Documents

AADN: Abstract Application Data Naming

Analyzing Firewall Policy Models and the PIX ASA (Nov 2002)

A slide-show reviewing the PIX Adaptive Security Algorithm in regard to other firewalls, and its security impact.

DMZ Architecture (Jul 2002)

A paper explaining common concepts and best-practices when designing a scalable, secure internet DMZ.

Biological Network Security (Jan 2002)

This is an editorial on security concepts and the idea of a unified internet-wide security protocol, also published on Security Focus.

Stealth Firewalls (April 2001)

A paper describing the advantages of Stealth Firewalls, also published in the Firewalls Section of the SANS Information Security Reading Room.

Unix System Security Review (1999)

A checklist for administrators, covering common security issues.

Administrative Concepts (1998)

Some common administrative concepts to be familiar with--and how they are commonly implemented, such as service abstraction and high availability.

Links

• Security Conventions:
  • BlackHat
  • DefCon
  • SANS Institute
• WhiteHats
• Common Vulnerability and Exposure (CVE) lists:
  • ICAT
  • BugTraq
  • mitre.org
• Center for Internet Security
• Security Focus Online
• SANS Institute (System Administration, Networking and Security)
  • SANS Information Security Reading Room
  • SANS Institute Internet Storm Center
  • Global Information Assurance Certification
    
• Information Systems Security Association (ISSA)