Towards Automated Provisioning of Secure Virtualized Networks
[ Source: Association for Computing Machinery ]
January 2008-
This paper from Hewlett-Packard describes a secure network virtualization framework that helps realize the abstraction of Trusted Virtual Domains (TVDs), a security-enhanced variant of virtualized network zones. The framework allows groups of related virtual machines running on separate physical machines to be connected together as though they were on their own separate network fabric and, at the same time, helps enforce cross-group security requirements such as isolation, confidentiality, security, and information flow control. The framework ....
Stopping Data Leakage: Exploiting Your Existing Security Investment
[ Source: Sophos ]
September 2008-
As attitudes to work and information continue to evolve away from those of the past, organizations are become more aware of the acute need to control the information that flows into, through and out of their networks. This paper demonstrates the need for a high-profile acceptable use policy to prevent data leakage, gives practical guidance on how to use current investments in IT security technologies at the gateway and endpoint to support this policy, and ....
Network Access Control, Part II
[ Source: InformationWeek ]
June 2007-
Compliance initiatives are driving deployments of network access control, but which system is best? Many vendors, both new and established, are offering NAC solutions. Finding a product that meets an organization's needs may be daunting given the number of options, but a fit is out there. This report analyzes enterprise use of NAC, based on the authors' expertise and market knowledge, as well as NWC polls of members of the IT community.
This ....
Top Five Strategies for Combating Modern Threats: Is Anti-Virus Dead?
[ Source: Sophos ]
December 2008-
Today’s fast, targeted, silent threats take advantage of the open network and new technologies that support an increasingly mobile workforce. Organizations need innovative approaches to protect the Web, e-mail servers, and endpoints. This paper discusses the security implications of modern threats, analyzes where emerging technologies can add real value, and highlights five key strategies for ensuring solid protection from malware.
Zscaler Explains Its In-The-Cloud Service
[ Source: Zscaler ]
August 2008-
Most of today’s security products—such as firewalls, VPN, IDS/IPS—protect corporate networks and servers from threats coming from the Internet. Newer threats, such as bots, phishing, and malicious active content, target end users accessing Internet resources and infect corporate networks. Other than deploying caching and URL filtering products, corporations have done very little to inspect user-initiated traffic and protect their users. Web 2.0 applications, such as social and business networking, create both ....