- Detecting and preventing network intrusions
- Integrating security into networks
- Managing firewalls
- Network access controls
- Wireless network security management
Email Alerts
-
Defending against Firesheep: How to prevent a session hijacking attack
A new exploit tool called Firesheep revealed just how vulnerable applications like Facebook and Twitter are to session hijacking attacks. Mike Chapple lists four steps you can take to protect your midsized business.Tip
-
Key technologies in a network perimeter intrusion defense strategy
In this article, Joel Snyder introduces technologies that act as strong network perimeter defenses.Tip
-
Social engineering attack: How to remove rogue security software
Social engineering attacks trick users into installing rogue security software. Users need to be educated to avoid falling prey, and IT needs the tools to remove the fake security software.Tip
-
SEO security: How to stop search engine optimization security attacks
When attackers can place malicious sites high in Google rankings, you may be at risk. Learn how to defend against SEO poisoning.Tip
-
Buying an IPS: Determine your form factor requirements
Your choice of either a standalone IPS appliance, or one integrated in a firewall, gives your different levels of functionality to consider as well. This is the fifth in a seven-part series.Tip
-
Buying an IPS: Determine your performance requirements
Intrusion prevention system performance is dependant on many variables and how it is configured. Test with your network traffic before investing in an IPS. This is the fourth in a seven-part series.Tip
-
Buying an IPS: Decide which applications and protocols your IPS will protect
Application and protocol coverage varies in signature-, rate- and behavior-based intrusion prevention systems. Understanding the differences is crucial to your IPS investments. This is the third in a seven-part series.Tip
-
Your USB port management options
When it comes to managing USB ports, the choice is yours. Mike Chapple reviews your three best options.Tip
-
Buying an IPS: Determine the approach you require
Signature-, rate- and behavior-based intrusion prevention systems each offer different network security capabilities. Understand each before investing in IPS. This is the second in a seven-part series.Tip
-
Buying an IPS: Determine why you need intrusion prevention
Learn how to develop the right IPS strategy for your network by first asking why your organization needs intrusion prevention. This is the first in a seven-part series.Tip
- VIEW MORE ON : Detecting and preventing network intrusions
-
Secure software development lifecycle: An approach for SMBs
Small businesses that lack the resources to implement the full MSDL can use its basic tenants to provide more secure software development.Tip
-
E-book: A technical guide to network security monitoring
Your organization’s network is more than a collection of pipes through which traffic flows: it’s your business’ fundamental IT architecture. Your security devices keep a watchful eye on traffic and systems, and maintain the integrity of your data and systems. Check out this guide to network security monitoring from SearchMidmarketSecurity.com.E-Book
-
Security management plan reveals essential business security upgrades
As companies create their security management plan for the coming year, they should look to upgrades in Linux and Windows operating systems, Adobe applications and Internet browsers to improve their overall security position.Tip
-
WPA security: Enabling the best WiFi security for SMBs
To choose the best WiFi security for the small or midsized business, consider using WPA Enterprise or wireless access points with WPA-E authentication, or use a Windows hosted RADIUS service. Network security expert Mike Chapple explains how to provide wireless network security.Tip
-
Key technologies in a network perimeter intrusion defense strategy
In this article, Joel Snyder introduces technologies that act as strong network perimeter defenses.Tip
-
Write it down: Network security documentation basics
Joel Snyder reveals the specific network security documentation that will help move disaster recovery plans along.Tip
-
Divide and conquer: Manage network traffic with network segmentation
Joel Snyder explains how to "divide and conquer" using network segmentation.Tip
-
Using NetStat commands and Microsoft Port Reporter tool to find network connections
Expert Tom Chmielarski answers a reader's question about how to determine what programs are making connections to the Internet or other network systems.Tip
-
Buying an IPS: Determine your form factor requirements
Your choice of either a standalone IPS appliance, or one integrated in a firewall, gives your different levels of functionality to consider as well. This is the fifth in a seven-part series.Tip
-
Buying an IPS: Determine your performance requirements
Intrusion prevention system performance is dependant on many variables and how it is configured. Test with your network traffic before investing in an IPS. This is the fourth in a seven-part series.Tip
- VIEW MORE ON : Integrating security into networks
-
How to use an edge firewall for network bandwidth management
These five tips will help your organization apply quality-of-service controls on a network perimeter firewall.Tip
-
IPsec (Internet Protocol Security)
IPsec (Internet Protocol Security) is a framework for a set of protocols for security at the network or packet processing layer of network communication.Definition
-
Divide and conquer: Manage network traffic with network segmentation
Joel Snyder explains how to "divide and conquer" using network segmentation.Tip
-
Using NetStat commands and Microsoft Port Reporter tool to find network connections
Expert Tom Chmielarski answers a reader's question about how to determine what programs are making connections to the Internet or other network systems.Tip
-
PCI DSS requirement: Building and maintaining a secure network
The first PCI focus area requires a set of documented configuration standards, perimeter and endpoint protection.Tip
-
Securosis takes aim at midmarket security needs
Editorial Director Michael S. Mimoso talks with the crew at analyst firm Securosis about how the company's research will target midsized companies.Podcast
-
Windows Firewall with Advanced Security beefs up Windows 7 security
Windows Firewall with Advanced Security extends security to Windows 7 and Windows Server 2008 end users.Tip
-
Checklist: Three firewall configuration tips
If you are revisiting your firewall configurations, consider these three tips to help you monitor and manage your network traffic.Tip
-
Web application firewall worth depends on developer efforts
SMBs are buying Web application firewalls (WAF) for PCI DSS compliance, but if they are installed and forgotten, they won't be compliant or secure.Tip
-
How many firewalls do you need?
Whether your organizations needs multiple sets of firewalls depends on whether they will protect clients, servers or both and what kind of traffic they will monitor.Tip
- VIEW MORE ON : Managing firewalls
-
How to keep a remote access VPN working smoothly
Test your VPN deployment by reviewing these three important tips from network pro Joel Snyder.Tip
-
How to configure IIS authorization and manager permissions
David Shackleford reviews authorization rules that will help you secure your IIS 7 Web server.Tip
-
Insurance company finds relief with Forefront user provisioning tool
First American Title Insurance Company cuts identity management user provisioning time from days to seconds with Microsoft Forefront Identity Manager 2010.Article | 23 Mar 2010
-
Considering two-factor authentication? Do cost, risk analysis
One-time passwords and other technologies are effective protection, but midmarket companies have to consider the expense and management overhead.Tip
-
Five NAC-like endpoint settings enforced with group policy
Complexity and cost may keep you from investing in NAC. Fear not, endpoint integrity enforcement, for example, can be achieved through directory group policies.Tip
-
Tradeoffs and advantages of network access control with Microsoft NAP
Microsoft NAP's endpoint security policy compliance checks and integration with third-party security products make it an attractive option over traditional network access control solutions.Tip
-
NAC Basics: Laying the groundwork
What exactly is NAC, how can you know if it's right for your business and how can you implement a NAC configuration? In this first video of a two-part series, Joel Snyder of Opus One explains what NAC is and how it can benefit your company.Video
-
NAC Basics: Implementation and integration
What is NAC, how can you know if it's right for your business and how can you implement a NAC configuration? In this second video of a two-part series, Joel Snyder explains NAC implementation and integration basics.Video
-
Understand the differences in network access control solutions
Overcome the industry's varied and poor definitions for network access controls. Learn which type of NAC best fits your organization by understanding its enforcement method.Tip
-
Handling the politics of network access control policies
Midmarket IT staffs need to think beyond network security policies in a NAC rollout, and take into consideration business needs such as HR policies, compliance mandates and partner relationships.Tip
- VIEW MORE ON : Network access controls
-
How can solution providers augment BlackBerry PlayBook security?
Expert Lisa Phifer explains how to help customers with PlayBook Security, and reveals future PlayBook enterprise features.Tip
-
WPA security: Enabling the best WiFi security for SMBs
To choose the best WiFi security for the small or midsized business, consider using WPA Enterprise or wireless access points with WPA-E authentication, or use a Windows hosted RADIUS service. Network security expert Mike Chapple explains how to provide wireless network security.Tip
-
A wireless LAN security update: Developments in technology and law
Given advancements in technology and law, Joel Snyder offers up four tips that will help you secure your wireless LAN.Tip
-
Panel debates 'buy vs. build' mobile device security policy management
A panel discussion at InfoSec World 2010 focused less on the technology necessary to secure non-BlackBerry devices and more on the attendees' concerns with the data privacy laws.Article | 28 Apr 2010
-
Configuring a Windows network infrastructure: Wired, wireless security
Jennifer Jabbusch explains how four Windows network components will help you achieve better wireless and wired port security authentication.Tip
-
Find remote mobile device wipe solutions on a budget
Several remote mobile device wipe solutions are within the price range of a midmarket company. This is the second of two parts.Tip
-
Remote phone lock and GPS tracking counter smartphone security risks
Lost or stolen smartphones pose serious security risks to data, but remote device lock technology and GPS tracking can help mitigate those risks. This is the first of two parts.Tip
-
Avoid security risks of Free Public WiFi wireless ad hocs
Unprotected users who connect to unknown open SSIDs -- such as the widely-spoofed ad hoc SSID "Free Public Wifi" -- are leaving themselves vulnerable to man-in-the-middle attacks and personal identity theft.Tip
-
Five steps to eliminate rogue wireless access
Unauthorized wireless access points aren't always malicious. Learn how to distinguish between them and mitigate threats posed by rogue APs.Tip
-
Three steps to achieve security for smartphones within a budget
Expensive mobile device security management systems don't fit within midmarket budgets. Following these three steps will offset the risks posed by unsecured mobile devices -- and do so within budget.Tip
- VIEW MORE ON : Wireless network security management