NHI - TSG - Security Solutions - Firewall set-up, audits, and implementations

Company About NHI NHI Mission NHI India Inukshuk Story NHI Inukshuk Practices HPR - People RMS - Process TSG - Tools Clients Client List Testimonials Alliances Strategic NHI India About NHI India Services Application Development BPO Offshore Delivery Contact Contact NHI Employment (HR)

Search our site:

Home

Tools

Security Solutions

Firewall set-up, audits, and implementations

For years, firewalls were the basic defensive tool against cyber-attacks, providing perimeter security. Putting applications on the Internet to share information with customers, partners, and suppliers has made it easier to do business-but harder to protect it. The perimeter security approach has necessarily given way to a new paradigm: building security in levels. The basic idea is that one locked door after another makes it much more difficult for attackers to break in.

Firewalls remain the first level of security, but the problem is that firewalls need to allow application traffic to the Web application, and they don't distinguish valid application requests from malicious ones. As a result, traffic allowed by the firewalls may contain attacks against the application and your systems. In addition, firewalls are often improperly configured and implemented. If companies neglect to employ a DMZ (a "demilitarized zone") for their publicly accessible systems, they can inadvertently give hackers access to systems on their internal networks.

Beyond the Firewall and DMZ or Second Level Defense

The second level of defense, less commonly employed, involves the use of intrusion detection systems (IDS) to monitor networks and servers, notifying your security people of any abnormal activity. While IDS's add another layer of security and protection, they also have their own weaknesses and should only be treated as a second line of defense not an ultimate protection.

Additional layers can be added to your security defense system and should include. Patch management, upgrades to newer more security based systems, encryption, keys, access management, intrusion prevention systems (IPS)- which block intrusions as opposed to setting off alarms after a possible intrusion, strong authentication practices, and token authentication.

And not the last and possibly the most important, establish policies and procedures to ensure Web application security, and make sure they are communicated to your employees. One of the most important things you can do is to train your people and to maintain that training and level of urgency and importance for security awareness.

NHI's systems engineers, coupled with our Managing for Value Framework (MVF), ensure customers receive a reliable, flexible, optimized firewall and security solution that will benefit and protect the organization.

Print Page Email Page Email Questions