Security Toolkit
Security toolkits comprise the practices, technologies or services used to manage, analyze, filter, test and/or control security safeguards. For example, firewall technology provides a mechanism through which authentication, authorization, filtering and directing of remote users to an internal system can be accommodated. The University's security tool kit is a combination of commercial off-the shelf products, industry-proven freeware or shareware, and University-developed or -modified software tools. The tools may be positioned on the perimeter of systems or integrated into the systems; and may be deployed constantly or as needed. Some common technologies present in security toolkits include firewall technology, vulnerability scanners, and sniffers.
[Adapted from materials provided by the Virginia
Alliance for Secure Computing
and Networking (VA SCAN -- see http://www.vascan.org
)]
University Standards for Security Toolkit
- Because its network has external connections using TCP/IP, the University uses firewall technology, in accord with state requirements.
- The University tests its firewall technology on a periodic basis to ensure compliance with security policies.
- The University deploys multi-layered protection at the Internet gateway, the network server and the desktop levels to prevent the introduction of malicious code into the system.