Welcome to Scribd!

Skip carousel

1 - Monitoring and Diagnosing Networks Terminology

Uploaded by

Antonio Sodré

0% found this document useful (0 votes)

25 views17 pages

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

25 views17 pages

1 - Monitoring and Diagnosing Networks Terminology

Uploaded by

Antonio Sodré

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 17

Search inside document

Monitoring and Diagnosing

Networks Terminology
Massimo Chirivì – CompTIA Security+ COURSE
Security+ Terminology
• Demilitarized Zone (DMZ)
• Honeynet
• Honeypot
• Information Security Management System
• Intrusion Detection System
• Intrusion Prevention System
• Personally Identifiable Information (PII)
• Software Defined Network (SDN)
• Stateful Packet Ispection (SPI)

E' vietata la distribuzione non autorizzata.

Frameworks, Best Practices, and
Configuration Guides
• ISO 27001:2013
• ISO 27002
• ISO 27017
• NERC
• NIST (Special Publication 800-12 e 800-14)
• NIST (800-53 , 800-82, 800-30, 800-35)
• ISA / IEC 62443
• PCI-DSS
• OWASP

E' vietata la distribuzione non autorizzata.

Frameworks, Best Practices, and
Configuration Guides

E' vietata la distribuzione non autorizzata.

Frameworks, Best Practices, and
Configuration Guides

ISO 27001
AUDIT

E' vietata la distribuzione non autorizzata.

Frameworks, Best Practices, and
Configuration Guides

ISO 27017

E' vietata la distribuzione non autorizzata.

Frameworks, Best Practices, and
Configuration Guides

The Eight Principles:

1. Computer Security supports the mission of the organization.

NIST 2. Computer security is an integral element of sound management.

3. Computer security should be cost-effective

800-14 4. Systems owners have security responsibilities outside their own organizations.
5. Computer security responsibilities and accountability should be made explicit.
6. Computer security requires a comprehensive and integrated approach.
7. Computer security should be periodically reassessed
8. Computer security is constrained by societal factors.

E' vietata la distribuzione non autorizzata.

Frameworks, Best Practices, and
Configuration Guides
The fourteen IT Security Practices:
1. Policy ( Program Policy, Issue-Specific Policy, System-Specific Policy)
2. Program Management (Central Security Program - System-level Program)
3. Risk Management (Risk Assessment, Risk Mitigation, Uncertainty analysis)
4. Life Cycle Planning (Security plan, Initiation Phase, Development/Acquisition phase, Implementation

NIST Phase, Operations/Maintenance Phase, Disposal Phase)

5. Personnel/User Issues (Staffing, User Administration)
6. Preparing for Contingencies and Disasters (Business Plan, Identify Resources, Develop Scenarios,
Develop Strategies, Test and Revise Plan)

800-14 7. Computer Security Incident Handling (Uses of a Capability, Characteristics)

8. Awareness and Training
9. Security Consideration in Computer Support and Operations
10.Physical and Environmental Security
11. Identification and Authentication (Identification, Authentication, Passwords, Advanced
Authentication)
12.Logical Access Control (Access Criteria, Access Control Mechanisms)
13.Audit Trails (Contents of Audit Trail Records, Audit Trail Security, Audit Trail Reviews, Keystroke
Monitoring)
14.Cryptography

E' vietata la distribuzione non autorizzata.

OWASP (Open Web Application Security
Project)
The Top 10 Proactive Controls

The list is ordered by importance with list item number 1 being the most important:

C1: Define Security Requirements

C2: Leverage Security Frameworks and Libraries
C3: Secure Database Access
C4: Encode and Escape Data
C5: Validate All Inputs
C6: Implement Digital Identity
C7: Enforce Access Controls
C8: Protect Data Everywhere
C9: Implement Security Logging and Monitoring
C10: Handle All Errors and Exceptions

E' vietata la distribuzione non autorizzata.

Other
• Web Server
• Operating System
• Network Infrastructure Devices

E' vietata la distribuzione non autorizzata.

Secure Network Architecture Concepts
General Work Low Security
Zones Secure zone
Zone Zone Honeypots
and
Honeynets
DMZ Web Server
Tunneling /
VPN
Extranet and
Wireless
Intranet Placing
Security
Devices
Wireless WEP WPA WPA2
Stateful Packet
Packet Filter
Firewalls Firewalls
Proxy Firewalls Inspection
Firewalls
Segmentation
and defense in VLAN SUBNETTING
depth
SDN
Control
Diversity

IDS / IPS
Vendor
Diversity

E' vietata la distribuzione non autorizzata.

Secure Systems Design

• Hardware and Firmware Security

• Operating Systems
• Patch Management
• Secure Configurations
• Peripherals
• Secure Staging Deployment Concepts

E' vietata la distribuzione non autorizzata.

Some screens

E' vietata la distribuzione non autorizzata.

Some screens

E' vietata la distribuzione non autorizzata.

Some screens

E' vietata la distribuzione non autorizzata.

Some screens

E' vietata la distribuzione non autorizzata.

Some screens

E' vietata la distribuzione non autorizzata.

CBS-154 Proficy HMI SCADA iFIX Fundamentals PDF
Document2 pages
CBS-154 Proficy HMI SCADA iFIX Fundamentals PDF
rmorenodx4587
No ratings yet
CS 651 Computer Systems Security - Individual Project Information Systems Security (ISS) Governance Committee Saurav Vaidya Jan 27, 2016
Document10 pages
CS 651 Computer Systems Security - Individual Project Information Systems Security (ISS) Governance Committee Saurav Vaidya Jan 27, 2016
ghiraula
No ratings yet
App Sheet Warehouse Inventory
Document3 pages
App Sheet Warehouse Inventory
sakr
No ratings yet
DNN DPCS Webinar (4) Security 101
Document12 pages
DNN DPCS Webinar (4) Security 101
Chen Michael
No ratings yet
3 Telecom+Network Part1
Document105 pages
3 Telecom+Network Part1
花繼利
No ratings yet
Master CyberOps Session 5
Document80 pages
Master CyberOps Session 5
refka babouri
No ratings yet
Top-Down Network Design: Chapter Six
Document50 pages
Top-Down Network Design: Chapter Six
yoga
No ratings yet
Lecture 3-Information Security Governance - Part 1
Document42 pages
Lecture 3-Information Security Governance - Part 1
Hasham Akram
No ratings yet
CISA 27e CH 5 Protection of Information Assets
Document192 pages
CISA 27e CH 5 Protection of Information Assets
Ja'far Numeiri
No ratings yet
CISSP Common Body of Knowledge Review in
Document145 pages
CISSP Common Body of Knowledge Review in
Sivasakti Marimuthu
No ratings yet
Monitoring and Diagnosing Networks: Dr. Jasim Saeed
Document11 pages
Monitoring and Diagnosing Networks: Dr. Jasim Saeed
Sameer Sohail
No ratings yet
Information Security Transformation-Nahil Mahmood-Lecture 7
Document5 pages
Information Security Transformation-Nahil Mahmood-Lecture 7
Muhammad Asim Mubarik
No ratings yet
Cisco Secure Network Analytics (Formerly Stealthwatch) Data Sheet
Document14 pages
Cisco Secure Network Analytics (Formerly Stealthwatch) Data Sheet
Timucin DIKMEN
No ratings yet
Secure Your Environment With Invisible Security From Nutanix
Document3 pages
Secure Your Environment With Invisible Security From Nutanix
AbdullahS.Atshan
No ratings yet
Lecture 2-Information Security Management
Document44 pages
Lecture 2-Information Security Management
Hasham Akram
100% (1)
Cips 2015 0267
Document35 pages
Cips 2015 0267
Dhirendra
No ratings yet
SSC/ N 0903 Install, Configure and Troubleshoot Information Security Devices
Document6 pages
SSC/ N 0903 Install, Configure and Troubleshoot Information Security Devices
Diya Ramani
No ratings yet
Lecture 4-Information Security Governance-Part 2
Document40 pages
Lecture 4-Information Security Governance-Part 2
Hasham Akram
No ratings yet
ACCS-chapter 1-Part2
Document15 pages
ACCS-chapter 1-Part2
ealabase
No ratings yet
Network & Network Security
Document14 pages
Network & Network Security
DAVID MGAYA
No ratings yet
Ccse Datasheet
Document1 page
Ccse Datasheet
tevfikuret
No ratings yet
Trend Keamanan Serangan Siber Dan Malware V.3.0
Document42 pages
Trend Keamanan Serangan Siber Dan Malware V.3.0
muhammadulya a
No ratings yet
IoT Auditing ISACA Version 1
Document61 pages
IoT Auditing ISACA Version 1
Sridharan Govindaraj
100% (1)
Lecture#01 - Introduction To Information Security COncepts
Document47 pages
Lecture#01 - Introduction To Information Security COncepts
fasih
No ratings yet
How To Secure
Document12 pages
How To Secure
trq
No ratings yet
Lecture 5-Information Security Governance-Part 3 - V2.0
Document48 pages
Lecture 5-Information Security Governance-Part 3 - V2.0
Hasham Akram
No ratings yet
Cybersecurity Frameworks: Dmzcon 09.2023
Document22 pages
Cybersecurity Frameworks: Dmzcon 09.2023
tmendis
No ratings yet
Assignement # 1 Project Proposal
Document6 pages
Assignement # 1 Project Proposal
ephert
No ratings yet
Chapter 4 Security Design
Document50 pages
Chapter 4 Security Design
yoga
No ratings yet
Securing The Local Network Network: CCNA Security
Document146 pages
Securing The Local Network Network: CCNA Security
Gaston Bouaoun
No ratings yet
Network Security
Document4 pages
Network Security
fauziyah.aathifah
No ratings yet
SOC Building1
Document36 pages
SOC Building1
Van Nguyen
No ratings yet
5 Linux Skills You Must Master To Be A Cybersecurity Professional
Document1 page
5 Linux Skills You Must Master To Be A Cybersecurity Professional
motojime
No ratings yet
Add Structure and Credibility To Your Security Portfolio With CIS Controls v8 Cybersecurity Framework
Document55 pages
Add Structure and Credibility To Your Security Portfolio With CIS Controls v8 Cybersecurity Framework
Lâm Hữu Tiến
No ratings yet
Ics Handbook Part6
Document20 pages
Ics Handbook Part6
kaicyem
No ratings yet
The Essential Layers of IBM I Security
Document7 pages
The Essential Layers of IBM I Security
john Bronson
No ratings yet
ZINFI Security Design Document
Document13 pages
ZINFI Security Design Document
Kilty ONeal
No ratings yet
Network Security v1.0 - Module 22
Document16 pages
Network Security v1.0 - Module 22
Hussein Kipkoech
No ratings yet
Module 03 Review: and Development Tools. - Azure Resource Manager. - Azure Monitoring Tools
Document21 pages
Module 03 Review: and Development Tools. - Azure Resource Manager. - Azure Monitoring Tools
amish raj
No ratings yet
Interview Questions 2
Document5 pages
Interview Questions 2
Ayesh Hosh
No ratings yet
Comptia Cysa cs0 003 Exam Objectives 2 0
Document13 pages
Comptia Cysa cs0 003 Exam Objectives 2 0
ubaydullah.onabanjo160591162
No ratings yet
1.8 Introduction To Networks - Network Security
Document3 pages
1.8 Introduction To Networks - Network Security
Cristian Morales
No ratings yet
Computer Security Activities
Document29 pages
Computer Security Activities
PANKAJ MANJHI
No ratings yet
Materi 3b
Document47 pages
Materi 3b
akhmad ismail
No ratings yet
Wireless Network Makes Information Access Much Easier
Document3 pages
Wireless Network Makes Information Access Much Easier
api-6929342
No ratings yet
Session Slides
Document90 pages
Session Slides
ROHIT
No ratings yet
ISWA Unit1pptx 2023 08 28 19 47 11
Document47 pages
ISWA Unit1pptx 2023 08 28 19 47 11
shivanibabhatti21
No ratings yet
IoT and Security-ICACCA-DDn-RSS-16Sep17
Document33 pages
IoT and Security-ICACCA-DDn-RSS-16Sep17
Rajveer S Shekhawat
No ratings yet
Seguridad de Los Sistemas de Información: Ethical Hacking / Paul M. Vildoso Alvarado
Document54 pages
Seguridad de Los Sistemas de Información: Ethical Hacking / Paul M. Vildoso Alvarado
Christian Luciani Fernandez
No ratings yet
(Class Note) Module 1 - Introduction To Cybersecurity
Document79 pages
(Class Note) Module 1 - Introduction To Cybersecurity
Yao Xia Li
No ratings yet
3rd Party Outsourcing Information Security Assessment Questionnaire V1.0
Document15 pages
3rd Party Outsourcing Information Security Assessment Questionnaire V1.0
santanujoshi
No ratings yet
Who Is Information Security For ?
Document32 pages
Who Is Information Security For ?
ali sheikh
No ratings yet
IOT Unit-4
Document16 pages
IOT Unit-4
vijaya sarathy
No ratings yet
The Business and Regulatory Value of Third Party Certification To The Nist Cybersecurity Framework - Bsi Ribose
Document40 pages
The Business and Regulatory Value of Third Party Certification To The Nist Cybersecurity Framework - Bsi Ribose
nocagef559
No ratings yet
Cse Instructor Materials Chapter7
Document26 pages
Cse Instructor Materials Chapter7
api-224615605
No ratings yet
CISSP - All
Document530 pages
CISSP - All
toyeve4326
No ratings yet
Ethical Hacking
Document157 pages
Ethical Hacking
eduardo cerron
No ratings yet
CA Module 18
Document24 pages
CA Module 18
Ehab Rushdy
No ratings yet
Tentacles Manual Book
Document34 pages
Tentacles Manual Book
Muhammad Ferdian Pratama
No ratings yet
CompTIA CySA cs0 003+objectives
Document12 pages
CompTIA CySA cs0 003+objectives
abhilash
No ratings yet
Comptia Security+ (2008 Edition) Certification Examination Objectives
Document11 pages
Comptia Security+ (2008 Edition) Certification Examination Objectives
thoughtcancer
No ratings yet
Cisco Router and Switch Forensics: Investigating and Analyzing Malicious Network Activity
From Everand
Cisco Router and Switch Forensics: Investigating and Analyzing Malicious Network Activity
Dale Liu
Rating: 2.5 out of 5 stars
2.5/5 (2)
SBGR Sao Paulo
Document23 pages
SBGR Sao Paulo
luciano melchionda
No ratings yet
Bank - Management
Document14 pages
Bank - Management
fopovi6610
No ratings yet
Shri Ram Institute of Science Technology Jabalpur: Course File ON Internal Combution Engine (SUB. CODE: 604)
Document8 pages
Shri Ram Institute of Science Technology Jabalpur: Course File ON Internal Combution Engine (SUB. CODE: 604)
Risika Choukse
No ratings yet
Engine Mechanical Section
Document202 pages
Engine Mechanical Section
ionbolo
100% (2)
Product Manager Security Training Reference Guide - The Product Manager Checklist
Document4 pages
Product Manager Security Training Reference Guide - The Product Manager Checklist
Venu Madhuri
No ratings yet
Hawassa University: Hawassa University Institute of Technology Department of Information Technology
Document23 pages
Hawassa University: Hawassa University Institute of Technology Department of Information Technology
Tinsae Tadese
100% (1)
Day10 Java
Document4 pages
Day10 Java
Yaathrigan
No ratings yet
OOAD and SSADM Compared
Document16 pages
OOAD and SSADM Compared
alum jacob
No ratings yet
FCUBS 14.5 - L1 Technical Training Plan - BB Bank - v1
Document9 pages
FCUBS 14.5 - L1 Technical Training Plan - BB Bank - v1
Austin Smith
No ratings yet
Fundamentals of Software Engineering
Document94 pages
Fundamentals of Software Engineering
Akila Zoyza
No ratings yet
Atcd U 4
Document25 pages
Atcd U 4
Duggineni Varun
No ratings yet
Mitsubishi Electric Automation Book 2013 en
Document200 pages
Mitsubishi Electric Automation Book 2013 en
lunatiko21
No ratings yet
Software Design Specification
Document2 pages
Software Design Specification
ragamenon
100% (1)
STM Lab Manual
Document87 pages
STM Lab Manual
Krishna Chowdary Challa
No ratings yet
Deep Security Software: Trend Micro™
Document6 pages
Deep Security Software: Trend Micro™
riyasathsafran
No ratings yet
Real Time Integrated Reservoir operation-CSocraby
Document71 pages
Real Time Integrated Reservoir operation-CSocraby
amit
No ratings yet
BNTU IKnezevicNPudarLMrdovicProceedings
Document8 pages
BNTU IKnezevicNPudarLMrdovicProceedings
Mohamed Assabaa
No ratings yet
Quality Management
Document50 pages
Quality Management
Rajesh Subramanian
100% (1)
4TNV106T-GGE: For Generator
Document17 pages
4TNV106T-GGE: For Generator
caleb diversity
100% (1)
Development of RFID Based Automatic Warehouse Management System: A Case Study of ROK Industries Limited Kenya
Document15 pages
Development of RFID Based Automatic Warehouse Management System: A Case Study of ROK Industries Limited Kenya
Editor Ijasre
No ratings yet
Fuel Pump
Document4 pages
Fuel Pump
Rajesh Kumar
100% (2)
DRX L5: Parts Catalogue
Document71 pages
DRX L5: Parts Catalogue
juanjoserodriguezalz
No ratings yet
Software Requirement Specification
Document14 pages
Software Requirement Specification
botiwa
No ratings yet
Architectures For Implementing Hil System
Document5 pages
Architectures For Implementing Hil System
sinq57
No ratings yet
2 Packaging Specification
Document77 pages
2 Packaging Specification
Mohd Shoaib
100% (1)
VHP 5904 LTD
Document2 pages
VHP 5904 LTD
BD MN
No ratings yet
Enhancement in SAP PDF
Document26 pages
Enhancement in SAP PDF
Rajan S Prasad
No ratings yet
Home Products Components & Parts Engine
Document9 pages
Home Products Components & Parts Engine
Julian Mora
No ratings yet