[Agenda] [Examples] [Network Partitioning] [Concepts] [Policy] [Process] [Organization] [HW-SW] [Cases studies] [Conclusion] [Resources]
[first slide] (1) Determine domains to partition [previous slide] [next slide]
* Apply business needs
o Corporate security policy
o Specific security policies of jobs, departments, etc
o Exchanges type

* Adapt the network
o Homogenize protocols towards IP and avoid protocols encapsulation
o Rationalize in a limited number of interconnections some parts
o Find what is your external perimeter
   - list all interconnections
o Other architecture issues

* A security domain should
o bind an existing entity within the organization
   - project, department, etc
o head by a responsible person

* Interconnection between domains becomes the security policy enforcement points (SPEP)


*********************************************************************
HSC ® © Hervé Schauer Consultants December 1999 - 142, rue de Rivoli - F-75001 Paris - France
Phone: +33 141 409 700 - Fax: +33 141 409 709 - Email: <secretariat@hsc.fr>
- Page 64 -