Active
Wireless Protection (PDF)
Wireless networks based on the 802.11b (WiFi) and similar standards are convenient,
inexpensive and easily deployed without great technical expertise. As such,
they are rapidly finding a home within home and enterprise networks. The advantages
and cost savings introduced by wireless mobility also create significant security
risks. This white paper explains a proactive methodology that enables organizations
to safely and securely control and manage WiFi networks within a business environment.
ASP.NET Web
Applications (PDF)
Microsoft's .NET framework provides developers with the ability to build and
deploy applications and services via the Web. Although this technology provides
powerful functionality to developers, these services can represent a potential
threat to the security of a Web server. This white paper discusses some of
the security mechanisms and configuration options available to administrators
to help secure these applications and reinforce the integrity of the Web server.
Controlling
the Use of Instant Messaging and Peer-to-Peer Applications
with the Proventia Intrusion Prevention Appliances (PDF)
Instant messaging and peer-to-peer applications can pose a variety of security
risks to your network. This white paper identifies the techniques that can
help you control the use of these applications with Proventia Intrusion Prevention
Appliances.
Defining
the Rules of Preemptive Protection: The ISS Intrusion Prevention
System (PDF)
Part of the challenge when selecting a network intrusion prevention system
(IPS) is knowing exactly which characteristics to look for. How can you determine
which IPS will deliver accurate, preemptive protection against the next Internet
threat? This white paper defines the three characteristics of preemptive protection
to help you easily evaluate the efficacy of a network intrusion prevention
solution.
Lotus
Domino Security (PDF)
Lotus Domino is an application server that is powerful, extensible and customizable
for many different tasks. However, improper configuration can create serious
security risks. This white paper outlines how you can configure your Lotus
Domino installation to minimize these risks.
Risk
Exposure through Instant Messaging and Peer-To-Peer (P2P) Networks
(PDF)
Winner of a 2002 Bitpipe White Paper Award
The popularity of instant messaging and peer-to-peer networking technologies
has risen dramatically in recent years. As these services become increasingly
popular, an increased risk emerges as well. This white paper outlines technical
countermeasures that can help you reduce security risks posed by a variety
of instant messaging applications and peer-to-peer networks.
Risk
Modeling in the Global Marketplace (PDF)
Successful risk modeling for information asset protection can make IT security
a value-add business enabler that increases your company's profitability. This
white paper can help you develop risk models that are accurate, defensible
and add value to your company's prosperity.
RPC
Signature Quality (PDF)
There is a significant difference in the quality of signatures shipped with
popular intrusion detection systems. This white paper highlights these by focusing
on signatures developed for the Sun Microsystem RPC (Remote Procedure Call)
system.
Security
Implications of IPv6 (PDF)
Internet Protocol version 6 (IPv6) contains numerous features that make it
attractive from a security standpoint. This white paper discusses the security
implications of IPv6 and solutions that enable administrators to protect against
attacks, intrusions and backdoors that take specific advantage of the protocol.
Wireless
LAN Security (PDF)
Wireless networking via the 802.11 standard's low cost, combined with strong
performance and ease of deployment, mean that many departments and individuals
already use 802.11b at home or at work. This white paper addresses the security
concerns raised by both current and upcoming 802.11 network technologies.
X-Force
Threat Insight Quarterly Report: Phishing and Other Significant
Threats of 2004 (PDF)
This report focuses on "phishing," and reviews some of the
common challenges faced by security professionals throughout
2004. Phishing uses spoofed e-mails, malicious Web sites and
various vulnerabilities to trick users into divulging financial
and personal information. As one of the fastest growing threats
of 2004, phishing drew a lot of media attention, especially
with regard to how it can be used for identity theft.
