Foreword by Lars Knudsen Practical Intranet Security focuses on the various ways in which an intranet can be violated and gives a thorough review of the technologies that can be used by an organization to secure its intranet. This includes, for example, the new security architecture SESAME, which builds on the Kerberos authentication system, adding to it both public-key technology and a role-based access control service. Other technologies are also included such as a description of how to program with the GSS-API, and modern security technologies such as PGP, S/MIME, SSH, SSL IPSEC and CDSA. The book concludes with a comparison of the technologies. This book is different from other network security books in that its aim is to identify how to secure an organization's intranet. Previously books have concentrated on the Internet, often neglecting issues relating to securing intranets. However the potential risk to business and the ease by which intranets can be violated is often far greater than via the Internet. The aim is that network administrators and managers can get the information that they require to make informed choices on strategy and solutions for securing their own intranets. The book is an invaluable reference for network managers and network administrators whose responsibility it is to ensure the security of an organization's intranet. The book also contains background reading on networking, network security and cryptography which makes it an excellent research reference and undergraduate/postgraduate text book.

In the last 12 years we have observed amazing growth of electronic communication. From typical local networks through countrywide systems and business-based distributed processing, we have witnessed widespread implementation of computer-controlled transmissions encompassing almost every aspect of our business and private lives.Internet and Intranet Security, Management, Risks and Solutions addresses issues of information security from the managerial, global point of view. The global approach allows us to concentrate on issues that could be influenced by activities happening on opposite sides of the globe.

On computer security

This pioneering guide to Internet and intranet security is the first to cover all of the relevant technologies in one comprehensive reference, and enhances the ability to create and deploy secure architectures. It gives users the knowledge needed for improved productivity, whether setting up commerce on line, assembling a firewall, or selecting access controls and cryptographic protocols to secure TCP/IP-based networks.

Many organizations encounter a common problem in their approach to intranet security: They treat intranets as an internal tool that is hidden deep in the corporate network and is somehow immune from external attacks. This is far from the truth, however. An intranet is basically a Web application exposed to a hostile environment the same way as the corporate Web site and therefore vulnerable to the same scope of threats. The fact that it is intended for employees and trusted parties doesn’t guarantee anything against hacker attacks, viruses, and spam. Failing to introduce a dedicated intranet security policy entails a range of risks associated with sensitive information leakage and data loss. For many organizations, safeguarding intranets is even more important than protecting their Web sites. Intranets usually contain extremely confidential assets crucial for both day-to-day activity and strategic business development. A successful attack may result in disruption of the organization’s operations, significant reputation damage, and infringement of legal regulations. To avoid unexpected embarrassment after launching an intranet, organizations must carefully evaluate the solution’s capability to cope with security issues. So, with the preceding in mind, this chapter provides information about all aspects of threats that affect intranet security. The chapter is intended for organizations that understand the changing nature of the threat landscape and what might be done to mitigate it.

TOP SECRET INTRANET How U.S. Intelligence Built INTELINK - The World's Largest, Most Secure Network The never-before-published story of Intelink An inside look at the U.S. Intelligence Community's worldwide, super-secure intranet The U.S. Intelligence Community has built one awesome intranet. "Intelink" integrates and disseminates virtually every piece of information that goes into intelligence gathering, reporting, and analysis at the CIA, NSA, Defense Intelligence Agency, National Reconnaissance Office, FBI, and eight other top secret agencies to their "customers" - from the White House to the Warfighter. It's just about as secure as intranets can be. Now, for the first time, here's the inside story of how they did all that. Sure, there are a few things they can't tell you, but what they can tell you is utterly fascinating - especially if you've got your own intranet to build or manage. Building a maximum-security extranet to connect multiple independent organizations Implementation: what went smoothly - and what didn't Case studies: extending Intelink to new intelligence agencies and customers Security: encryption and access control issues U.S. Government network security efforts Cooperation with foreign governments Relevance to business covered in every chapter Future intranet tools Someday your intranet will handle terabytes of data; Intelink is doing it right now. Discover how they've made their intranet secure, integrating HTML, SGML, XML, metadata, pull and push technologies, and collaboration tools to get exactly the right data to the right people at the right time. Then preview the U.S. Intelligence Community's revolutionary strategic plans for managingthis information - and discover how you can use the same ideas to achieve competitive advantage. There's even a CD-ROM containing a demo of the actual Intelink interface, plus demo software, tools, metadata standards, training, and other information straight from Intelink. So put on your trenchcoat and dark glasses: you're going inside!

This volume provides hands-on methodology for designing effective network-level security systems for your corporate intranet or extranet. Using real-world examples and referencing intranet and extranet technology, this guidebook for IT professionals shows how to configure network and security elements such as routers, switches, servers and firewalls to achieve top-notch security. Components of effective security are critically reviewed in detail, including different types of firewalls, such as Packet Filters, Stateful and Application level proxy devices, and encryption schemes, such as DES, RSA, and IPSEC. Secure data transport and data access are also discussed, as well as the use of remote intelligent agents on network devices and servers. The book discusses how to evaluate security options based on requirements such as cost, complexity, and performance, and network and service management issues. It seeks to close the gap between theory and implementation by featuring detailed case studies and an interactive approach with diagrams and configurations.