Scribd Logo
Importer

Bienvenue sur Scribd !

  • Securing The Network: Building A Simple Network

    Transféré par

    ธนวรรณ โภคาอนนต์
    11 vues11 pages
    ICND110S01L02

    Titre original

    ICND110S01L02

    Copyright

    © © All Rights Reserved

    Formats disponibles

    PPS, PDF, TXT ou lisez en ligne sur Scribd

    Avez-vous trouvé ce document utile ?

    Ce contenu est-il inapproprié ?

    Signaler ce document
    ICND110S01L02

    Droits d'auteur :

    © All Rights Reserved
    Téléchargez comme PPS, PDF, TXT ou lisez en ligne sur Scribd
    Signaler comme contenu inapproprié
    11 vues11 pages

    Securing The Network: Building A Simple Network

    Transféré par

    ธนวรรณ โภคาอนนต์
    ICND110S01L02

    Droits d'auteur :

    © All Rights Reserved
    Téléchargez comme PPS, PDF, TXT ou lisez en ligne sur Scribd
    Signaler comme contenu inapproprié
    sur 11

    2007 Cisco Systems, Inc. All rights reserved. ICND1 v1.

    01-1
    Building a Simple Network
    Securing the
    Network
    2007 Cisco Systems, Inc. All rights reserved. ICND1 v1.01-2
    Closed Networks
    Attacks from inside the network remain a threat.
    2007 Cisco Systems, Inc. All rights reserved. ICND1 v1.01-3
    Open Networks
    2007 Cisco Systems, Inc. All rights reserved. ICND1 v1.01-4
    Threat Capabilities
    More Dangerous and Easier to Use
    2007 Cisco Systems, Inc. All rights reserved. ICND1 v1.01-5
    E-Business Challenge
    2007 Cisco Systems, Inc. All rights reserved. ICND1 v1.01-6
    Adversaries, Adversary Motivations, and
    Classes of Attack
    Adversaries Motivations Classes of Attack
    Nation-states
    Terrorists
    Criminals
    Hackers
    Crackers
    Competitors
    Script kiddies
    Disgruntled
    employees
    Government
    Intelligence
    Theft
    DoS
    Embarrassment
    Challenge
    Passive
    Active
    Close-in
    Insider
    Distributed
    2007 Cisco Systems, Inc. All rights reserved. ICND1 v1.01-7
    Common Threats
    Physical installations
    Hardware threats
    Environmental threats
    Electrical threats
    Maintenance threats
    Reconnaissance attacksLearning information about a target
    network by using readily available information and applications
    Access attacksAttacks on networks or systems for these reasons:
    Retrieve data
    Gain access
    Escalate their access privileges
    Password attacksTools used by hackers to compromise
    passwords

    2007 Cisco Systems, Inc. All rights reserved. ICND1 v1.01-8
    Password Attack Threat Mitigation
    Here are password attack threat-mitigation techniques:
    Do not allow users to use the same password on multiple
    systems.
    Disable accounts after a certain number of unsuccessful login
    attempts.
    Do not use cleartext passwords.
    Use strong passwords; for example, mY8!Rthd8y rather than
    mybirthday.
    2007 Cisco Systems, Inc. All rights reserved. ICND1 v1.01-9
    Summary
    Sophisticated attack tools and open networks continue to
    generate an increased need for network security policies and
    infrastructure to protect organizations from internally and
    externally based attacks.
    Organizations must balance network security needs against
    e-business processes, legal issues, and government policies.
    Establishing a network security policy is the first step in changing
    a network over to a secure infrastructure.
    Network adversaries come in many shapes and sizes and with
    multiple motivations.

    2007 Cisco Systems, Inc. All rights reserved. ICND1 v1.01-10
    Summary (Cont.)
    It is very important to provide physical installation security for
    enterprise network devices.
    Password attack threats can be mitigated.
    Restrict password use.
    Disable accounts after unsuccessful logins.
    Do not use cleartext passwords; use strong passwords.
    2007 Cisco Systems, Inc. All rights reserved. ICND1 v1.01-11

    Vous aimerez peut-être aussi