![[first slide]](../icons/info.gif){kind=icon}
|
Case with network service provider | ![[previous slide]](../icons/prev.gif){kind=icon}
|
![[next slide]](../icons/next.gif){kind=icon}
|
|
| Customer responsibility | ||
| Service Provider responsibility | ||
| Yes |  Define domains to partition | |
| Yes |  Determine service flows between domains and draw them | |
| Yes |  Approve and apply the security policy to the service flows | |
| Yes |  Apply the service flows to filtering devices | |
| Yes |  Audit & validate the filtering devices policies | |
| Yes |  Update the service flows drawings | |
The exchange of the security policy between Customer & Service Provider
must be formalized
Repudiation must not be possible from both parties
® © Hervé Schauer Consultants December 1999 -
142, rue de Rivoli -
F-75001 Paris -
France Phone: +33 141 409 700 - Fax: +33 141 409 709 - Email: <secretariat@hsc.fr> |
- Page 63 - |