PRO+ Premium Content/Information Security magazine

Thank you for joining!
Access your Pro+ Content below.
February 2002

How network forensics analysis tools turn admins into detectives

Surgeon Michael Nusbaum knows a thing or two about hacking. Many years after reaching the "mandatory retirement age of 13" as a computer hacker, he commands the infosec defenses as COO at Hamilton Scientific Ltd., an ASP that provides Web-based medical software. Atop Hamilton's multilayered defense system sits one of a new class of network forensics analysis tools (NFATs): Niksun's NetDetector. These products -- which also include SilentRunner and Sandstorm's NetIntercept -- combine robust network traffic capture with sophisticated analysis and forensics capabilities. Before he would take Hamilton Scientific live on the Internet, Dr. Nusbaum searched for a product that monitored network traffic flow and had the forensics capabilities to enable his IT staff to trace back to any machines that attempt to log in or access its systems. That kind of information arms him to counter possible threats to the sensitive medical records databases accessed by physicians and administrators. "You have to be able to adjust your defense ...

Access this PRO+ Content for Free!

Features in this issue

Columns in this issue

  • Security startups: Recipe for success

    by  Robert Logan

    Stir one part technologist with one part experienced CEO and some VC money and you have the recipe for successful security startups.

  • Secure reads: The CISSP Prep Guide, CISSP Exam Cram

    by  SearchSecurity staff

    Although efficient study guides for cramming before the CISSP test, The CISSP Prep Guide and the CISSP Exam Cram won't advance the infosec profession and are likely plagiarized.