[Agenda] [Examples] [Network Partitioning] [Concepts] [Policy] [Process] [Organization] [HW-SW] [Cases studies] [Conclusion] [Resources]
[first slide] Fragmented, Device-Based vs. Centralized, Policy-Based Network Security Managment (2/2) [previous slide] [next slide]
Fragmented, Device-Based  Centralized, Policy-Based 
Security setting is not coherent between devices Security setting is coherent by design
Security setting becomes static Policy is up to date
Impossible to enforce the policy Enables policy enforcement
Doesn't protect against internal threats Protects from internal attacks
Difficult to secure mobile users Makes mobility security easier
  Network Security Managment must be Centralized and Policy-Based  

*********************************************************************
HSC ® © Hervé Schauer Consultants December 1999 - 142, rue de Rivoli - F-75001 Paris - France
Phone: +33 141 409 700 - Fax: +33 141 409 709 - Email: <secretariat@hsc.fr>
- Page 45 -