I was recently involved in planning a massive Internet infrastructure upgrade. The goal: To make a nationwide network more reliable and secure for both consumers and service providers. The security piece involves massively flexible authentication methods served up in client and cloud-based form with heaping doses of WS-Trust, WS-Federation, and WS-Policy. It's a beautiful, ready-to-deliver solution. If you've read solution no. 2 of my "Fix the Internet" whitepaper, you already know the key ideas.
When we shared the proposal with one of the key stakeholders, the person asked how well the security would hold up if the attacker got inside the cloud or became one of the trusted authentication providers. I think our answer surprised him.
[ IT is a risky business. How do you avoid common catastrophes and increase your chances of success? See "The IT worst case scenario survival guide." ]
We replied that our security model assumes that all attackers are trusted insiders, fully authenticated with elevated levels of access control and privileges. In any large security system, especially one that covers a large enterprise or coast-to-coast implementation, it's absolutely true.
Administrator's dilemma
Administrators of smaller entities normally know all of the other privileged administrators. But in a massive system, the centralized administrators don't have a clue about the trustworthiness of the various sub-admins. They don't know their names, their motivations, or whether the have passed a background check. It's a common scenario that haunts many senior administrators today. They have to give the keys to the kingdom to people who could go off on a malicious tangent at any moment. I've been involved with many cases in which a disgruntled IT employee caused millions of dollars in damage and thought nothing of trading their future career and even freedom to extract their demented revenge.
If your computer security defense is to withstand the real test of legitimacy, it should be built with the assumption that all attackers are trusted and highly privileged insiders acting within the system. That means not relying on perimeter defenses that are bound to fail (e.g. MS-Blaster, Conficker, etc.) and assuming that every asset in your internal network is directly exposed to the Internet. The idea of external networks isolated from soft, chewy centers by perimeter defenses died in August 2003 with the appearance of MS-Blaster.
This whitepaper explains the terminology and concepts behind Data Replication technologies and establishes some sizing rules through worked examples. Learn the new paradigm in disaster tolerance—protect data anywhere.
Download now »
Server virtualization is a popular option for dealing with mounting datacenter costs. Another equally promising approach is the use of an Application Delivery Controller. Citrix NetScaler provides a low-cost way for organizations to reduce their server count and accrue cost savings from a reduction in space, cooling, power and personnel.
Download now »
The emergence of WLANs has created a new breed of security threats to enterprise networks.
Included in HP ProCurve WLAN solutions is security technology that alleviates threats from WLANs through:
* Monitoring wireless activity inside and out of the enterprise
* Classifying WLAN transmissions into harmful and harmless
* Preventing transmissions that pose a security threat to the enterprise network
* Locating participating devices for physical remediation
Effectively address data protection challenges, implementing solutions that help store and protect business–critical data while cutting costs and improving efficiency and reliability.
Download now »
Sign up to receive Security Resource Alerts
This white paper provides guidance on how to develop a strategic approach to managing and monitoring logs, a key function required for compliance with many regulatory mandates and a critical defense against security threats.
Download now! »
Learn about the processes and technologies that support security information management (SIM) operations, as well as the business case for SIM. The series examines different options for implementing SIM and gives you evaluation criteria for selecting the best option for your organization.
Download now! »
Learn the strategies, actions, and capabilities that Best-in-Class organizations employ and technologies they choose to obtain superior performance against various security performance metrics. This report provides guidelines for identifying which security solutions to consume as a MSS and defines best practices for choosing and managing MSSPs.
Download now! »
606 Recommendations
