1 / 19

Separate Domains of IT Infrastructure

CS5493. Separate Domains of IT Infrastructure. 7 Domains of IT. User Domain Workstation Domain LAN Domain LAN to WAN Domain WAN Domain Remote Access System Application Domain. Logical Grouping of IT Domains. User/Workstation Network LAN LAN-WAN interface WAN

menefer
Download Presentation

Separate Domains of IT Infrastructure

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. CS5493 Separate Domains of IT Infrastructure

  2. 7 Domains of IT • User Domain • Workstation Domain • LAN Domain • LAN to WAN Domain • WAN Domain • Remote Access • System Application Domain

  3. Logical Grouping of IT Domains • User/Workstation • Network • LAN • LAN-WAN interface • WAN • Remote (Brave new world) • System/Application

  4. User Domain • The subjects: • The people using the system. • This is the domain of the AUP

  5. The AUP • Acceptable usage policy – a contract between the system owner and system user outlining the acceptable usage parameters of the computing system.

  6. User Domain • Threats/Vulnerabilities • Lack of user awareness • User apathy toward policies • Security policy violations • Disgruntled employee attacks • Social engineering attacks • Etc • Mitigation strategies …

  7. Workstation Domain • Usually refers to the computer on your desk or workspace. • This includes the staff supporting the workstations • The AUP is a key document for this domain

  8. Workstation Domain • Risks/threats/vulnerabilities • Unauthorized access • Malware • Support staff threats/vulnerabilities • Social engineering attacks • Etc. • Mitigation strategies…

  9. Network Domain • For the purpose of this course, we will combine the domains for LAN, LAN-to-WAN, and WAN into the Network Service Domain

  10. Network Service Domain • Includes the equipment, cables, the wireless access, etc. • Key document is the SLA

  11. SLA: Service Level Agreement • An agreement between the system provider and system user. Outlines provider responsibilities and defines realistic expectations to the users.

  12. Network Service Domain • Threats/Vulnerabilities/ • Unauthorized access, physical or otherwise • Malware attacks • Hardware vulnerabilities • Support staff threats/vulnerabilities • Misuse of network resource by users • Clear-text (unencrypted) data traffic • DoS • Wireless attacks

  13. Remote Access Domain • Accessing the computing services from outside the boundary of the computing system. • Smart phones • Laptop computers • PDAs • Remote E-mail usage • Wireless access • Access to cloud resources

  14. Remote Access Domain • The AUP is the governing document

  15. Remote Access Domain • threat/vulnerability • Theft or loss of electronic devices • Theft or loss of data • Unauthorized access (shoulder surfers) • Clear-text data transfer • Poor security on personal devices. • Reliability of cloud services

  16. System/Application Domain • The critical infrastructure of server systems, applications, and data. • Payroll • Accounting, purchasing, billing • Sales • Intellectual property, etc. • Proprietary technology

  17. System/Application Domain • Threat/vulnerability • Unauthorized access • Hardware failure • Data loss • Malware • Failure to keep systems and software up-to-date. • Social engineering attacks • etc

  18. System/Application Domain • The governing document is the SLA.

  19. Domain Group Assignments • User/Workstation Green Group • Network Blue Group • Remote Gold Group • System/Application Silver Group

More Related