registration is free! Click Here To Register.
+ Techno World Inc - The Best Technical Encyclopedia Online! » Forum » THE TECHNO CLUB [ TECHNOWORLDINC.COM ] » Computer / Technical Issues » Hardware
  Vulnerability Assessment and Network Security
Pages: [1]   Go Down
  Print  
Author Topic: Vulnerability Assessment and Network Security  (Read 691 times)
Daniel Franklin
TWI Hero
**********


Karma: 3
Offline Offline

Posts: 16647


View Profile Email
Vulnerability Assessment and Network Security
« Posted: October 16, 2007, 03:52:07 PM »


Dicar Networks
97 East Brokaw Road
Suite #230
San Jose, CA 95112
http://www.dicarnetworks.com/


THE DYNAMIC PROCESS OF NETWORK SECURITY
by Vlad Sharoiko

Network security is a dynamic process because of the new threats and vulnerabilities that are uncovered every day. Your software may be secure today, but the intense pace of upgrades will continue to create the openings for new issues to arise. According to statistics released by the CERT Coordination Center, more than 300 vulnerabilities are reported every month. The process of discovering them, determining the potential security risk, and recommending fixes is called a Vulnerability Assessment.

A Network Vulnerability Assessment can:

„«Identify any potential security breaches a hacker could exploit

„«Analyze discovered vulnerabilities existing in the network

„«Provide a detailed explanation of the recommended fix for each threat

Despite the fact that most security measures are put in place to protect a network from the malicious outside world, many intrusion attempts are now happening from inside the organization. With the proliferation of laptops and handhelds, the possibility of an internal intrusion has greatly increased. For this reason, a complete assessment should be done with scanners located inside and outside the network to determine if potential issues exist in either place.

In addition, the reports generated should be structured for 2 levels of review. The Executive Report should represent a high level overview of the number of vulnerabilities detected, while the IT Department should receive a highly detailed report containing descriptions of each vulnerability and explanations of the fixes recommended for each one.

The key features of a Vulnerability Assessment are:

„«Automated scanning of internal and external network devices
„«Scan schedules customized to times of least activity on the network
„«Full SSL support to scan SSLized services such as https, smtps, & imaps
„« Smart service recognition to detect services moved to non-standard ports
„«Non-destructive scanning to avoid interruption of normal network activity
„«Complete reporting designed for 2 levels of review

A Vulnerability Assessment should be performed on a monthly or quarterly basis, depending on network size and usage. New vulnerabilities are discovered every day, including ones that can provide back door access through desktops or laptops already connected to the network. Even a configuration change or faulty upgrade can introduce an opportunity for breach that was not available a week ago. Testing and review on a regular basis can help discover potential issues and reduce the possible damage that can be done to the network, and in turn, the productivity of the organization.

The results of vulnerability assessment tools represent a snapshot of system security at a particular point in time. Although these systems usually don¡¦t reliably detect an attack in progress, they can determine whether an attack is possible, and furthermore, provide information about what can be done to minimize the possibility of damage from an attack.

Many companies provide Vulnerability Assessments, but it is advisable to consult with multiple vendors prior to deciding who will be given access to the network. The key factor is whether you are comfortable with their experience level, and the type of reports that can be provided.

Vlad Sharoiko is the Director of Technical Services for Dicar Networks, San Jose, CA.

Dicar Networks, a network security solution provider base in San Jose, CA, is pleased to announce an addition to their staff that will increase their ability to assist in the planning and implementation of their security focus. Vlad Sharoiko, Vice President of Engineering for Barbedwire Technologies, will focus on designing security assessment programs that will help companies reduce the risks from either internal or external network attacks.

Mr. Sharoiko has an extensive background in network security, including design work on various network infrastructure projects. He has extensive experience architecting and installing network security products for large ISP environments and corporate customers. Prior to joining Barbedwire Technologies, Mr Vlad was a founding member of two successful internet startups, and had previous assignments with Beltelcom and Minsk Motor Plant in Belarus, where he was also involved in new product designs.

As a local provider of network security products, Dicar Networks can provide assistance with all phases of network design and installation, plus offer telecom and networking assistance. Dicar works with small and medium size businesses to provide a full range of networking services, with the goal of simplifying networks. Other services include security assessments, network audits, and technical support. Maintaining strong relationships with partners like SonicWall, Cisco, Adtran, & Barbedwire, Dicar is able to offer a full range of network management and support services, including anti-virus and anti-spam programs. All these offerings help companies increase the efficiency of their network while providing a good return on investment.

Logged

Pages: [1]   Go Up
  Print  
 
Jump to:  

Copyright © 2006-2023 TechnoWorldInc.com. All Rights Reserved. Privacy Policy | Disclaimer
Page created in 0.133 seconds with 24 queries.