booklets and brochures
networked information systems
system administration
System administration is the critical component that integrates the protection of data with access to data by appropriate users. System administrators, by virtue of their positions, are the first line of defense against unintended modification, destruction, or disclosure of information. System administrators ensure that all access requests are verified by the proper authorities. They are responsible for enforcing the "need-to-know" principle by ensuring that users are only granted access to information necessary to perform their current tasks and that all data under their control is secured.
Unfortunately, system administration has become decentralized with personal computer (PC) security usually the responsibility of the user. Networks have become so integrated that security at the network level is virtually nonexistent. As a result, day-to-day network security is addressed at the element level, which could be a mainframe, a PC, or even a switch. Many network administrators view INFOSEC as secondary to their two primary concerns, which are system availability and operational requirements. As mainframe and PC-based systems are networked on local area networks (LANs), wide area networks (WANs) vulnerabilities are often introduced.
Most system administrators are unaware of the full extent of the connectivity of their networks. They often do not know what is connected to their network or the extent of the connections. Generally, organizations connect their LANs to their WANs to meet operational requirements, even if connectivity is required for local access. Users and local system administrators normally assume that security for these LANs and WANs is afforded equally; however, it is not. A disparity in security application within a data flow can provide advantages to adversaries.
hardware and software protection
Network hardware is comprised of computers, routers, fiber optic cable, etc., while software is the command codes that direct, channel, monitor, and manage the actions of the hardware. Each has its own suite of protective tools to guard against intruders and exploitation. Hardware protective tools include secure identification tokens (fobs), encryption units, intrusion detection systems, proxy servers, and routers. Software protection tools are typified by network operating systems, firewalls, client/server operating systems, encryption software, and virus protection software. Any inconsistency, deviation, or deficiency in the hardware or software exposes the network to exploitation.