[Agenda] [Examples] [Network Partitioning] [Concepts] [Policy] [Process] [Organization] [HW-SW] [Cases studies] [Conclusion] [Resources]
[first slide] Case with network service provider [previous slide] [next slide]
Customer responsibility
  Service Provider responsibility
Yes   (1) Define domains to partition
  Yes (2) Determine service flows between domains and draw them
Yes   (3) Approve and apply the security policy to the service flows
  Yes (4) Apply the service flows to filtering devices
Yes   (5) Audit & validate the filtering devices policies
  Yes (6) Update the service flows drawings


â
* The exchange of the security policy between Customer & Service Provider must be formalized

* Repudiation must not be possible from both parties

*********************************************************************
HSC ® © Hervé Schauer Consultants December 1999 - 142, rue de Rivoli - F-75001 Paris - France
Phone: +33 141 409 700 - Fax: +33 141 409 709 - Email: <secretariat@hsc.fr>
- Page 63 -