- How Seriously Should You Take Threats to Network Security?
- Identifying Types of Threats
- Assessing the Likelihood of an Attack on Your Network
- Basic Security Terminology
- Concepts and Approaches
- How Do Legal Issues Impact Network Security?
- Online Security Resources
- Test Your Skills
Online Security Resources
As you read this book, and when you move out into the professional world, you will have frequent need for additional security resources. Appendix A, “Resources,” includes a more complete list of resources, but this section highlights a few of the most important ones you may find useful now.
The Computer Emergency Response Team (CERT; www.cert.org) is sponsored by Carnegie-Mellon University. CERT was the first computer incident-response team, and it is still one of the most respected in the industry. Anyone interested in network security should visit the site routinely. On the website you will find a wealth of documentation, including guidelines for security policies, cutting-edge security research, and more.
Microsoft Security Advisor
Because so many computers today run Microsoft operating systems, another good resource is the Microsoft Security Advisor website: https://www.microsoft.com/en-us/msrc?rtc=1. This site is a portal to all Microsoft security information, tools, and updates. If you use any Microsoft software, you should visit this website regularly.
The F-Secure corporation maintains a website at www.f-secure.com. This site is, among other things, a repository for detailed information on virus outbreaks. Here you will find not only notifications about a particular virus but detailed information about the virus, such as how the virus spreads, and ways to recognize the virus, and, possibly, specific tools for cleaning an infected system of a particular virus.
The SANS Institute website (www.sans.org) is a vast repository of security-related documentation. On this site you will find detailed documentation on virtually every aspect of computer security you can imagine. The SANS Institute also sponsors a number of security research projects and publishes information about those projects on its website.