05392nam 2200685 a 450 991081523820332120240313143318.01-118-57788-41-118-57798-11-118-57781-71-299-18667-X(CKB)2550000001005868(EBL)1124007(OCoLC)828299039(SSID)ssj0000855368(PQKBManifestationID)11478847(PQKBTitleCode)TC0000855368(PQKBWorkID)10929828(PQKB)11143089(MiAaPQ)EBC1124007(Au-PeEL)EBL1124007(CaPaEBR)ebr10658477(CaONFJC)MIL449917(EXLCZ)99255000000100586820121012d2013 uy 0engur|n|---|||||txtccrMobile access safety beyond BYOD /Dominique Assing, Stéphane Calé1st ed.Hoboken, N.J. ISTE Ltd./John Wiley and Sons Inc.20131 online resource (248 p.)Networks and telecommunications seriesDescription based upon print version of record.1-84821-435-9 Includes bibliographical references and index.Title Page; Contents; Introduction; Chapter1. An Ordinary Day in the Life of Mr. Rowley, or the Dangers of Virtualization and Mobility; 1.1. A busy day; 1.2. The ups and downs of the day; 1.3. What actually happened?; Chapter 2. Threats and Attacks; 2.1. Reconnaissance phase; 2.1.1. Passive mode information gathering techniques; 2.1.2. Active mode information gathering techniques; 2.2. Identity/authentication attack; 2.2.1. ARP spoofing; 2.2.2. IP spoofing; 2.2.3. Connection hijacking; 2.2.4. Man in the middle; 2.2.5. DNS spoofing; 2.2.6. Replay attack; 2.2.7. Rebound intrusion2.2.8. Password hacking2.2.9. The insecurity of SSL/TLS; 2.3. Confidentiality attack; 2.3.1. Espionage software; 2.3.2. Trojans; 2.3.3. Sniffing; 2.3.4. Cracking encrypted data; 2.4. Availability attack; 2.4.1. ICMP Flood; 2.4.2. SYN Flood; 2.4.3. Smurfing; 2.4.4. Log Flood; 2.4.5. Worms; 2.5. Attack on software integrity; 2.6. BYOD: mixed-genre threats and attacks; 2.7. Interception of GSM/GPRS/EDGE communications; Chapter 3. Technological Countermeasures; 3.1. Prevention; 3.1.1. Protection of mobile equipment; 3.1.2. Data protection; 3.2. Detection; 3.2.1. Systems of intrusion detection3.2.2. Honeypot3.2.3. Management and supervision tools; 3.3. Reaction; 3.3.1. Firewall; 3.3.2. Reverse proxy; 3.3.3. Antivirus software; 3.3.4. Antivirus software: an essential building block but in need of completion; 3.4. Organizing the information system's security; 3.4.1. What is security organization?; 3.4.2. Quality of security, or the attraction of ISMS; Chapter 4. Technological Countermeasures for Remote Access; 4.1. Remote connection solutions; 4.1.1. Historic solutions; 4.1.2. Desktop sharing solutions; 4.1.3. Publication on the Internet4.1.4. Virtual Private Network (VPN) solutions4.2. Control of remote access; 4.2.1. Identification and authentication; 4.2.2. Unique authentication; 4.3. Architecture of remote access solutions; 4.3.1. Securing the infrastructure; 4.3.2. Load balancing/redundancy; 4.4. Control of conformity of the VPN infrastructure; 4.5. Control of network admission; 4.5.1. Control of network access; 4.5.2. ESCV (Endpoint Security Compliancy Verification); 4.5.3. Mobile NAC29; Chapter 5. What Should Have Been Done to Make Sure Mr Rowley's Day Really Was Ordinary; 5.1. The attack at Mr Rowley's house5.1.1. Securing Mr Rowley's PC5.1.2. Securing the organizational level; 5.1.3. Detection at the organizational level; 5.1.4. A little bit of prevention; 5.2. The attack at the airport VIP lounge while on the move; 5.3. The attack at the café; 5.4. The attack in the airport VIP lounge during Mr Rowley's return journey; 5.5. The loss of a smartphone and access to confidential data; 5.6. Summary of the different security solutions that should have been implemented; Conclusion; APPENDICES; Appendix 1; Appendix 2; Bibliography; Index Over recent years, the amount of mobile equipment that needs to be connected to corporate networks remotely (smartphones, laptops, etc.) has increased rapidly. Innovative development perspectives and new tendencies such as BYOD (bring your own device) are exposing business information systems more than ever to various compromising threats. The safety control of remote access has become a strategic issue for all companies. This book reviews all the threats weighing on these remote access points, as well as the existing standards and specific countermeasures to protect companies, from both thISTEComputer networksRemote accessComputer networksSecurity measuresComputer networksRemote access.Computer networksSecurity measures.005.8621.384Assing Dominique1717582Calé Stéphane1717583MiAaPQMiAaPQMiAaPQBOOK9910815238203321Mobile access safety4113935UNINA