论文信息 - Enforcing network security: a real cease study in a research organization

Enforcing network security: a real cease study in a research organization

For a research organization access to the Internet is a primary need and researchers like to use remote resources in the most natural way: as if everything were local. Unfortunately such a wish is very often in conflict with another need: the protection of computing and networking assets from external threats. In this paper we report about the activities carried on in our Institute to improve the security of the local network. A number of tradeoffs between complexity, cost and security level are described along with the particular choices we have made.

Massimo Bernaschi | Elisabetta d'Aiutolo | P. Rughetti

[1] Adi Shamir,et al. A method for obtaining digital signatures and public-key cryptosystems , 1978, CACM.

[2] William Cheswick,et al. Firewalls and Internet Security , 1994 .

[3] Dan Farmer,et al. Improving the Security of Your Site by Breaking Into it , 2000 .

[4] Bill Cheswick,et al. Firewalls and internet security - repelling the wily hacker , 2003, Addison-Wesley professional computing series.

[5] Elizabeth D. Zwicky,et al. Building internet firewalls , 1995 .

[6] Mike Loukides,et al. Managing NFS and NIS , 1991 .