Using a layered security approach to achieve network integrity

Computerworld - It's becoming increasingly clear that the current model for network security -- defend the perimeter and patch, patch, patch -- has some serious shortcomings.
First, relying on signature files and patches doesn't provide the absolute protection that some vendors promise. Even if your perimeter systems are fully up to date, new attacks that signature files don't recognize will still get through. That was the case in January 2003 when the Slammer worm struck, spreading so quickly around the world that it slipped right past signature-based defenses and reached most vulnerable hosts within 18 minutes.
Fast worms such as Slammer and new blended attacks that combine worms and viruses will likely become more common this year. Because only their authors know what forms these attacks will take, IT teams have no way of blocking them with signature files. For all the investment being made in perimeter defenses, enterprise networks remain vulnerable.
Second, this maintenance-heavy approach to network security is expensive -- too expensive. A recent study by The Yankee Group found that the largest area of enterprise IT spending, 25%, is allocated to staffing costs. Why are IT organizations spending so much on staffing? In part, because today's security model is so labor-intensive. IT organizations need staffers for a growing list of low-level security tasks, such as reading the latest pile of security bulletins, tracking down patches, reprogramming firewalls and so on. When you consider that all this security work still leaves networks vulnerable to fast worms and blended attacks, perhaps it's time to put down the patch CDs, sit back and rethink our approach to network security.
For enterprises today, the network is where business takes place. Every department in an organization relies on the network for applications and for a growing share of communications, not only e-mail and instant messaging, but soon telephony as well. The mission of network security is to ensure that applications can do their jobs and that applications have the network bandwidth and the availability needed to support the operations of the company.
There's also a broader perspective on network requirements. It's a holistic view that encompasses security as well as availability, bandwidth and control. We call it network integrity. This is the real goal behind securing a network. When the network is functioning properly, providing applications with the bandwidth and availability they need, then the network has integrity, and security is doing its job, even when the network is under attack.
Instead of investing primarily at the perimeter, network managers would do well to adopt this broader approach, recognizing the unique vulnerabilities and requirements of each area of the network and deploying a layered security architecture designed to coordinate network operations overall and achieve network integrity.
The Yankee Group recommends that enterprises make network integrity an essential element of their application security architectures and invest in these four layers:

1 2 Next » Recommend Digg Twitter ShareThis Email Print Send Feedback Reprints Additional Resources Xerox Win a color printer! By using solid ink technology only from Xerox, you could save up to 65% by printing color for the cost of black and white. Enter for a chance to WIN a PhaserTM 8860 network color printer! Microsoft Upgrade to Internet Explorer 8 today. Save time and mitigate security risk. Deploy it now. Sybase NEXT-GENERATION MOBILITY PLATFORMS In this white paper, IDC analyzes the role of next-generation mobile enterprise platforms as organizations seek a more strategic deployment of mobile solutions. Learn the important issues you must consider before starting your next mobility initiative. Get your mobility white paper from IDC now, compliments of Sybase. White Papers & Webcasts Mitigating Litigation Risk with Email Management Tools Does your company have an email retention policy that protects it when litigation occurs? IDC discusses effective email retention policies and the role...   Managing And Protecting Your Ever Increasing Mobile Assets Learn best practices for desktop and application virtualization, computer security, and computer life-cycle management.... Protecting Content During Business Disruption: Are You Covered? Learn how ECM is helping Tulane University and the 13th Judicial Circuit Court implement disaster readiness programs....   Why Compliance Pays This OnDemand webcast explores the relationship that firms with best compliance records have higher revenue, greater customer retention, lower financial losses from data... Beyond PCI Checklists: Securing Cardholder Data with Tripwire's Enhanced File Integrity Monitoring How do organizations pass their PCI DSS audits yet still suffer security breaches? Paying attention to PCI DSS checklists only partially secures the...   Best Practices for Managing Business Risks from the Use of IT (Source: Symantec) Based on exhaustive benchmarks conducted by the IT Policy Compliance, this session highlights the relationship between business risks and use of... Authentication as a Service by Forrester Research Authentication-as-a-Service: understand the benefits of two factor authentication and the best ways to implement it....   Sun OpenSSO Enterprise Webinar (Source: Sun) This webinar replay discusses Sun OpenSSO Enterprise innovation--the single, open-source solution that helps your business solve the challenges around internal access... Sustaining SOX Compliance: Best Practices to Mitigate Risk, Automate Compliance, and Reduce Costs Since the adoption of SOX, much has been learned about IT compliance. Discover how to make SOX efforts more effective in "Sustaining Sox...   Agile Enterprise Content Management (ECM) for Rapid ROI (Source: IBM) Content rich business processes are a core feature of daily operations at just about any organization today. Very often these essential... All White Papers | All Webcasts Computerworld Reports An Interactive eBook: Enterprise Security The Business Case for Server Virtualization Computerworld Technology Briefing: Intelligent Users Use Business Intelligence All Computerworld Reports Sign up to receive updates on the latest Security resources   White Papers Mitigating Litigation Risk with Email Management Tools Beyond PCI Checklists: Securing Cardholder Data with Tripwire's Enhanced File Integrity Monitoring Sustaining SOX Compliance: Best Practices to Mitigate Risk, Automate Compliance, and Reduce Costs Keep it Clean: Maintaining the Integrity of your CMDB through Change Detection Configuration Assessment: Choosing the Right Solution Ponemon Study: The Business Risk of Lost Laptops Centralized Data Backup and Your WAN The Hidden Dangers of Spam Best Practices for Backing Up VMware® with Veritas NetBackup™ Symantec Security Compliance Brochure Protecting Content During Business Disruption: Are You Covered? Authentication as a Service by Forrester Research IDC White Paper: CCM for IT Compliance and Risk Management The Tripwire HIPAA Solution: Meeting the Security Standards Set Forth in Section 164 Addressing Compliance Initiatives with Tripwire and the Center for Internet Security Airport Insecurity: The Case of Lost Laptops An All-in-One Approach to Web Security Open Source Security Myths Dispelled IT Compliance Interactive Tools Solution Overview: Symantec Control Compliance Suite 9.0 Sponsored Links HP StorageWorks products-control, consolidation and confidence. 64-page prescriptive guide to security, compliance, and IT operations. Looking to add Unix/Linux functionality to Windows? FREE guide to saving up to 95% on network hardware costs. Start saving today! Enhance your career with a Boston University online Master's in CIS Find IT jobs in the Healthcare industry on Dice.com Network Tools Made By Engineers for Engineers Live Webcast: Building a More Productive Organization  A User Perspective With the NEW KODAK i700 Series Scanners get full speed at 300dpi! ITwhitepapers.com - Access thousands of white papers on 300+ technical topics. Leverage Your Cisco infrastructure for Superior Application Performance Learn about the AMD Virtual Experience Introducing: Project Icebreaker Introducing the new HP ProLiant G6 server family Wait for the upturn, or get ready for it with Capgemini's Technovision study. Download it here. Instantly know your IT service state - anytime, anywhere @ AccelOps.net Try the best rules engine free! Decisions.FICO.com Learn How to Create a High Performance Workplace Thrill Dad this Fathers Day and save up to 66% plus 4 FREE Caramel Apple Tartlets from Omaha Steaks. ESET NOD32 with ThreatSense(R) - Get your free trial now! Join the conversation about the hottest IT trends with Computerworld on Twitter. Create business data you can believe in with data governance Not All QSAs Are Created Equal: What You Should Know Before You Buy The arrival of Serial Attached SCSI (SAS) marks a new era in storage scalability The AMD Virtual Experience Virtual Trade Show About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map CIO Computerworld CSO DEMO GamePro Games.net IDC IDG IDG Connect IDG Knowledge Hub IDG TechNetwork IDG Ventures IDG.net InfoWorld ITwhitepapers ITworld JavaWorld LinuxWorld Macworld Network World PC World The Industry Standard Copyright © 1994 - 2009 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.