NCJ Number
108877
Date Published
1988
Length
138 pages
Annotation
This guide describes Local Area Network (LAN) technology and its security risks and offers advice on setting up procedures that will control and protect information on networks.
Abstract
Following a survey of network types and their benefits for businesses, the book describes a LAN model based on the Xerox Network System using the Ethernet protocol. Vulnerabilities, risks, and security measures are explored. Four management actions to ensure information quality are outlined: management of business information as a critical resource, good systems design, effective management and control of information processing, and network and workstation security. Other guidelines address planning for security in a LAN and implementing a plan that incorporates controls over various activities and access, identification and authentication procedures, and protections against unauthorized connections. Encryption, the ultimate protection, is discussed. A security standards example is provided to help managers write individualized security directives. The book's final chapter focuses on handling the personal computer risk in LAN's. Appendixes contain a management task list, an automatic local access control standard, and a problem reporting and resolution procedure. Diagrams, tables, and index.