Defense in Depth
In the previous millennium, as networks of personal computers began to become commonplace, the security situation for many companies worsened.
The problem was two-fold. First, instead of using dumb-terminals to access computer resources, users now had machines that were capable of crashing, slowing down and even creating network problems. Secondly, instead of just having to patch one central server, network administrators were now responsible for patching hundreds or thousands of client machines, all of which were connected to the Internet.
The solution at the time seemed simple: create a defensive network anchored by firewalls at the perimeter to restrict the types of network traffic that could get outside the network. This reduced the number of types of attacks that would work against a network, and with traffic inspection, could even be used to identify machines that were behaving inappropriately. Best of all (from the network admin’s perspective), many felt they could harden the firewall without having to expend as much effort on the chewy network center.
Sadly, times have changed, along with the risks associated with networks. Instead of focusing exclusively on perimeter security, network administrators need to worry about malicious or accidental damage to systems on the inside of their networks. In addition, when security perimeters are breached, networks can’t be left wide open.
The idea of defense in depth addresses these risks simply but effectively: by layering multiple defenses so that if one fails, another area picks up. Non technology systems have been using defense in depth for years, from the human body, to military strategy. Now, more than ever, should a hardware component stop functioning as intended, another system needs to pick up the slack.
This is why at New Signature we typically recommend multiple levels of virus defense, multiple network security layers for workstations and a layered approach to user accounts. All of these systems ensure that should a primary defense fail, a secondary (or tertiary) system can begin working automatically.
New Signature works with our clients to continuously improve our clients overall security profile through the implementation of enterprise ready, modular security solutions.