| Network security is a dynamic process because of | | | | reduce the possible damage that can be done to the |
| the new threats and vulnerabilities that are uncovered | | | | network, and in turn, the productivity of the |
| every day. Your software may be secure today, but | | | | organization. |
| the intense pace of upgrades will continue to create | | | | The results of vulnerability assessment tools represent |
| the openings for new issues to arise. According to | | | | a snapshot of system security at a particular point in |
| statistics released by the CERT Coordination Center, | | | | time. Although these systems usually don’t |
| more than 300 vulnerabilities are reported every | | | | reliably detect an attack in progress, they can |
| month. The process of discovering them, determining | | | | determine whether an attack is possible, and |
| the potential security risk, and recommending fixes is | | | | furthermore, provide information about what can be |
| called a Vulnerability Assessment. | | | | done to minimize the possibility of damage from an |
| A Network Vulnerability Assessment can: | | | | attack. |
| - Identify any potential security breaches a hacker | | | | Many companies provide Vulnerability Assessments, |
| could exploit | | | | but it is advisable to consult with multiple vendors prior |
| - Analyze discovered vulnerabilities existing in the | | | | to deciding who will be given access to the network. |
| network | | | | The key factor is whether you are comfortable with |
| - Provide a detailed explanation of the recommended | | | | their experience level, and the type of reports that can |
| fix for each threat | | | | be provided. |
| Despite the fact that most security measures are put | | | | Vlad Sharoiko is the Director of Technical Services for |
| in place to protect a network from the malicious | | | | Dicar Networks, San Jose, CA. |
| outside world, many intrusion attempts are now | | | | Dicar Networks, a network security solution provider |
| happening from inside the organization. With the | | | | base in San Jose, CA, is pleased to announce an |
| proliferation of laptops and handhelds, the possibility of | | | | addition to their staff that will increase their ability to |
| an internal intrusion has greatly increased. For this | | | | assist in the planning and implementation of their |
| reason, a complete assessment should be done with | | | | security focus. Vlad Sharoiko, Vice President of |
| scanners located inside and outside the network to | | | | Engineering for Barbedwire Technologies, will focus on |
| determine if potential issues exist in either place. | | | | designing security assessment programs that will help |
| In addition, the reports generated should be structured | | | | companies reduce the risks from either internal or |
| for 2 levels of review. The Executive Report should | | | | external network attacks. |
| represent a high level overview of the number of | | | | Mr. Sharoiko has an extensive background in network |
| vulnerabilities detected, while the IT Department should | | | | security, including design work on various network |
| receive a highly detailed report containing descriptions | | | | infrastructure projects. He has extensive experience |
| of each vulnerability and explanations of the fixes | | | | architecting and installing network security products for |
| recommended for each one. | | | | large ISP environments and corporate customers. Prior |
| The key features of a Vulnerability Assessment are: | | | | to joining Barbedwire Technologies, Mr Vlad was a |
| - Automated scanning of internal and external network | | | | founding member of two successful internet startups, |
| devices | | | | and had previous assignments with Beltelcom and |
| - Scan schedules customized to times of least activity | | | | Minsk Motor Plant in Belarus, where he was also |
| on the network | | | | involved in new product designs. |
| - Full SSL support to scan SSLized services such as | | | | As a local provider of network security products, Dicar |
| https, smtps, & imaps | | | | Networks can provide assistance with all phases of |
| - Smart service recognition to detect services moved | | | | network design and installation, plus offer telecom and |
| to non-standard ports | | | | networking assistance. Dicar works with small and |
| - Non-destructive scanning to avoid interruption of | | | | medium size businesses to provide a full range of |
| normal network activity | | | | networking services, with the goal of simplifying |
| - Complete reporting designed for 2 levels of review | | | | networks. Other services include security |
| A Vulnerability Assessment should be performed on a | | | | assessments, network audits, and technical support. |
| monthly or quarterly basis, depending on network size | | | | Maintaining strong relationships with partners like |
| and usage. New vulnerabilities are discovered every | | | | SonicWall, Cisco, Adtran, & Barbedwire, Dicar is |
| day, including ones that can provide back door access | | | | able to offer a full range of network management and |
| through desktops or laptops already connected to the | | | | support services, including anti-virus and anti-spam |
| network. Even a configuration change or faulty | | | | programs. All these offerings help companies increase |
| upgrade can introduce an opportunity for breach that | | | | the efficiency of their network while providing a good |
| was not available a week ago. Testing and review on | | | | return on investment. |
| a regular basis can help discover potential issues and | | | | |