Intrusion - Tampering - IT Library : ZDNet Asia

White Papers

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

Applications, virtualization and devices: taking back control 2008-08-13 Sophos

Employees installing legitimate but unauthorized applications are a real and growing threat to business security and productivity. Removable storage media and wireless protocols make the challenge of securing data even more complex. This paper explains why control is important and highlights how integrating this functionality into malware protection is the simplest and most cost-effective solution.

Tags: Network Security, Security Applications, Security Standards, Intrusion Detection Systems

Safe and productive browsing in a dangerous Web world: The challenge for business 2008-02-14 Sophos

With a brand new infected Web page discovered every 14 seconds, the Web has now become the key vector for online hacking attacks, as well as representing a drain on productivity for many businesses. Yet the vast majority of businesses are unprotected against today's modern Web-based malware. Few organizations have deployed proactive protection to combat the dangers and ensure that both network security and employee efficiency remain uncompromised. This paper highlights the six top tricks used by hackers and describes the three pillars of protection organizations need to safeguard their systems and resources.

Tags: Network Security, Security Management, Security Tools, Spam - E-mail Fraud - Phishing

Who's Got the NAC? Best Practices in Protecting Network Access 2007-10-01 Sophos

For many would-be network access control (NAC) adopters, what NAC is or is supposed to be is unclear. However, the companies who are successfully protecting their network aren't confused - they also have more demanding views as to what they think a NAC solution should provide. This report from Aberdeen aims to further the market's understanding of NAC - its function and capabilities - as seen through the eyes of those organizations that are getting the best results in protecting their network access. This report is brought to you by Sophos.

Tags: Security Standards, Security Tools, Intrusion Detection Systems, Network Administration

Local Authority Improves ICT Services for Schools, Boosting Classroom Innovation 2008-01-01 Microsoft

Warwickshire Local Authority sought to improve its managed ICT service for schools by streamlining application delivery and improving security for remote access to school networks. Now, IT technicians are freed up to focus on delivering better support, and teachers can easily evaluate innovative new software on school computers with Microsoft SoftGrid Application Virtualization. Microsoft Intelligent Application Gateway 2007 helps to ensure security.

Tags: Virtualization

Intelligence and Identity 2008-01-01 Oracle

When one is deploying Oracle Business Intelligence Enterprise Edition, how one handles identity management is as important as query speed and the quality of the data. A well-architected identity management solution ensures that the users are set up automatically when they first join the organization, that they can quickly access applications and data appropriate for their varied roles, and that personal details and access privileges can be easily managed. This paper focuses on integrating Oracle Business Intelligence Enterprise Edition with two of Oracle's flagship identity management tools: Oracle Internet Directory and Oracle Application Server Single Sign-On. The user will see how to combine the security features of Oracle Business Intelligence Enterprise Edition and Oracle Identity Management to provide granular, secure access to data.

Tags: Security Management, Business Intelligence - Data Warehousing

City of Helsinki Enhances Network Security by Ensuring Security Policy Compliance 2008-01-01 Microsoft

The City Council of the City of Helsinki provides a variety of governmental services for the approximately 500,000 inhabitants of Helsinki, Finland. To protect its network from security threats such as malware and intruders, the City of Helsinki needed a way to ensure that all computers accessing the network met security policies. To meet this need, the city deployed Network Access Protection (NAP), a feature of Windows Server 2008. As a result of testing NAP, the city expects to increase network security, improve integration, and make its IT administration processes more efficient.

Tags: Security Standards, Windows Server 2008

IT Services Company Expects to Improve Security, Availability With New Solution 2008-01-01 Microsoft

Cognizant Technology Solutions offers business and IT services to corporations around the world. The company has 450 server computers supporting more than 35,000 workstations and laptops. Cognizant needs a solution that provides secure access to proprietary information on its network and ensures that computers accessing its network are up to date with patches and antivirus software. Cognizant also wants reliable availability of its network resources. Cognizant plans to deploy the Windows Server 2008 operating system, which includes the Network Access Protection (NAP) feature, during the first quarter of 2008. The company also will deploy Microsoft Exchange Server 2007 and plans to use failover clustering in Windows Server 2008 to ensure that its IT systems maintain high availability.

Tags: Email, Windows Server 2008

Enriching Intrusion Alerts Through Multi-Host Causality 2008-01-01 University of Michigan

Current intrusion detection systems point out suspicious states or events but do not show how the suspicious state or events relate to other states or events in the system. This paper shows how to enrich an IDS alert with information about how those alerts causally lead to or result from other events in the system. By enriching IDS alerts with this type of causal information, one can leverage existing IDS alerts to learn more about the suspected attack. Backward causal graphs can be used to find which host allowed a multi-hop attack (such as a worm) to enter a local network; forward causal graphs can be used to find the other hosts that were affected by the multi-hop attack.

Tags: Security Tools, Intrusion Detection Systems

Honeycomb - Creating Intrusion Detection Signatures Using Honeypots 2008-01-01 University of Cambridge

This paper describes a system for automated generation of attack signatures for network intrusion detection systems. The system applies pattern-matching techniques and protocol conformance checks on multiple levels in the protocol hierarchy to network traffic captured a honeypot system. This paper presents results of running the system on an unprotected cable modem connection for 24 hours. The system successfully created precise traffic signatures that otherwise would have required the skills and time of a security officer to inspect the traffic manually.

Tags: Security Tools, Intrusion Detection Systems

Applying Fast String Matching to Intrusion Detection 2008-01-01 University of California

The performance of signature-based network intrusion detection tools is dominated by the string matching of packets against many signatures. This paper studies how the popular intrusion detection system Snort can be best optimized to utilize different string matching algorithms. The paper analyzes the performance of Snort's current string matching algorithm, Boyer-Moore, and several alternate algorithms. The paper shows that no single algorithm is fastest in the context of a real Snort rule set. Instead, the paper develops a hybrid system that utilizes three different search algorithms, including one new algorithm presented in this paper. The result is a system that matches many common packets 5 times faster with an average speedup of 50%.

Tags: Security Tools, Intrusion Detection Systems

Jump to 11 12 13 14 15 16 17 18 19 [20]

Title	Date Added	Company
Applications, virtualization and devices: taking back control	2008-08-13	Sophos
Employees installing legitimate but unauthorized applications are a real and growing threat to business security and productivity. Removable storage media and wireless protocols make the challenge of securing data even more complex. This paper explains why control is important and highlights how integrating this functionality into malware protection is the simplest and most cost-effective solution. Tags: Network Security, Security Applications, Security Standards, Intrusion Detection Systems
Safe and productive browsing in a dangerous Web world: The challenge for business	2008-02-14	Sophos
With a brand new infected Web page discovered every 14 seconds, the Web has now become the key vector for online hacking attacks, as well as representing a drain on productivity for many businesses. Yet the vast majority of businesses are unprotected against today's modern Web-based malware. Few organizations have deployed proactive protection to combat the dangers and ensure that both network security and employee efficiency remain uncompromised. This paper highlights the six top tricks used by hackers and describes the three pillars of protection organizations need to safeguard their systems and resources. Tags: Network Security, Security Management, Security Tools, Spam - E-mail Fraud - Phishing
Who's Got the NAC? Best Practices in Protecting Network Access	2007-10-01	Sophos
For many would-be network access control (NAC) adopters, what NAC is or is supposed to be is unclear. However, the companies who are successfully protecting their network aren't confused - they also have more demanding views as to what they think a NAC solution should provide. This report from Aberdeen aims to further the market's understanding of NAC - its function and capabilities - as seen through the eyes of those organizations that are getting the best results in protecting their network access. This report is brought to you by Sophos. Tags: Security Standards, Security Tools, Intrusion Detection Systems, Network Administration
Local Authority Improves ICT Services for Schools, Boosting Classroom Innovation	2008-01-01	Microsoft
Warwickshire Local Authority sought to improve its managed ICT service for schools by streamlining application delivery and improving security for remote access to school networks. Now, IT technicians are freed up to focus on delivering better support, and teachers can easily evaluate innovative new software on school computers with Microsoft SoftGrid Application Virtualization. Microsoft Intelligent Application Gateway 2007 helps to ensure security. Tags: Virtualization
Intelligence and Identity	2008-01-01	Oracle
When one is deploying Oracle Business Intelligence Enterprise Edition, how one handles identity management is as important as query speed and the quality of the data. A well-architected identity management solution ensures that the users are set up automatically when they first join the organization, that they can quickly access applications and data appropriate for their varied roles, and that personal details and access privileges can be easily managed. This paper focuses on integrating Oracle Business Intelligence Enterprise Edition with two of Oracle's flagship identity management tools: Oracle Internet Directory and Oracle Application Server Single Sign-On. The user will see how to combine the security features of Oracle Business Intelligence Enterprise Edition and Oracle Identity Management to provide granular, secure access to data. Tags: Security Management, Business Intelligence - Data Warehousing
City of Helsinki Enhances Network Security by Ensuring Security Policy Compliance	2008-01-01	Microsoft
The City Council of the City of Helsinki provides a variety of governmental services for the approximately 500,000 inhabitants of Helsinki, Finland. To protect its network from security threats such as malware and intruders, the City of Helsinki needed a way to ensure that all computers accessing the network met security policies. To meet this need, the city deployed Network Access Protection (NAP), a feature of Windows Server 2008. As a result of testing NAP, the city expects to increase network security, improve integration, and make its IT administration processes more efficient. Tags: Security Standards, Windows Server 2008
IT Services Company Expects to Improve Security, Availability With New Solution	2008-01-01	Microsoft
Cognizant Technology Solutions offers business and IT services to corporations around the world. The company has 450 server computers supporting more than 35,000 workstations and laptops. Cognizant needs a solution that provides secure access to proprietary information on its network and ensures that computers accessing its network are up to date with patches and antivirus software. Cognizant also wants reliable availability of its network resources. Cognizant plans to deploy the Windows Server 2008 operating system, which includes the Network Access Protection (NAP) feature, during the first quarter of 2008. The company also will deploy Microsoft Exchange Server 2007 and plans to use failover clustering in Windows Server 2008 to ensure that its IT systems maintain high availability. Tags: Email, Windows Server 2008
Enriching Intrusion Alerts Through Multi-Host Causality	2008-01-01	University of Michigan
Current intrusion detection systems point out suspicious states or events but do not show how the suspicious state or events relate to other states or events in the system. This paper shows how to enrich an IDS alert with information about how those alerts causally lead to or result from other events in the system. By enriching IDS alerts with this type of causal information, one can leverage existing IDS alerts to learn more about the suspected attack. Backward causal graphs can be used to find which host allowed a multi-hop attack (such as a worm) to enter a local network; forward causal graphs can be used to find the other hosts that were affected by the multi-hop attack. Tags: Security Tools, Intrusion Detection Systems
Honeycomb - Creating Intrusion Detection Signatures Using Honeypots	2008-01-01	University of Cambridge
This paper describes a system for automated generation of attack signatures for network intrusion detection systems. The system applies pattern-matching techniques and protocol conformance checks on multiple levels in the protocol hierarchy to network traffic captured a honeypot system. This paper presents results of running the system on an unprotected cable modem connection for 24 hours. The system successfully created precise traffic signatures that otherwise would have required the skills and time of a security officer to inspect the traffic manually. Tags: Security Tools, Intrusion Detection Systems
Applying Fast String Matching to Intrusion Detection	2008-01-01	University of California
The performance of signature-based network intrusion detection tools is dominated by the string matching of packets against many signatures. This paper studies how the popular intrusion detection system Snort can be best optimized to utilize different string matching algorithms. The paper analyzes the performance of Snort's current string matching algorithm, Boyer-Moore, and several alternate algorithms. The paper shows that no single algorithm is fastest in the context of a real Snort rule set. Instead, the paper develops a hybrid system that utilizes three different search algorithms, including one new algorithm presented in this paper. The result is a system that matches many common packets 5 times faster with an average speedup of 50%. Tags: Security Tools, Intrusion Detection Systems

Security

Featured Whitepapers

Member Login

Oracle Technology Solutions for Midsize Businesses

IT Priorities 2008/09