Notes - MIECT
Segurança Em Redes De Comunicações
Notes - MIECT
Segurança Em Redes De Comunicações
  • Segurança Em Redes De Comunicações
  • Corporate Networks Topics
    • Objectives of Network Design
    • Equipments
    • Hierarchical Network Model
    • Modular Network Design
    • Designing the Access Layer
    • Designing the Core Layer
    • Virtual LANs
      • VLANs on Access Points
    • Spanning Tree Protocol
    • IP Routing Overview
  • Introduction to Network Security
    • Type of Attacks
    • Attacks Phases
      • Infiltration Phase
      • Propagation Phase
      • Aggregation and Exfiltration Phase
    • Defenses
    • Security Metrics
  • Network Access Control
    • AAA Architecture
      • TACACS+
      • RADIUS
      • DIAMETER
    • IEEE 802.11 services
    • Joining a BSS
      • WLAN Frames
      • Joining BSS with AP
    • WPA and 802.11i (WPA2)
  • Network Flow Control
    • Network Security Systems
    • Firewalls
    • High-Availability
    • Load Balancing Firewall Load
    • Best Practices and Recommendations
    • IP Spoofing
    • Half-Open TCP Connection Problem
    • DDoS Mitigation at Source
    • Cisco’s Access Control Lists (ACL)
    • Linux IPTables
    • Control By Analysis of Higher Layers
  • Secure Communications
    • Public Key Infrastructure (PKI)
    • X.509 Certificate Contents
    • Traffic Tunnel Concept
      • Next Hop Resolution Protocol (NHRP)
      • Hub-Spoke vs. Spoke-Spoke
    • IPSec
    • Establishing SA and Cryptographic Keys
    • Virtual Private Networks (VPN)
    • Management of Asymmetric Keys
  • Remote Access
    • Remote Access
    • IPsec NAT Transversal
    • Integration with Flow Control
  • Intrusion Detection and Prevention
    • Intrusion Detection and Prevention
    • Host-Based vs. Network-Based
    • Signature vs. Anomaly Based
    • Network Deployment
  • Network Monitoring SIEM
    • Core and End-to-End Monitoring
    • Node Monitoring
    • End-User/Host/App Monitoring
    • Server/Service/Cloud Monitoring
    • Per-Service Detailed Monitoring
    • Data Sources
      • SNMP
      • NetFlow
    • Network Passive Probing Packet Capturing
    • Remote CLI Access
    • Log Files Access
      • Log Management Systems (LMS)
      • Security Information and Events Management (SIEM)
Powered by GitBook
On this page
  • Access Management
  • Preparedness
  • Days to patch
  • Unidentified devices.
  • Security devices
  • Intrusion attempts
  • Cost per incident
  • Mean Time Between Failures (MTBF)
  • Mean Time To Recovery (MTTR)
  • Mean Time To Detect (MTTD)
  • Mean Time To Acknowledge (MTTA)
  • Mean Time To Contain (MTTC)
  • Mean Time To Resolve (MTTR)
  1. Introduction to Network Security

Security Metrics

Access Management

  • How many users have privileged access, and how often is used?

  • Shared passwords between staff.

Preparedness

  • Percentage of devices fully patched and up to date.

Days to patch

  • The average time between patch availability and deployment.

Unidentified devices.

  • Illicitly deployed devices.

  • BYoD policy, legacy devices, unlisted devices, IoT devices, etc ...

Security devices

  • Average/maximum load per time period.

Intrusion attempts

  • Amount of detected and undetected attempts (in real-time or after offline auditing).

Cost per incident

  • Includes staff overtime, external support, investigation costs, employee productivity loss, loss of communication, service failure, etc...

Mean Time Between Failures (MTBF)

  • The average time between failures (hardware and/or software).

  • General or per-device service.

Mean Time To Recovery (MTTR)

  • The average time between failure and recovery (hardware and/or software).

Mean Time To Detect (MTTD)

  • The average time between the intrusion and the detection.

Mean Time To Acknowledge (MTTA)

  • The average time between detection and the start of the counter-measurement deployment.

Mean Time To Contain (MTTC)

  • The average time between the start of the counter-measurement deployment and complete mitigation.

Mean Time To Resolve (MTTR)

  • MTTA + MTTR

PreviousDefensesNextAAA Architecture

Last updated 2 years ago