C3 Security Consulting LLC
Confidentiality
Integrety
Availability		 company banner
HomeSecurityServicesVistaInformationCompany
  
floating layer default test box
Security
FOREFRONT
Hardware
Networking
Patch Management
PKI
Web
Windows
Wireless
On this page:
Remote Access
VPN
IPSec
IDS
Related Links
Insecure.org
Scanners, sniffers, and many more useful tools for the security minded.
Cerberus
Cerberus, an IPsec implementation from NIST. This implementation contain many different encryption cypher (including all the AES finalists), but is subject to US export controls.
Security Focus
A great selection of tools and utilities.
Microsoft Baseline Security Analyzer
Microsoft Baseline Security Analyzer (MBSA) is an easy-to-use tool designed for the IT professional that helps small- and medium-sized businesses determine their security state in accordance with Microsoft security recommendations and offers specific remediation guidance.
SANS Institute
SANS Institute Web site maintains articles, documents, and links on computer security and wireless technologies.

Remote Access

Print view

Remote access is a growing requirement. The ability to connect to traveling sales staff and district offices, together with the ability to offer telecommuting options to your workforce makes remote access solution a "must have".

If you have a mobile workforce, sales people, telecommuters, etc. or geographically distributed offices, a robust and secure remote access solution is a must.

C3SC will plan a communications model that is right for your company. We will create and implement a remote access infrastructure. And, if needed, our dedicated staff will travel to remote locations to personally install or oversee the configuration of site specific equipment.

To learn more ..

VPN

Virtual Private Networking—New Issues for Network Security, published by the IT Governance Institute, defines VPN as a "…network of virtual circuits that carries private traffic through public or shared networks such as the Internet or those provided by network service providers (NSPs)."

Of the many different, and mostly proprietary implementations for a VPN infrastructure, it is the end-to-end model, where the service provider serves only as a transport for the VPN data, that C3SC works with. The service end points or tunneling could be the desktop or a VPN device that serves as a proxy for multiple desktops. Both service end points are outside the service provider’s network. This model can be used for remote access or to connect multiple sites.

There are many options for installing VPNs:

  1. Firewall-based VPNs
  2. Router-based VPNs
  3. Remote access-based VPNs
  4. Hardware (black box)-based VPNs
  5. Software-based VPNs

Of these, the cheapest and most readily available is the software/firewall based VPN solution built into recent versions of Windows operating systems. It is scalable, well supported, integrated with Active Directory, uses existing functionality of IPSec and digital certificates, with PPTP and L2TP for backward compatibility, and will continue to be supported by Microsoft for the foreseeable future (it is well supported in the pre-release version, RC1, of Vista). Because it is so integrated, the Windows implementation of a VPN network will have a lower administrative overhead, but still be flexible for both today's and tomorrow's networks.

It is the Microsoft implementation of a VPN that C3SC primarily implements.

We will:

  • Assist with the cost justification, ROI, and scope assessment.
  • Perform risk assessment.
  • Install and configure server and/or gateway software.
  • Install and configure client software.
  • Train users in the operation of a VPN.
  • Train support staff in the maintenance and administration of the VPN infrastructure and produce supporting documentation.
  • Design and implement monitoring utilities and processes.

IPSec

By implementing IPSec you protect your data while it is in transmission across your (or someone else's) network. By using both digital signatures and encryption you achieve confidentiality and integrity of transmitted data. Although it can be straightforward to deploy in its default configuration, effectively integrating it with a PKI environment requires careful planning.

Talk to C3SC about planning and implementation of IPSec, Active directory and PKI integration, and see if it is right for your environment.

IDS

C3SC does not currently offer a proprietary solution. However we will work with third party vendors, of your preference or by our recommendation, to integrate an IDS solution into existing or planed network infrastructure.

By being vendor neutral, we will make an unbiased selection based on the needs of your environment.

See also DNS, DHCP, NAT

▲Top of page
Did you know?
Many wireless access points, public and private, are open.
In a study of 2600 around Indianapolis, researchers from the University of Cambridge found 46% running with no encryption, and many were still using default settings.
Wireless networks are more vulnerable to hackers - so they need additional protection.
Encryption technologies such as Wi-Fi Protected Access can help. Although there are weaknesses with WEP, some legacy systems do not support more modern protocols like WPA, and so WEP is still better than nothing and will deter most casual eavesdropping.
Who is using your computer?
Don't leave your computer whilst you are logged on. It only takes a moment for someone to send an email with your account. Always shut down at night and set a password for your screen saver so your PC will remember even if you don't.
Spam problems?
Microsoft filters out over three billion spam messages a day.
An average of $1,300 is spent per employee in companies of $10m revenue or less.
This is 10 times greater than companies with revenue of $100m - $1bn. Unable to realize the economies of scale, smaller companies spend disproportionately higher amounts on security - learn how to leverage lessons learnt by larger companies.
Trademarks© Copyright (2006) C3 Security Consulting LLC, Washington DC. (+1 866 799 2969) - Hosted by Webmasters.com