Premium Essay

Defense in Depth

In:

Submitted By blog2vm
Words 805
Pages 4
Many critical infrastructures require simplicity in data integration with internal and external networks. While providing the simplicity many administrators are losing focus on vulnerabilities the resources are exposed to, which otherwise is not a trade-off for simplicity. In addition to this, the attacks are getting more complex in nature and are also increasing the risk of losing Information Assurance (IA).

Protection against the attacks can be done using many security services in cumulative way for IA. These include Availability, integrity, confidentiality and non-repudiation. Thus to provide a robust Information Assurance (IA), one has to focus on four primary key elements: people, technology, application and operations.

‘Defense in depth’ is a strategy, which can help achieve IA while keeping the balance between operational cost and procedures, performance and protection capabilities. To protect your assets defense in depth helps to resist or progressively weaken attack. It is like an onion and to reach the inner most part (i.e. asset), one has to pass through layers and hope if one layer fails other layer will surely detect and drop.

There are many Tools, Techniques and Methodology (TTM) used by attacker. Hence there is no single procedure/method/strategy for blocking these attacks. For example firewall cannot provide protection if the user in LAN targets another host in the LAN. Hence it calls for ‘defense in depth’ where if one layer fails to detect/deter attacker, another layer will surely be successful in blocking the attempt.

Defensive layers

The ‘defense in depth’ strategy starts with documentation and this helps organization to self access and in turn helps in deploying effective countermeasures. These policies should reflect the proactive approach model. Also, the final stage is mitigation but to reach there we have to understand the

Similar Documents

Free Essay

Defense in Depth

...Discuss the pros and cons of defense in depth, for example the need for defense in depth versus satisfying other operational requirements. The business has to run in order to stay in business. The best security is leaving the system turned off. If the system is turned off, the business will not run and therefore the business will not make money. This simple sentence directly relates to the implementation of defense in depth within an enterprise environment. The multiple rings of defense portrayed in Course Module Five (5), reflected a defense in depth approach (Course Content 5). The rings represented a specific layer of defense starting with the lock on the door, an alarm, a security guard, vibration sensors, etc. The controls listed were all physical controls. Of course, the course recommended adding camera systems, which in today’s world are expectations for minimum physical security controls. Not all organizations can afford cameras and the associated costs of storage media. The industry (Navigating the PCI DSS, 2010) standard PCI DSS lists the requirement to record traffic in and out of sensitive areas. The specific requirement calls out to record or user other means of monitoring traffic in and out of sensitive areas. This means that recording is the best practice, however it is costly and not all organizations can implement cameras, however an organization may put badge readers in place to track users coming into and out of sensitive areas to meet the intent of the...

Words: 420 - Pages: 2

Premium Essay

Balanced Protection and Defense in Depth

...Illustrate the concepts of Balanced Protection and Defense in Depth and give a specific example of each. Balanced Protection: No matter how an adversary attempts to accomplish the goal, effective elements of the security system will be encountered. If you had a completely balance security system, all barriers or elements would take the same time to penetrate. A completely balanced security system would also have the same probability of detecting penetration at each barrier or element. However, complete balance is not possible and sometimes not desirable. All of the hardware elements of the system must be installed, maintained, and operated properly to have the most effective balanced security (Hart, 2002). Alcatraz is an example of Balanced Protection except in this example we are trying to keep the prisoners inside instead of preventing them from getting inside. You have to work from the inside out in this example. The good thing about this example is you know who your adversaries are. They are the prisoners that are locked up. There is also a possibility that someone from the outside could possible try to break in to break out a prisoner. You have your prisoner deep inside the prison surrounded by concrete and bars, and all cells and doors are locked, this is your first element or barrier. These prisoners are guarded by prison guards 24/7, which is your second element. They didn’t use cameras in prison back then so we can forget that for this example. Next you have tall outer...

Words: 1381 - Pages: 6

Free Essay

Deploying Application Firewall in Defense in Depth Principle

...Deploying Application Firewall in Defense in Depth Principle Abstract Information security should be a priority for businesses, especially when they are increasingly involved in electronic commerce. With the understanding that securing an operating system successfully requires taking a systematic and comprehensive approach, security practitioners have recommended a layered approach called defense-in-depth. The cost and complexity of deploying multiple security technologies has prevented many organizations from achieving their information security goal. In view of these constraints and in compliance with recent with recent corporate and industry regulations like Sarbanes-Oxley Act and Payment Card Industry Data Security Standard, businesses now deploy application firewalls as security measures. Based on the foregoing, the author has recommended the use of application firewalls as a single platform for achieving layered security through network protection, application protection and data protection. This paper commences by examining the defense in depth theory and the types of application firewall and the author concludes by citing the Institute for Computing Applications (IAC) of the Italian National Research Council (CNR) as an example of an organization which engaged application firewalls in resolving its network security problem. Research Analysis/ Body The development of Information security is of paramount importance to organizations that have online presence...

Words: 1701 - Pages: 7

Premium Essay

Paper 2

...Paper 2 Submitted by: Courtnay Avery Keller Graduate School of Management SE578 3/20/11 Table of Contents How could administrative, technical, and physical controls introduce a false sense of security?...............3 What are the consequences of not having verification practices?..............................................................3 What can a firm do to bolster confidence in their defense-in-depth strategy?..........................................4 How do these activities relate to best practices? ……………………………………………………………………………………4 How can these activities be used to demonstrate regulatory compliance? …………………………….………………5 References …................................................................................................................................................6 How could administrative, technical, and physical controls introduce a false sense of security? Administrative, Technical, and Physical controls introduce a false sense of security by the indication of what we use to safeguard delicate data and protect individuals’ privacy. Any complex system is prone to inherit a false sense of security. Having a false sense of security is widespread among individuals who own and operate a personal computer within their homes. Nothing is ever really secured. It would be safe to say that something is secured within the terms of information security. [ (Nahn, 2008) ] The idea of purchasing a virus protection suggests that all personal information...

Words: 855 - Pages: 4

Premium Essay

Technical Controls Paper

...Technical Controls Paper A.M SE578 Gordon Francois Keller Graduate School of Management January 22, 2012 Technical Controls Technical controls use technology as a basis for controlling the access and usage of sensitive data throughout a physical structure and over a network. Technical controls are far-reaching in scope and encompass such technologies as: * Encryption * Smart cards * Network authentication * Access control lists (ACLs) * File integrity auditing software Logical controls (also called technical controls) use software and data to monitor and control access to information and computing systems. For example: passwords, network and host based firewalls, network intrusion detection systems, access control lists, and data encryption are logical controls. An important logical control that is frequently overlooked is the principle of least privilege. The principle of least privilege requires that an individual, program or system process is not granted any more access privileges than are necessary to perform the task. A blatant example of the failure to adhere to the principle of least privilege is logging into Windows as user Administrator to read Email and surf the Web. Violations of this principle can also occur when an individual collects additional access privileges over time. This happens when employees' job duties change, or they are promoted to a new position, or they transfer to another department. The access privileges required...

Words: 905 - Pages: 4

Premium Essay

Risk Assessment Paper

...in the risk management process (eHow, 2011). A Risk Assessment is periodic assessment of the risk and magnitude of the harm that could result from the unauthorized access, use, disclosure, disruption, modification, or destruction of information and information systems that support the operations and assets of the organization. A risk assessment should include a consideration of the major factors in risk management: the value of the system or application, threats, vulnerabilities, and the effectiveness of current or proposed safeguards. Many organizations perform risk assessments to measure the amount of risks that could affect their organization, and identify ways to minimize these risks before a major disaster occurs. Department of Defense Information Systems Agency (DISA) follows guidelines and policies governed by processes by which the organization assesses and manages exposure to risks. In this paper the subject to identify is the risks and potential effects associated with the areas of the organization pertaining to security, auditing, and disaster recovery. Security is divided in three major areas: Physical security includes access to the building, offices, and the rooms housing the organization’s servers and other critical computing devices. External threats to the organization’s computing network such as...

Words: 1263 - Pages: 6

Premium Essay

Emerging Cybersecurity Policies in the Federal Government

...Emerging Cybersecurity Policies in the Federal Government Information Assurance Officer and Risk Management Analyst Department of Defense. Emerging Cybersecurity Policies in the Federal Government Information Assurance Officer and Risk Management Analyst Department of Defense. CSEC 655 UMUC Individual Assignment 1 September 16, 2014 CSEC 655 UMUC Individual Assignment 1 September 16, 2014 Table of Contents Emerging Cybersecurity Policies in the Federal Government 3 Emerging Policies and Practices 4 Defense in Depth (DID) 5 Security Risk Frameworks 6 Test Driven Development 8 Business Service Frameworks 9 Acceptance and Preparation for Failure 11 The Federal Government and these Emerging Policies and Practices 13 The Feds and Defense in Depth 14 The Feds and Security Risk Frameworks 14 The Feds and Test Driven Development 16 The Feds and Business Service Frameworks 17 The Feds and Acceptance and Preparation for Failure 19 How could the Feds continue to improve 20 References 22 Emerging Cybersecurity Policies in the Federal Government One of the largest and most important enterprises there is to protect in the cyber security realm are the various networks that make up the federal government. This massive undertaking to secure the systems, networks, and data of the various governmental agencies is a never ending uphill battle. The requirements of the federal government enterprise to be globally far reaching, as well...

Words: 6354 - Pages: 26

Premium Essay

Not Applicable

...future; that no matter what controls we put into place - those controls will be subverted at some time in the future. So far, it seems that increasing numbers of "high security" organizations have been penetrated or fallen prey to criminal activites; additionally, wth globalization these problems have begun to affect individuals privacy and security of the information that they provide to governments and companies (and "friends), so that they can receive services. There seem to be increasingly frequent incidents perpetrated by both insiders and outsiders against commercial and government organizations. The number of known vulnerabiiltes is approaching 50,000 and is growing by 10-15 a day. The sophistication of threats, both internal and external, is growing at something around 2000% per decade. New modes or methods of attack seem to be invented daily - bad things happen that are not repeats of prior actions. Social engineering has become part of our culture through social media and as a result of desire of companies and governments for information about customers, citizens, (and about 'marks). To be vigilant one must know what (s)he is looking for; and we are simply not able predict what might happen in the future; and there is ample evidence that today's best predictive models are not very good at doing so . Furthermore, vigilance is expensive in actual and theoretical resources - it takes people, technology, dollars, and time, and it takes experience, training...

Words: 1509 - Pages: 7

Premium Essay

Statistical Evidence Of Mitt Romney

...The first analysis of evidence I’ll go depth is the statistical evidence. Which happens in the passage when Hayes mentions Mitt Romney making it a secondary source. The statement made about Romney paying a tax rate under 14 percent in 2010 is statistical evidence. The main idea we can conclude from this evidence is that Romney whose net worth was estimated at a quarter of a billion dollars managed to find a loophole that allowed him to pay taxes just under 14 percent. This evidence supports that the loophole is done by an individual who gathers investing gains and therefore is able to become taxed at a low rate. The low rate becomes exact when relating to Romney which appears to be a strength that is objective due to the accurate and hard evidence...

Words: 383 - Pages: 2

Free Essay

Hacking Countermeasures & Tech., Lot2-Task1

...21 Nov 2011 Defense Against Denial of Service (DoS) Attacks A. University Network Diagram illustrates nature of DDoS attack in Red Hacking POWER 10 11 Cisco 2517 RS232 NMS IN BAND RESET Speed 1 3 5 7 9 11 Link/Act Speed 13 15 17 19 21 23 Link/Act Speed 25 27 29 31 33 35 Link/Act Speed 37 39 41 43 45 47 In Use Link/Act Link/Act In Use Link/Act Console 47 45 Pwr Status Up RPSU Base Down Speed 2 4 6 8 10 12 Link/Act Speed 14 16 18 20 22 24 Link/Act Speed 26 28 30 32 34 36 Link/Act Speed 38 40 42 44 46 48 Link/Act 46 48 BayStack 5 520-48T-PW R Speed 1 3 5 7 9 11 Link/Act Speed 13 15 17 19 21 23 Link/Act Speed 25 27 29 31 33 35 Link/Act Speed 37 39 41 43 45 47 In Use Link/Act Link/Act In Use Link/Act Console 45 47 Pwr Status Up RPSU Base Down Speed 2 4 6 8 10 12 Link/Act Speed 14 16 18 20 22 24 Link/Act Speed 26 28 30 32 34 36 Link/Act Speed 38 40 42 44 46 48 Link/Act 46 48 BayStack 5 520-48T-PW R 12 1 2 3 4 5 6 7 8 9 Speed 1 3 5 7 9 11 Link/Act Speed ...

Words: 1397 - Pages: 6

Premium Essay

Bioluminescence Paper

...Bioluminescence Relating to the Everyday Processes of Deep-Sea Marine Life: A Review of the Literature Kingshuk Mazumdar Brookfield Central High School Abstract This review of the literature will analyze three publications that discuss the effects of bioluminescence on everyday deep-sea marine life. Bioluminescence is a unique adaptation made by many creatures living in the abyssal depths of the oceans. Originating in primitive bacteria and dinoflagellates, it has, since the origins of life, evolved and spread to other deep-sea organisms. It is incontrovertible as to whether or not this acclimatization has altered life. However, there exists a dispute as to how it has done so. Some scientists believe that bioluminescence exists solely as an offensive trait, used to attract. Others believe that it is employed only in defensive situations. Regardless of recurrent controversy, it is lucidly demonstrated that rather than one or the other bioluminescence refines all aspects of deep-sea marine life. Final Outline I. Introduction A. As one ventures into the depths of the ocean, the expansive spectrum of the transformations of marine life rapidly emerges. At 100 meters…(Schrope, 2007). B. This is where the most startling and extraordinary transformations of evolution occur. C. In an abyssal world of darkness more than 1,000 meters under the sea, bioluminescent creatures have transmogrified to chemically generate lights within their bodies refining all processes...

Words: 1863 - Pages: 8

Premium Essay

Deep Sea Biology Essay

...List and describe three major functions of bioluminescence. About 50% of all jellyfish are bioluminescent. What do they mostly use bioluminescence for? 1) Mate-finding. Anglerfish use their bioluminescence in part to attract mates. The female is much larger and will attract one or more males to her using her bioluminescent lure. The males will then attach, fuse, and atrophy leaving nothing but a sack of sperm for the female to use for fertilization. [1] 2) Defense. Though the ways in which jellyfish use bioluminescence and for what purpose is still being explored, “…jellyfish use it primarily for defense.”[e] Atolla lanat is a species of jellyfish that uses a ‘burglar alarm’ method of defense[j]. When a predator comes near the jellyfish, or towards a group of jellyfish, it will use an array of flashes to make itself known and to attract much larger predators that will eat what is about to eat itself. Jellies have also been observed to exhibit warning coloration and have been used as a sacrificial tag. [e] 3) Offense. Deep sea predators will often use bioluminescence to illuminate prey, like the Heterophotus ophistoma which uses a searchlight to see prey which is useful for finding transparent prey which are invisible in down welling...

Words: 575 - Pages: 3

Free Essay

Key Concepts

...The Psychodynamic Approach This essay will discuss the Psychodynamic approach. It will address the psyche, unconscious and conscious, psychosexual stages of development, defense mechanisms and finally the strengths and limitations of the approach. The psychodynamic approach is about the unconscious processes which underpin our thoughts, feelings and behaviors. It is important in early childhood experiences (conscious and unconscious) in determining our later development because aspects of early relationships are transferred onto relationships in the present, which is known as transference. Psyche The psychodynamic approach is also about the ID, ego and super ego. The ID is like a little devil on your shoulder, which may include thoughts like sex, aggression, drinking and eating. The Ego is the conscious and is rational trying to balance things out between the ID and the super ego. The Super ego is like the angel on your shoulder it has a moral conscious and prevents us acting out ID’s wishes. Conscious and unconscious Freud’s ideas about the mind (as suggested in Cardwell psychology p886) have been used like an iceberg . The iceberg above the water is the conscious mind and the part underneath the water being the unconscious mind. Looking at the image, the ID is below the surface of consciousness, it cannot be controlled. The ego and super ego is partially conscious and partially unconscious. Nobody is aware of the unconscious influences. There are five...

Words: 692 - Pages: 3

Premium Essay

Critical Thinking

...clearly. It’s easy to understand what the author’s point and what it is that she is discussing. She gives us numbers and statistical evidence that helps clarify any questions that we might have about “by how much” sexual-assault cases have risen by. Though the author’s topic is clear, she could have clarified it a little more by adding in why these sexual-assault cases are rising and talk about how the Pentagon is planning on fixing this serious issue. Accuracy: How accurate is this reading and how could we check on it? I believe that this article is very accurate. The author uses statistical evidence to state points and get thoughts across to the reader. Since the author of this article uses statistics and specific groups such as the Defense Department, and Pentagon, we can check the information through them. Precision: Should more specific details have been included in the reading? As stated in accuracy, the author uses statistics and specific groups regarding the sexual attack reports in the military, making this reading very specific and precise. My thoughts, however, is that the author could have made this article a little more precise by telling the reader about specific cases or even why these rates are on the rise. Relevance: Is this reading related to the topic at hand? The title of the article is Sexual-Assault Cases in Military Rise Sharply which obviously lets you know right away that this article is going to be about sexual-assault cases in the military...

Words: 1672 - Pages: 7

Premium Essay

Perimeter Defense Research Paper

...Mr. Cameron, Sir, I would be happy to discuss our perimeter defenses. When defining the perimeter we must first ask, are we discussing a physical or a logical (computer) layer of defense? When you observed the guards, fences, and TV cameras, you were observing the physical perimeter defenses. When your colleague mentioned his network perimeter, he was referring to the defenses established to protect your information technology systems (networks, computers, data storage devices, and information). Network defenses include a variety of both hardware and software resources that mimic the function of guards, fences, and TV cameras, but focus on the protection of computer systems and information. What follows is not an all-inclusive list of network defenses, however, they are some of the more common examples that support information security. Like traffic cops, routers direct electronic media traffic in and out of our networks. A router is typically the first and last line of defense as it is commonly on the outskirts of the network defense perimeter. Picking up where the router left off, a firewall operates on a specified set of rules which determine what is allowed to pass. The different types of firewalls include: (a) static packet filters, (b) stateful firewalls, and (c) proxies. Firewalls do not necessarily know what legitimate traffic...

Words: 521 - Pages: 3