Guidelines and Security Standards

RFC: Guidelines and Security Standards

Transport Layer Protocols:

AH - IP Authentication Header.
EGP - Exterior Gateway Protocol.
ESP - Encapsulating Security Payload.
GGP - Gateway to Gateway Protocol.
GRE - Generic Routing Encapsulation.
ICMP - Internet Control Message Protocol.
ICMPv6 - Internet Control Message Protocol for IPv6.
IGRP - Interior Gateway Routing Protocol.
L2TP - Level 2 Tunneling Protocol.
MOSPF - Multicast Open Shortest Path First.
OSPF - Open Shortest Path First Routing Protocol.
RSVP - Resource ReSerVation Protocol.
SEND - SEcure Neighbor Discovery.
SKIP - Simple Key management for Internet Protocol.
TCP - Transmission Control Protocol.
UDP - User Datagram Protocol.
UDP-Lite, Lightweight User Datagram Protocol.

Application Layer Protocols:

AURP - AppleTalk Update-based Routing Protocol.
Authentication Server Protocol.
BFTP - Background File Transfer Program.
BGP - Border Gateway Protocol.
BOOTP - Bootstrap Protocol.
CMP - Certificate Management Protocols.
CRANE - Common Reliable Accounting for Network Element.
DCAP - Data Link Switching Client Access Protocol.
DHCP - Dynamic Host Configuration Protocol.
DHCPv6 - Dynamic Host Configuration Protocol for IPv6.
DIAMETER.
DNS - Domain Name System.
Finger.
FTP - File Transfer Protocol.
Gopher.
HOSTNAME.
HTTP - HyperText Transfer Protocol.
IKE - Internet Key Exchange.
IMAP - Interactive Mail Access Protocol.
IPFIX - IP Flow Information Export.
IRC - Internet Relay Chat.
ISAKMP - Internet Security Association and Key Management Protocol.
Kerberos.
Kermit.
L2F, Layer 2 Forwarding.
L2TP, Level 2 Tunneling Protocol.
POP - Post Office Protocol.
PPTP - Point to Point Tunneling Protocol.
RADIUS - Remote Authentication Dial-In User Service.
RAP - Internet Route Access Protocol.
RIP - Routing Information Protocol.
SIP - Session Initiation Protocol.
SMTP - Simple Mail Transfer Protocol.
SNMP - Simple Network Management Protocol.

IETF and Security Standards

RFC 1244 And RFC 2196

The site security handbook of the IETF for security standards was the RFC 1244 this is now obsolete and is replaced by RFC 2196 which is a guide to developing computer security policies and procedures for systems that have access to the internet. References for site security can also be found at RFC 768, RFC 791, RFC 793, RFC 854, RFC 959, RFC 1087, RFC 1113, RFC 1114, RFC 1115, and RFC 1200.

The major approach for this book is related to risk assessment and security policies for a more secure network. It details about firewalls, security services and procedures, authentication, confidentiality, and integrity of information. Most of the recommendations are for network security management and services. Data manager network security must remember that a good security policy must be implemented, enforced and clearly contain areas of responsibility. You could look at the guidelines given before framing a policy for your network.

Also enumerated are requirements for security of services

Name Servers (DNS and NIS(+))
Password/Key Servers (NIS(+) and KDC)
Authentication/Proxy Servers (SOCKS, FWTK)
Electronic Mail
World Wide Web (WWW)
File Transfer (FTP, TFTP)
NFS

RFC 1281

This includes security standards as guidelines are for the secure operation of the internet and concern the entire internet community. Security issues that are addressed are

privacy of information
Protection of information against unauthorized modification
Protection of systems against denial of Service
Protection of systems against unauthorized access.

Security Guidelines

Some of the security issues dealt with in this are related to the users, administrators and the manufacturers and their responsibilities.

Users are

Responsible and accountable for security policies of their own system
Required to employ the available security mechanism for protection of their data and systems
Network service providers are
Responsible for security of the systems they operate and for notifying the users of policies and changes to policies.
Manufacturers are
Responsible for providing proper systems which provide adequate security controls
Cooperate with uses and providers for better security

Rival bodies are cropping up and are offering alternative approaches to the security standards many of which are already under the purview of the IETF. Many of these bodies are essentially governmental bodies that offer suggestions and standards such that security is bettered and crime is reduced.

Best Tools for a Secure Network
Network Security: Sites, Forums and Tools That Help You
How to Eliminate Major Security Concerns for SME's?

Effective Preventive solutions Network security includes the process of securing private and official data under authentic access control preventing system virus and hackers from attacking them.

Vulnerability Assessment
Intrusion Prevention
Firewall and Security Network Security Solutions Hacking Port Scanners

Tools and Standards Network Tools Network security includes the process of securing private and official data under authentic access control preventing system virus and hackers from attacking them.

Security Standard by IETF
Network Security Websites
Business Network policy

Network Security

Network Security Networking field take account of necessities and strategy that are followed by network administrators to monitor unauthorized access over computer network resources.

Computer Security Breach

Network Security and OS

Linux Network Security

Home Network Security

Wireless Network Security

Enterprise Security

Security systems over enterprise network cover wide-ranged strategies that help to guard the network beside possible threats on system hacks and cracks.