![[first slide]](../icons/info.gif){kind=icon}
|
 Audit & validate the filtering devices policies |
![[previous slide]](../icons/prev.gif){kind=icon}
|
![[next slide]](../icons/next.gif){kind=icon}
|
|
Security enforced in network devices need control mecanisms from the Security Office
Security Office must have read access to SPEPs
Logging from the SPEPs may be sent back or copied to the Security Office
Security Office
Is responsible for logging analysis & intrusion detection
May archive each security policy and SPEPs filtering
configuration
Should conduct audits by a third-party
Will be in charge of inquiries in case of incident
Will drive the move to PKI and user-based security
® © Hervé Schauer Consultants December 1999 -
142, rue de Rivoli -
F-75001 Paris -
France Phone: +33 141 409 700 - Fax: +33 141 409 709 - Email: <secretariat@hsc.fr> |
- Page 70 - |