Home > Commonly overlooked security hazards
Tech Article:
EMAIL THIS LICENSING & REPRINTS

Commonly overlooked security hazards

18 May 2005 | by Dave Piscitello

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   

Security expert Dave Piscitello offers tried-and-true practices for identifying and alleviating security risks, and implementing guidelines that will protect your company from the next nasty threat. Here, Dave covers the ten most commonly overlooked security hazards and easy ways to prevent them from placing your network at risk.

  1. Lax policy definition and enforcement – You cannot determine compliance to, enforce, or demand accountability to a policy if you don't have and maintain one.
  2. Overly permissive access policies – Access is one example where more is not better.
  3. Single line of defense - Does your security resemble a soft-boiled egg?
  4. Default installations of software - These are among the most common flaws, and often lead to escalated privilege attacks.
  5. Default and vulnerable configurations - Under most default conditions, devices join networks, even when this is not good for security.
  6. Weak authentication methods - You must apply two or more credentialing criteria.
  7. Inadequate auditing, logging, analysis - Auditing is not an in- depth activity in most organizations, but it should be.
  8. Flawed security processes, unsecured workflows - Mis-configurations commonly expose assets to attack.
  9. Weak security testing and auditing methodologies - Testing and policy changes are related events.
  10. Weak incident response and business continuity plans - Chicken Little is not a role model for a CSO.

Check out Dave's full-length presentation here.

Dave Piscitello is an authority on network security with more than 30 years experience in data networking and telecommunications. Dave is President of Core Competence Inc., founder and program manager of The Internet Security Conference, and chairman of Networld+Interop's Security Conference. Dave has authored books on internetworking and remote access, and regularly publishes articles on a variety of subjects including switched internetworking, ATM and Gigabit Ethernet, Internet security, and virtual private networking.

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


RELATED CONTENT
Network Security Products
Securing the new network architecture
What security measures are recommended for each level of the TCP/IP model?
Securing the new network architecture: Security for distributed, dynamic networks
What is data loss prevention? -- An introduction to DLP
To simulate voice over IPSec VPNs which simulators work?
Is my firewall setting preventing wireless network guest access?
How to configure Windows Server 2008 advanced firewall MMC snap-in
How to retrieve passwords from locked laptops
How to interpret test scan results to assess network vulnerability
What commands allow network traffic to pass through PIX firewalls?

Network Security Monitoring
Networking data visualization not just for pointy-headed bosses
Visual Security Analysis -- 'Applied Security Visualization,' Chapter 5
SIEM platform secures university's open network
Network forensics appliance gets storage boost and 10 GbE support
Tracking NetFlow over MPLS helps airline with compliance
Securing the new network architecture: Security for distributed, dynamic networks
When it comes to data loss prevention, networking should be part of the conversation
What is data loss prevention? -- An introduction to DLP
What are the best methods for handling rogue access points?
Internet monitoring vendor adds throttling, filtering, to its appliance

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
Nessus  (SearchNetworking.com)
network analyzer  (SearchNetworking.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary




Network Management features current networking news and in-depth network white papers.
Enterprise IT Solutions explained by experts, make your business decisions with research.
HomeNewsTopicsITKnowledge ExchangeTipsAsk the ExpertsMultimediaWhite PapersNetworking Product Trials
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2000 - 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts