Security Management Strategies for the CIOAccess "Identifying which type of firewall is right for you"
This article is part of the May 2003 issue of Buying spree: 2003 product survey results
Firewalls are ubiquitous, but no size fits all. When it comes to granular security analysis, gateway-based firewalls (proxy-based) are the best, closely followed by stateful inspection, then stateful (also called dynamic) filters, with static packet filters providing the least security processing. Yet, in terms of manageability, the list is reversed: packet filters are the most "plug-and-playable"; app proxies are the least. So how can you decide which type of firewall is right for your organization? Which one strikes a good balance between security and functionality and cost and manageability? To answer this question, I'll examine three infrastructures: a small office; a medium- or large-sized office with common needs; and a large office with complex needs. Small office. Small offices obviously have fewer users and managed machines than large infrastructures. They're usually smaller targets. And they require access to minimal Internet services: e-mail (but maybe not even that, if connected to the main office over a VPN), Web and (sometimes) streaming media.... Access >>>
Access TechTarget
Premium Content for Free.
What's Inside
Features
-
-
Shrinking IT security budgets may affect product rollouts
by Andrew Briney and Frank Prince
IT professionals are planning massive security rollouts over the next three years. But shrinking IT security budgets may throw a wrench in the works.
-
Enterprise Inspector: A must-have for Microsoft vulnerability scanning
by Mike Bobbitt
Shavlik Technologies enhances its freeware to create Enterprise Inspector.
-
Buying IT security products? Learn to recognize vendor hype
by Linda Wise, Contributor
Some vendors will do or say just about anything to get you to buy their products. Whether the products work as advertised is another story.
-
Shrinking IT security budgets may affect product rollouts
by Andrew Briney and Frank Prince
-
-
Using identity management tools to manage user accounts, populations
by Neil Roiter
For four organizations, identity management means getting a grip on their user populations...and that's just the beginning.
-
Profile: Gil Shwed, Check Point co-founder, CEO
by Anne Saita
Check Point's co-founder and CEO needs to pick another winner if he's to maintain the company's strong market presence.
-
Using identity management tools to manage user accounts, populations
by Neil Roiter
-
Columns
-
Shiny-blinky things: Security of IT security products often overlooked
by Andrew Briney
When buying IT security products, enterprises often neglect to consider whether the products themselves are secure.
-
Kevin Mitnick security conference shrouded in secrecy
by Lawrence Walsh
The famed ex-con hacker's "super-secret" security conference shields executives from public view.
-
IT security career advice: Landing an information security job
by Jay Heiser, Contributor
The information security job market is tough. Jay Heiser offers IT security career advice for smart job-hunting.
-
Identifying which type of firewall is right for you
by Fred Avolio, Contributor
Packet filters, proxies, stateful inspection--which type of firewall is right for your enterprise? Here's how to decide.
-
Shiny-blinky things: Security of IT security products often overlooked
by Andrew Briney
More Premium Content Accessible For Free
Next-generation firewalls play by new rules
E-Zine
Firewalls started their journey to the next generation at about the same time as the Star Trek TV series. While the products have advanced with ...
Developing your endpoint security management transition plan
E-Handbook
This TechGuide will help you develop your endpoint security management transition plan. Articles focus on overcoming the challenges of Web-based ...
Unlock new pathways to network security architecture
E-Zine
Network security architecture is showing its age at many organizations. With new technology, different data types, and use of multi-generations of ...