Firewalls - IT Library : ZDNet Asia

White Papers

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

PCI DSS Compliance in the UNIX/Linux Datacenter Environment 2009-10-14 BeyondTrust

This document explains how BeyondTrust PowerBroker supports the Payment Card Industry Data Security Standard (PCI DSS) by limiting and tracking authorization to execute commands and programs that access servers and applications storing and using proprietary cardholder. BeyondTrust PowerBroker provides an auditable process that controls, monitors and records that access.

Tags: Intrusion - Tampering, Security Administration, Security Administration, Data Tools

IOS Tips and Tricks 2009-10-12 Global Knowledge

There are a number of things you can do with Cisco's IOS to make your life easier. This white paper presents some ways that IOS commands can help streamline your work, and give you more insight into your system. This white paper presents some useful commands, followed (in parentheses) by their most concise shortcuts at the time of this writing.

Tags: Network Technologies, Intrusion - Tampering, Intrusion - Tampering, Security Administration

IBM Rational AppScan 2009-09-11 IBM

Failure to properly secure Web applications significantly impacts your ability to protect sensitive client and corporate data. IBM Rational AppScan is an automated scanner that monitors, identifies and helps remediate vulnerabilities. Download a free trial of AppScan and see how it can help prevent against the threat of attack.

Tags: Intrusion - Tampering, Intrusion - Tampering, Security Administration, Server Platforms - OS

The 11 Secrets of Business Rules Success 2009-09-01 FICO

Managing business rules gives you control over high volume operational decisions and delivers unprecedented agility. Based on decades of experience developing decision management applications, FICO has developed 11 steps to help you make the most of business rules. These include:

Picking the right applications. Business rules are a powerful tool for building smarter decisions into your applications but are better suited for some applications than others.
Following a process. Like any development technology, business rules work best when you have a structure and follow a suitable methodology.
Writing the right rules, the right way, and reusing them. Ensure your business rules are concise and atomic and use the right metaphor to manage them. Take advantage of your ability to manage them for reuse and to systematically verify, validate and simulate rules to get the result you want.
Operationalizing predictive analytics. Business rules are an ideal platform for putting predictive analytics to work to improve the effectiveness and precision of decisions.
Discover the 11 secrets to business rules success. Whether you are considering using business rules or are already a practitioner, this paper will help you advance your success.

Tags: Intrusion - Tampering, Intrusion - Tampering, Internet and Web, Office Suites

Korenix Embedded Systems - White Paper: Industrial Router Firewall and VPN Platform 2009-08-21 Korenix Technology

Off late Industrial Control and communications applications, the networks allowing these systems to be controlled and communicate are growing larger and more complex. Designing a network built on embedded systems technology requires that the embedded platform be robust, secure and manageable as commercial and management networks converge with industrial control and communications systems. The purpose of this white paper is to give an overview of the hardware features of the Korenix JetBox 9500 series, and how it can be implemented as an industrial embedded platform to facilitate the requirements of complex networks that require industrial grade routers, firewalls and VPN servers.

Tags: LAN - WAN, Intrusion - Tampering

Firewire Blocker: A Software Defense Against Firewire-Based Physical Security Attacks on Windows Systems 2009-08-13 Vienna University

This paper presents a software solution to Firewire-based physical security attacks on Microsoft Windows operating systems. In this first proof-of-concept, the FirewireBlocker service is running with SYSTEM privileges in order to be able to enable/disable hardware. While users can normally not interface with service, risk for privilege escalation remains. For example, if users with normal user rights have write access on the executable, they could replace it with a malign piece of software which would then be started with SYSTEM privileges. Future versions should establish the principle of least privilege. Further research is required to identify the fewest required privileges the FirewireBlocker service has to run with in order to be able to serve its purpose.

Tags: Intrusion - Tampering, Security Administration

Consistency Verification of Stateful Firewalls Is Not Harder Than the Stateless Case 2009-08-11 Budapest University of Technology and Economics

Firewalls play an important role in the enforcement of access control policies in contemporary networks. However, firewalls are effective only if they are configured correctly such that their access control rules are consistent and the firewall indeed implements the intended access control policy. Unfortunately, due to the potentially large number of rules and their complex relationships with each other, the task of firewall configuration is notoriously error-prone, and in practice, firewalls are often misconfigured leaving security holes in the protection system. This paper addresses the problem of consistency verification of stateful firewalls that keep track of already existing connections. For the first sight, the consistency verification of stateful firewalls appears to be harder than that of stateless firewalls.

Tags: Intrusion - Tampering, Security Administration

Integrating the Cisco Unified Presence Server in Your Unified Communications Network 2009-08-06 Global Knowledge

Have you ever sat down and tried to count the times that you've called other people, just to get a busy tone? Or, maybe you've tried to send them an Instant Message just to sit there and wait forever for a response and didn't know why? In this white paper, we will discuss an option that will allow our users to see availability status information of other users in the network via the Cisco Unified Presence Solution (CUPS) version 7.0.

Tags: Network Technologies, Intrusion - Tampering, Financial Services, Software Development Tools

HP Data Protector Software - Configuration of Manager of Managers (MoM) in a Secure Firewall Environment 2009-08-05 Hewlett-Packard (HP)

This paper describes how to setup and configure Manager of Managers (MoM) in a secure firewall environment. HP Data Protector software is a backup and disaster-recovery software that provides reliable data protection and high accessibility for fast growing business data. Data Protector offers comprehensive backup and restore functionality specifically tailored for enterprise-wide and distributed environments. The backup infrastructure is configured in a network based on the user requirements, enabled by various backup options. The Data Protector cell is a network environment that has a Cell Manager, client systems, and devices. Data Protector software is installed on the Cell Manager.

Tags: Security Administration, Data Tools

ALC Maintains System Integrity With Tripwire Configuration Control Solutions 2009-07-18 Tripwire

Since 1976, the Atlantic Lottery Corporation (ALC) has been contributing to Atlantic Canada's economy and way of life by generating significant revenue on behalf of the governments of Nova Scotia, New Brunswick, Newfoundland and Labrador and Prince Edward Island. The challenge was to demonstrate compliance with federal and provincial online gaming regulations, to implement ITIL-based change management processes and to reduce the impact of audits on staff. Tripwire Enterprise gives ALC the ability to monitor all changes on critical servers and network firewalls to prove change audit processes to auditors. A verifiable audit trail provides the evidence to support and enforce change management processes and practices. Tripwire automatically tracks all changes, and provides reports that allow staff to quickly investigate undocumented changes.

Tags: Intrusion - Tampering

Jump to [1] 2 3 4 5 6 7 8 9 10

Title	Date Added	Company
PCI DSS Compliance in the UNIX/Linux Datacenter Environment	2009-10-14	BeyondTrust
This document explains how BeyondTrust PowerBroker supports the Payment Card Industry Data Security Standard (PCI DSS) by limiting and tracking authorization to execute commands and programs that access servers and applications storing and using proprietary cardholder. BeyondTrust PowerBroker provides an auditable process that controls, monitors and records that access. Tags: Intrusion - Tampering, Security Administration, Security Administration, Data Tools
IOS Tips and Tricks	2009-10-12	Global Knowledge
There are a number of things you can do with Cisco's IOS to make your life easier. This white paper presents some ways that IOS commands can help streamline your work, and give you more insight into your system. This white paper presents some useful commands, followed (in parentheses) by their most concise shortcuts at the time of this writing. Tags: Network Technologies, Intrusion - Tampering, Intrusion - Tampering, Security Administration
IBM Rational AppScan	2009-09-11	IBM
Failure to properly secure Web applications significantly impacts your ability to protect sensitive client and corporate data. IBM Rational AppScan is an automated scanner that monitors, identifies and helps remediate vulnerabilities. Download a free trial of AppScan and see how it can help prevent against the threat of attack. Tags: Intrusion - Tampering, Intrusion - Tampering, Security Administration, Server Platforms - OS
The 11 Secrets of Business Rules Success	2009-09-01	FICO
Managing business rules gives you control over high volume operational decisions and delivers unprecedented agility. Based on decades of experience developing decision management applications, FICO has developed 11 steps to help you make the most of business rules. These include: Picking the right applications. Business rules are a powerful tool for building smarter decisions into your applications but are better suited for some applications than others. Following a process. Like any development technology, business rules work best when you have a structure and follow a suitable methodology. Writing the right rules, the right way, and reusing them. Ensure your business rules are concise and atomic and use the right metaphor to manage them. Take advantage of your ability to manage them for reuse and to systematically verify, validate and simulate rules to get the result you want. Operationalizing predictive analytics. Business rules are an ideal platform for putting predictive analytics to work to improve the effectiveness and precision of decisions. Discover the 11 secrets to business rules success. Whether you are considering using business rules or are already a practitioner, this paper will help you advance your success. Tags: Intrusion - Tampering, Intrusion - Tampering, Internet and Web, Office Suites
Korenix Embedded Systems - White Paper: Industrial Router Firewall and VPN Platform	2009-08-21	Korenix Technology
Off late Industrial Control and communications applications, the networks allowing these systems to be controlled and communicate are growing larger and more complex. Designing a network built on embedded systems technology requires that the embedded platform be robust, secure and manageable as commercial and management networks converge with industrial control and communications systems. The purpose of this white paper is to give an overview of the hardware features of the Korenix JetBox 9500 series, and how it can be implemented as an industrial embedded platform to facilitate the requirements of complex networks that require industrial grade routers, firewalls and VPN servers. Tags: LAN - WAN, Intrusion - Tampering
Firewire Blocker: A Software Defense Against Firewire-Based Physical Security Attacks on Windows Systems	2009-08-13	Vienna University
This paper presents a software solution to Firewire-based physical security attacks on Microsoft Windows operating systems. In this first proof-of-concept, the FirewireBlocker service is running with SYSTEM privileges in order to be able to enable/disable hardware. While users can normally not interface with service, risk for privilege escalation remains. For example, if users with normal user rights have write access on the executable, they could replace it with a malign piece of software which would then be started with SYSTEM privileges. Future versions should establish the principle of least privilege. Further research is required to identify the fewest required privileges the FirewireBlocker service has to run with in order to be able to serve its purpose. Tags: Intrusion - Tampering, Security Administration
Consistency Verification of Stateful Firewalls Is Not Harder Than the Stateless Case	2009-08-11	Budapest University of Technology and Economics
Firewalls play an important role in the enforcement of access control policies in contemporary networks. However, firewalls are effective only if they are configured correctly such that their access control rules are consistent and the firewall indeed implements the intended access control policy. Unfortunately, due to the potentially large number of rules and their complex relationships with each other, the task of firewall configuration is notoriously error-prone, and in practice, firewalls are often misconfigured leaving security holes in the protection system. This paper addresses the problem of consistency verification of stateful firewalls that keep track of already existing connections. For the first sight, the consistency verification of stateful firewalls appears to be harder than that of stateless firewalls. Tags: Intrusion - Tampering, Security Administration
Integrating the Cisco Unified Presence Server in Your Unified Communications Network	2009-08-06	Global Knowledge
Have you ever sat down and tried to count the times that you've called other people, just to get a busy tone? Or, maybe you've tried to send them an Instant Message just to sit there and wait forever for a response and didn't know why? In this white paper, we will discuss an option that will allow our users to see availability status information of other users in the network via the Cisco Unified Presence Solution (CUPS) version 7.0. Tags: Network Technologies, Intrusion - Tampering, Financial Services, Software Development Tools
HP Data Protector Software - Configuration of Manager of Managers (MoM) in a Secure Firewall Environment	2009-08-05	Hewlett-Packard (HP)
This paper describes how to setup and configure Manager of Managers (MoM) in a secure firewall environment. HP Data Protector software is a backup and disaster-recovery software that provides reliable data protection and high accessibility for fast growing business data. Data Protector offers comprehensive backup and restore functionality specifically tailored for enterprise-wide and distributed environments. The backup infrastructure is configured in a network based on the user requirements, enabled by various backup options. The Data Protector cell is a network environment that has a Cell Manager, client systems, and devices. Data Protector software is installed on the Cell Manager. Tags: Security Administration, Data Tools
ALC Maintains System Integrity With Tripwire Configuration Control Solutions	2009-07-18	Tripwire
Since 1976, the Atlantic Lottery Corporation (ALC) has been contributing to Atlantic Canada's economy and way of life by generating significant revenue on behalf of the governments of Nova Scotia, New Brunswick, Newfoundland and Labrador and Prince Edward Island. The challenge was to demonstrate compliance with federal and provincial online gaming regulations, to implement ITIL-based change management processes and to reduce the impact of audits on staff. Tripwire Enterprise gives ALC the ability to monitor all changes on critical servers and network firewalls to prove change audit processes to auditors. A verifiable audit trail provides the evidence to support and enforce change management processes and practices. Tripwire automatically tracks all changes, and provides reports that allow staff to quickly investigate undocumented changes. Tags: Intrusion - Tampering

Cutting-edge technology from premium sponsors

Adaptive Threat Management
High Performance Security for your Distributed Enterprise

Achieve lower TCO, agility, risk mitigation, compliance, and productivity

Webcast series: Cybercrime is a growth industry - is your organisation prepared?
More resources to optimize the security of your enterprise »

Brought to you by:

More Tech Showcases:

Juniper Networks

IDC's Powering the Enterprise Cloud Event 2009

12 Nov - 17 Dec 2009

Grand Copthorne Waterfront Hotel, Singapore

Cloud Computing Summit 2009

9 Dec 2009

Hong Kong Convention and Exhibition Center

4th Annual GovTech 2010

27 - 28 Jan 2010

Amara Hotel, Singapore

Int'l Conference on Cloud Computing & Virtualization 2009

25 - 26 Nov 2009

Suntec International Convention & Exhibition Centre, Singapore

KM Asia 2009

24 - 26 Nov 2009

Suntec International Convention & Exhibition Centre, Singapore

ZDNet Asia Top Tech 50 Index

AT&T

Asustek

Canon

Convergys

Ericsson

Hewlett-Packard

Infosys

LogicaCMG

NTT

Samsung

SingTel Group

Toshiba

Xerox

Accenture

Atos Origin

Capgemini

Dell

France Telecom

Hitachi

Intel

Microsoft

Nokia

Satyam Computer Services

Sony

Verizon Communications

ZTE

Alcatel-Lucent

British Telecom

China Mobile

Deutsche Telekom

Fujitsu

Huawei Technologies

LG Electronics

Motorola

Oracle

Seagate Technology

Sun Microsystems

Western Digital

Apple

CSC

Cisco Systems

EMC

Google

IBM

Lenovo Group

NEC

SAP

Siemens IT Solutions & Services

Tata Consultancy Services

Wipro

ZDNet Asia's Top Tech Index will be next updated in 2010.

Master in Organisational Leadership
Part-time masters program from Monash University. Find out more.

What's consuming your network bandwidth?
Find out today. Download SolarWinds award-wining software here - FREE 30-day Trial

Security Considerations for Cloud-Ready Data Centers - Download the whitepaper!
A network-centric approach to providing security in the data center delivers multiple benefits

Cloud Computing & Virtualization Conference 2009
Register & learn how to adopt cloud computing & virtualization technology to your company

IT Salary & Skills Report 2009
Join activeTechPros for free access to the report

More from CBS Interactive

CBS Interactive Inc Sites

About ZDNet Asia |

About CBS Interactive |

ZDNet Asia editorial calendar |

Advertise with us |

Jobs |

Partnership |

Contact Us |

CNET Direct |

CNET Asia |

CNET Asia mobile |

Sitemap

ZDNet.com |

ZDNet Japan |

ZDNet.de |

CNET UK |

CNET.de |

Tech Republic |

BNET |

MP3.com |

activeTechPros |

ZDNet UK |

ZDNet Korea |

ZDNet France |

CNET Australia |

CNET France |

Download.com |

Builder |

GameSpot

ZDNet Australia |

ZDNet Taiwan |

CNET |

CNET Taiwan |

News.com |

Silicon.com |

TV.com |

GameSpot Korea

News | Insight | Reviews | TechGuides | Jobs | Blogs | Videos | Community | Downloads | IT Library |

Get RSS feeds

Security

Featured Whitepapers

Member Login

Adaptive Threat Management

ZDNet Asia Top Tech 50 Index