What is Defense in Depth?
Defense in Depth is the proposition that multiple layers of security are better than a single protection mechanism. The layers may be technological, procedural, or policy.
Defense In Depth
This paper will look at three common scenarios for network attacks, likely methods of attack, and countermeasures to protect the network from the attacks. The first scenario is an attack by a script kiddie from the Internet, the second is an attack from a skilled hacker and the final attack is from a trusted user who has access to the network. Read the Article
Deception: A Healthy Part of Any Defense in-depth Strategy
This paper will: Define and discuss the major components of a multi-layered defense with special emphasis on security policies and their framework, and define deception and discuss how it is used by the attacker, how it can be used by the defender, deception tools used in a defensive strategy, and it's role in a multi-layered defense. Read the Article
Slogging (syslog-ging) through the Mud
In this paper I'll be focusing on what I feel are some of the most important -- but often taken for granted mechanisms of defense in depth: logging and auditing. Logs are often thought to be things that are consulted after an incident. Read the Article
Six Strategies for Defense-in-depth
The response to address the new security environment of corporate networks is often referred to as defense-in-depth. The idea is to add protection at multiple layers rather than relying only on a perimeter firewall. Networks can no longer be partitioned into "inside" and "outside." Defense-in-depth requires that relationships between network resources and network users be a controlled, scaleable and granular system of permissions and access controls that goes beyond simply dropping firewalls between network segments. Read the Article
