Definition of Enterprise Security
Enterprise security is the process of securing a corporations' infrastructure and information.
|
|
Enterprise Security
|
|
The Evolution of the Information Security Mindset: A Hypothesis of Stages of Individual and Enterprise
This paper explores the evolution of individual and enterprise thinking around information security. A theoretical model of how corporations typically develop and mature in their security strategy is postulated with corroboration from some leading security consultants. The premise of this work is if you can gauge your security stage, you can not only manage it better, but could think through and possibly transcend intermediary stages to fast track you to the ultimate stage of being practically secure. The potential benefits of this work arise from minimizing activity that does not take you on the shortest path to the ultimate stage.
Read the Article
|
LAMP based Security for SME
A project report which advocates LAMP (Linux OS + Apache Web-server + MySQL DBMS + PHP scripting) from its security point of view. The focus of the report is mainly on Small and Medium Enterprises though larger corporations may also benefit by its implication.It covers the aspect of security from different perspectives.The final chapter shows the study report conducted on a private bank in terms of LAMP security.
Read the Article
|
Modeling the Silicon Curtain
This paper will present the available range of modeling and simulation capabilities in Information Assurance. It will also establish some principles for extending these capabilities into the community. It will do this by establishing a case for utilizing more simulation in our discipline, reviewing past modeling & simulation efforts within Information security, reviewing the traditional types of modeling and simulation methodologies, addressing capability and experiences in computer modeling within other areas such as telecomm and economics, and providing a framework for future computer based modeling and simulation efforts in Information security.
Read the Article
|
Event Correlation in Security
A recent security spending survey by Information Security Magazine indicates that deployment rates of many security technologies will soar in the next three years. All the above devices, whether aimed at prevention or detection, generate huge volumes of audit data. Firewalls and other devices logging network connection information are especially guilty of producing vast oceans of data. Many diverse data formats and representations are used for those log files and audit trails. Also, a percentage of events generated by network IDS and IPS are false alarms and do not map to real threats. To further confuse the issue, different devices might report on the same things happening on the network, but in a different way, with no apparent way of figuring the truth of their relationship.
Read the Article
|
Role-Based Access Control: The NIST Solution
Role Based Access Control (RBAC) will allow for easier administration of today's large and complex corporate environments without sacrificing the need for securing data and access to it.
Read the Article
|
Security Administration Solution or Why We Implemented An Identity Management/Account Provisioning Tool
Account provisioning is a fairly new buzz word. Account provisioning, also known as employee-provisioning, or EUA (enterprise-user administration), is one of the terms used to describe the creation, maintenance, and deletion of user accounts, password maintenance, and the administration of user access rights.
Read the Article
|
Securing Privacy Part Four: Internet Issues
This is the fourth and final installment in a series devoted to protecting users' privacy on the Internet. So far in this series, we've examined privacy issues concerning hardware, software, and e-mail. In this article, we will look more generally at our usage of the Internet. The Internet offers all of us unparalleled access to information, but it also brings with it unique threats to our privacy. This article will examine some of the ways you can protect yourself.
Read the Article
|
Protecting Road Warriors: Managing Security for Mobile Users (Part One)
Managing security within the confines of an organization or enterprise is a difficult job. Worms, viruses, spam, malware, port scans and perimeter defense probes are constant threats. Servers and desktop systems require regular patching and monitoring, and IDS signatures and firewall rules are under constant review and tweaking. Thankfully, the desktops and servers sit well protected within the confines of your network. Imagine what it would be like if every user's system was located on your network perimeter and had none of the safeguards your multi-layered security systems provide.
Read the Article
|
Protecting Road Warriors: Managing Security for Mobile Users (Part Two)
Part one of Protecting the Road Warriors focused on the virus protection and firewall/IDS/IPS layers of mobile security. Part two completes the discussion and presents ways of providing additional layers of defense to help protect the valuable, mobile data.
Read the Article
|
Data Piracy - The Threat from Within Catching data thieves before it's too late
Databases are being stolen - Customer data, credit card data, taxpayer data - they're all vulnerable. Scary? Yes - but wait, there's more. It's not just "their" data that's vulnerable - it's ours too! "Oh, really?" Our first reaction may be skepticism. If so, we may be feeling safe because of our various security infrastructures. Numerous policies, procedures, and technologies may be in place to protect us. We may be spending continuous streams of cold, hard cash on security, so aren't we justified in feeling that our databases are reasonably safe?
Read the Article
|
|
|
Page: 1 2 3 4 5 6 7 8 9 10 11
Members currently browsing this category:
|
|
