Network security evaluation : using the NSA IEM / Ed Fuller.

Format:

Book

Author/Creator:

Fuller, Ed.

Language:

English

Subjects (All):

Computer networks--Security measures.

Computer networks.

Computer security.

Physical Description:

1 online resource (464 p.)

Edition:

1st ed.

Place of Publication:

Rockland, Mass. : Syngress Publishing, c2005.

Language Note:

English

Summary:

Network Security Evaluation provides a methodology for conducting technical security evaluations of all the critical components of a target network. The book describes how the methodology evolved and how to define the proper scope of an evaluation, including the consideration of legal issues that may arise during the evaluation. More detailed information is given in later chapters about the core technical processes that need to occur to ensure a comprehensive understanding of the network's security posture. Ten baseline areas for evaluation are covered in detail. The tools and examples

Contents:

Cover; Contents; Prologue Why the IEM?; Chapter 1 Introducing the INFOSEC Evaluation Methodology; Chapter 2 Before the Evaluation Starts; Chapter 3 Setting Expectations; Chapter 4 Scoping the Evaluation; Chapter 5 Legal Principles for Information Security Evaluations1; Chapter 6 Building the Technical Evaluation Plan; Chapter 7 Starting Your On-Site Efforts; Chapter 8 Network Discovery Activities; Chapter 9 Collecting the Majority of Vulnerabilities; Chapter 10 Fine-Tuning the Evaluation; Chapter 11 The Onsite Closing Meeting; Chapter 12 Post-Evaluation Analysis

Chapter 13 Creating Measurements and Trending ResultsChapter 14 Trending Metrics; Chapter 15 Final Reporting; Chapter 16 Summing Up; Appendix A Examples of INFOSEC Tools by Baseline Activity; Technical Evaluation Plan Outline and Sample; Index; Related Titles

Notes:

Includes index.

ISBN:

1-281-03559-9

9786611035594

0-08-048943-5

1-59749-991-9

OCLC:

183265831