Whitepaper 02-01: Cost-Efficient Network Security Architecture

Download “Cost-Efficient Network Security Architecture for Startups” here!

In this white paper, we look at a notional (but typical) small business. This notional organization faces unique challenges as a small company competing in a difficult business environment. As an information systems services provider, its network must provide a high degree of confidentiality, integrity, and availability (the CIA Triad)[i] – the loss of any of these elements translates to a loss of its customers’ trust. At the same time, it must be economical; overhead personnel must be funded from existing revenues.

Our notional network infrastructure must satisfy these conflicting goals to provide the best cost-benefit. Specifically, we look at the following:

  • Background – The constraints under which our notional network must function.
  • Existing Landscape – The business drivers for our notional network’s configuration, the logical architecture we use to address these drivers, and our notional physical implementation.
  • Defensive Posture – How we protect our notional network from external and internal attacks.
  • Recommendations – Suggestions and alternatives for applying new resources to our notional network.

Gartner identifies both virtualization and activity monitoring as top strategic IT technologies for 2010.[ii] In our notional infrastructure, we address both of these technologies, but temper our adoption based on reliability as the single most important consideration for us, closely followed by affordability. We analyze existing shortcomings and suggest new solutions with these constraints in mind.



[i]     Charles P. Pfleeger and Shari Lawrence Pfleeger, Security in Computing, 3rd  ed. (Upper Saddle River, NJ: Prentice Hall, 2003), pg. 10. Dr. Pfleeger is widely credited with the first mention of the term CIA Triad in his first edition of this book (same publisher, dated 1989).

[ii]    “Gartner Identifies the Top 10 Strategic Technologies for 2010,” Gartner Corp. press release, October 20, 2010, on the Gartner Corp. Web site, http://www.gartner.com/it/page.jsp?id=1210613 (accessed: September 15, 2010).

Team-oriented systems mentor with deep knowledge of numerous software methodologies, technologies, languages, and operating systems. Excited about turning emerging technology into working production-ready systems. Focused on moving software teams to a higher level of world-class application development. Specialties:Software analysis and development...Product management through the entire lifecycle...Discrete product integration specialist!

Leave a Reply

Your email address will not be published. Required fields are marked *

*

Human Verification: In order to verify that you are a human and not a spam bot, please enter the answer into the following box below based on the instructions contained in the graphic.