[Agenda] [Examples] [Network Partitioning] [Concepts] [Policy] [Process] [Organization] [HW-SW] [Cases studies] [Conclusion] [Resources]
[first slide] What is Network Partitioning? [previous slide] [next slide]
Network partitioning figure

* Dividing internal network into domains

* Applying filters between domains using existing network devices
o These network devices become filtering devices: security policy enforcement points = SPEP
o Most network devices have IP filtering capabilities

* Filtering devices allow only necessary service flows between domains

* Network partitioning is also called network segregation or network compartimentalization

*********************************************************************
HSC ® © Hervé Schauer Consultants December 1999 - 142, rue de Rivoli - F-75001 Paris - France
Phone: +33 141 409 700 - Fax: +33 141 409 709 - Email: <secretariat@hsc.fr>
- Page 10 -