Presentation is loading. Please wait.

Presentation is loading. Please wait.

Access Controls Supervised by: Dr.Lo’ai Tawalbeh Prepared by: Abeer Saif.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Access Controls Supervised by: Dr.Lo’ai Tawalbeh Prepared by: Abeer Saif."— Presentation transcript:

1 Access Controls Supervised by: Dr.Lo’ai Tawalbeh Prepared by: Abeer Saif

2 Introduction:  Access Controls: The security features that control how users and systems communicate and interact with one another.  Access: The flow of information between subject and object.  Subject: An active entity that requests access to an object or the data in an object. Such as a user, program, or process that accesses an object to accomplish a task.

3 Introduction:  Object: A passive entity that contains information. Such as: a computer, database, file, computer program, directory, or field in a table in a database, etc.

4 Introduction:  Access controls are extremely important because they are one of the first lines of defense used to fight against unauthorized access to systems and network resources.  Access controls give organizations the ability to control, restrict, monitor, and protect resource availability, integrity, and confidentiality.

5 Access Control Administration: Two Basic forms:  Centralized: One entity is responsible for overseeing access to all corporate resources. Provides a consistent and uniform method of controlling access rights.  Decentralized: Gives control of access to the people who are closer to the resources. Has no methods for consistent control, lacks proper consistency.

6 Centralized & Decentralized access:

7 Access Control methods:  Access controls can be implemented at various layers of an organization, network, and individual systems.  Three broad categories:  Administrative  Physical  Technical (aka Logical)

8 Access Controls ISA 2004 Internet Security & Acceleration Server 2004

9 ISA 2004 overview:

10  ISA Server 2004 main roles:  Firewall.  Packet inspection & filtering.  Stateful inspection & filtering.  Application layer inspection & filtering.  VPN server.  Unified firewall & VPN Server.  Proxy and Caching server.  Forward cache.  Backward cache.

11 ISA 2004 overview:  ISA Server 2004 as a VPN server:  VPN (Virtual Private Network): is a secure network connection created through a public network such as the Internet.  Types of VPN connections:  VPN clients.  Site-Site VPN.  Quarantine Control.

12 ISA 2004 overview:  Why use VPN connections:  Availability.  Cost.  Internet Protocol security (IPSec): A set of industry- standard, cryptography based protection services and protocols. IPSec protects all protocols in the Transmission Control Protocol/Internet Protocol (TCP/IP) protocol suite and Internet communications.

13 ISA 2004 overview:  Protocols supported by ISA Server 2004:  Point-Point tunneling protocol (PPTP):  Uses Microsoft’s encryption (MPPE).  Less Complex to set than IPsec.  Layer two tunneling protocol (L2TP):  More secure than PPTP.  IPsec concepts more complex.

14 ISA 2004 overview:

15 References:  CISSP All-in-One Exam Guide.  Installing, Configuring, and Administering Microsoft Windows XP Professional. MCSA/MCSE Self-Paced Training Kit (Exam 70-270).  Implementing Microsoft Internet Security and Acceleration Server 2004. MCSA/MCSE Self-Paced Training Kit (Exam 70-350).

Download ppt "Access Controls Supervised by: Dr.Lo’ai Tawalbeh Prepared by: Abeer Saif."

Similar presentations

Encrypting Wireless Data with VPN Techniques

Encrypting Wireless Data with VPN Techniques
1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.

1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.
1.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.

1.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.

Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
1 Configuring Virtual Private Networks for Remote Clients and Networks.

1 Configuring Virtual Private Networks for Remote Clients and Networks.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
Module 10: Configuring Virtual Private Network Access for Remote Clients and Networks.

Module 10: Configuring Virtual Private Network Access for Remote Clients and Networks.
Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.

Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.
Goal of The Paper  What exactly is a VPN?  Why do you need a VPN?  what are some of the technologies used in deploying a VPN?  How does a VPN work?

Goal of The Paper  What exactly is a VPN?  Why do you need a VPN?  what are some of the technologies used in deploying a VPN?  How does a VPN work?
70-270, 70-290 MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.

70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.
Virtual Private Networks Shamod Lacoul CS265 What is a Virtual Private Network (VPN)? A Virtual Private Network is an extension of a private network.

Virtual Private Networks Shamod Lacoul CS265 What is a Virtual Private Network (VPN)? A Virtual Private Network is an extension of a private network.
Firewalls Presented By Hareesh Pattipati. Outline Introduction Firewall Environments Type of Firewalls Future of Firewalls Conclusion.

Firewalls Presented By Hareesh Pattipati. Outline Introduction Firewall Environments Type of Firewalls Future of Firewalls Conclusion.
Virtual Private Network (VPN) © N. Ganesan, Ph.D..

Virtual Private Network (VPN) © N. Ganesan, Ph.D..
1 © J. Liebeherr, All rights reserved Virtual Private Networks.

1 © J. Liebeherr, All rights reserved Virtual Private Networks.
Chapter 11: Dial-Up Connectivity in Remote Access Designs

Chapter 11: Dial-Up Connectivity in Remote Access Designs
MCTS GUIDE TO MICROSOFT WINDOWS 7 Chapter 14 Remote Access.

MCTS GUIDE TO MICROSOFT WINDOWS 7 Chapter 14 Remote Access.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 10: Remote Access.

70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 10: Remote Access.
1 Microsoft Windows NT 4.0 Authentication Protocols Password Authentication Protocol (PAP) Challenge Handshake Authentication Protocol (CHAP) Microsoft.

1 Microsoft Windows NT 4.0 Authentication Protocols Password Authentication Protocol (PAP) Challenge Handshake Authentication Protocol (CHAP) Microsoft.

Similar presentations

Ads by Google