Vistas for Network Security
Enterprise security
Effective solutions
Tools and standards
Free Newsletter

Stay updated, sign up for our free newsletter to receive useful tips

Full Name
Email Id
sign up

RFC: Guidelines and Security Standards

Transport Layer Protocols:
  • AH - IP Authentication Header.
  • EGP - Exterior Gateway Protocol.
  • ESP - Encapsulating Security Payload.
  • GGP - Gateway to Gateway Protocol.
  • GRE - Generic Routing Encapsulation.
  • ICMP - Internet Control Message Protocol.
  • ICMPv6 - Internet Control Message Protocol for IPv6.
  • IGRP - Interior Gateway Routing Protocol.
  • L2TP - Level 2 Tunneling Protocol.
  • MOSPF - Multicast Open Shortest Path First.
  • OSPF - Open Shortest Path First Routing Protocol.
  • RSVP - Resource ReSerVation Protocol.
  • SEND - SEcure Neighbor Discovery.
  • SKIP - Simple Key management for Internet Protocol.
  • TCP - Transmission Control Protocol.
  • UDP - User Datagram Protocol.
  • UDP-Lite, Lightweight User Datagram Protocol.
Application Layer Protocols:
  • AURP - AppleTalk Update-based Routing Protocol.
  • Authentication Server Protocol.
  • BFTP - Background File Transfer Program.
  • BGP - Border Gateway Protocol.
  • BOOTP - Bootstrap Protocol.
  • CMP - Certificate Management Protocols.
  • CRANE - Common Reliable Accounting for Network Element.
  • DCAP - Data Link Switching Client Access Protocol.
  • DHCP - Dynamic Host Configuration Protocol.
  • DHCPv6 - Dynamic Host Configuration Protocol for IPv6.
  • DIAMETER.
  • DNS - Domain Name System.
  • Finger.
  • FTP - File Transfer Protocol.
  • Gopher.
  • HOSTNAME.
  • HTTP - HyperText Transfer Protocol.
  • IKE - Internet Key Exchange.
  • IMAP - Interactive Mail Access Protocol.
  • IPFIX - IP Flow Information Export.
  • IRC - Internet Relay Chat.
  • ISAKMP - Internet Security Association and Key Management Protocol.
  • Kerberos.
  • Kermit.
  • L2F, Layer 2 Forwarding.
  • L2TP, Level 2 Tunneling Protocol.
  • POP - Post Office Protocol.
  • PPTP - Point to Point Tunneling Protocol.
  • RADIUS - Remote Authentication Dial-In User Service.
  • RAP - Internet Route Access Protocol.
  • RIP - Routing Information Protocol.
  • SIP - Session Initiation Protocol.
  • SMTP - Simple Mail Transfer Protocol.
  • SNMP - Simple Network Management Protocol.
IETF and Security Standards
RFC 1244 And RFC 2196
The site security handbook of the IETF for security standards was the RFC 1244 this is now obsolete and is replaced by RFC 2196 which is a guide to developing computer security policies and procedures for systems that have access to the internet. References for site security can also be found at RFC 768, RFC 791, RFC 793, RFC 854, RFC 959, RFC 1087, RFC 1113, RFC 1114, RFC 1115, and RFC 1200.

The major approach for this book is related to risk assessment and security policies for a more secure network. It details about firewalls, security services and procedures, authentication, confidentiality, and integrity of information. Most of the recommendations are for network security management and services. Data manager network security must remember that a good security policy must be implemented, enforced and clearly contain areas of responsibility. You could look at the guidelines given before framing a policy for your network.

Also enumerated are requirements for security of services
  • Name Servers (DNS and NIS(+))
  • Password/Key Servers (NIS(+) and KDC)
  • Authentication/Proxy Servers (SOCKS, FWTK)
  • Electronic Mail
  • World Wide Web (WWW)
  • File Transfer (FTP, TFTP)
  • NFS
RFC 1281
This includes security standards as guidelines are for the secure operation of the internet and concern the entire internet community. Security issues that are addressed are
  • privacy of information
  • Protection of information against unauthorized modification
  • Protection of systems against denial of Service
  • Protection of systems against unauthorized access.
Security Guidelines
Some of the security issues dealt with in this are related to the users, administrators and the manufacturers and their responsibilities.

Users are
  • Responsible and accountable for security policies of their own system
  • Required to employ the available security mechanism for protection of their data and systems
  • Network service providers are
  • Responsible for security of the systems they operate and for notifying the users of policies and changes to policies.
  • Manufacturers are
  • Responsible for providing proper systems which provide adequate security controls
  • Cooperate with uses and providers for better security
Rival bodies are cropping up and are offering alternative approaches to the security standards many of which are already under the purview of the IETF. Many of these bodies are essentially governmental bodies that offer suggestions and standards such that security is bettered and crime is reduced.

Related Articles
Best Tools for a Secure Network
Network Security: Sites, Forums and Tools That Help You
How to Eliminate Major Security Concerns for SME's?

Bookmark this page Email this to your friend Add this page to del.icio.us




Suggest an Article

Haven´t found the article you are looking for, please suggest your article. We value all your suggestions and comments.