Full Content Data in Network Security Monitoring Security is the method of keeping an acceptable level of risk. The security process revolves around four steps: assessment, protection, detection, and response as described by Bejtlich (2004). The step of the process, assessment, is a groundwork needed for the other …

Security Risk Assessment: Planning and Key Metrics The security assessment considerations as described by Landoll (2016), at a high level, includes six phases. The phases are the project definition, the project preparation, gathering the data, analyzing the risk, mitigation of risks and the recommendations or …

Security Awareness Training and ISA Capability Maturity Technology is constantly changing. Security technology is getting better and making jobs easier as described by Peltier (2013). Bad actors continue to cause issues no matter what new security is introduced. It is a constant cycle. Security awareness includes many …

Alert Data and NSM Tools for Intrusion Detection Network Security Monitoring (NSM) data that has been previously discussed are full content data (FCD), session data and statistical data. The result of an NSM specific data is to identify decisions based on views of network traffic. The NSM tool assists the analyst(s) …

Planning an Affiliate E-Commerce Catalog Business Katalogs Plus is a new business planning to launch in the next year. The company mission is to build e-commerce mobile applications and websites that sell merchants products and services. Affiliate marketing product and service data feeds will be used to generate …

Security System Design: Building Defensible Systems There are a number of fundamental security system design principals that may be incorporated into applications and systems to make them secure. The principals as described by Emerging Technology (2013) include minimizing the attack surface, least privilege, …

SMS in GSM Explained: Origination to Cell Broadcast As part of the Global System for Mobile Communications (GSM) the short message service (SMS) exists and provides a means to transfer short text messages between user equipment (UE) and a short message service center (SMSC) as described by Korhonen (2001). Messages …

How Network Defenders Classify Suspicious Traffic Computer networking traffic can be classified into three categories of normal, suspicious and malicious network as described by Bejtlich (2004). Each category effects the security posture. Network security analysis as described by Bejtlich (2013) is the process of …

Risk Analysis: The Core of Security Risk Assessment While performing information security management many things need to be in place before information security management can start as Raggad (2010) points out. The organization has to be in agreement with an accepted business mission, strategic plan and a standardized …

Active vs Passive Security Threats Explained A threat as described by Workman, Phelps & Gathegi (2013) in relation to information security, view a threat to the potential of a security breach in relation to a vulnerability. Vulnerabilities as described by Workman, Phelps & Gathegi (2013), is an artifact of a system in …