Term
|
Definition
-Also known as Forwarding Plane
-Forwards traffic to the next hop along the path to the selected destination
-packets go through the router
-routers/switches
-built to dispose of incoming and outgoing frames and packets |
|
|
Term
|
Definition
-Bastion Host
-Screened host gateway
-Screened subnet gateway |
|
|
Term
|
Definition
-Config Policy
-Monitor Performance
-Makes decisions about where traffic is sent
-It is the Signalling of the network
-route controller exchanges the topology information with other routers and constructs a routing table |
|
|
Term
|
Definition
-Connected to Same switch
-Logically connected to different VLAN's
-VLAN's group hosts on different physical switches and locations to the same broadcast domain
-Creates Security Boundaries
-Reduces background chatter |
|
|
Term
|
Definition
-Contracts
-SLA's
-Northbound interfaces
-Orchestrator |
|
|
Term
|
Definition
-Critical Infrastructure
-SCADA Systems
-Classified Networks |
|
|
Term
|
Definition
-Method of Segmenting or Isolating
-Keeps host sandboxed |
|
|
Term
|
Definition
| -Two screened host gateway devices that isolate the LAN from the Internet, creating a DMZ, between them. |
|
|
Term
|
Definition
-a dual-homed device
-No direct routing
-configured to allow only certain types of traffic through while excluding the rest of the traffic |
|
|
Term
|
Definition
| A packet-filtering device, usually a router, which communicates only with a designated application gateway inside the secured network. No other traffic is allowed in or out |
|
|
Term
|
Definition
| Method of isolating a computer or network from the internet or external networks |
|
|
Term
| Security Segmentation Models |
|
Definition
Physical
Logical
Virtualization
Air Gapped |
|
|
Term
|
Definition
Security Device Placement
-Aggregation Switches |
|
|
Term
|
Definition
Security Device Placement
-Filters
-Proxies
-Firewall |
|
|
Term
| In front of application servers, web servers |
|
Definition
Security Device Placement
-SSL Accelerators
-Load balancers
-DDoS mitigator or Mitigation Appliance |
|
|
Term
| Located on all parts of the network |
|
Definition
Security Device Placement
-Sensors
-Collectors |
|
|
Term
|
Definition
| Signals when additional resources are needed. Scales up or down as needed. |
|
|
Term
|
Definition
|
|
Term
|
Definition
-Centralized Reporting Function
-Runs inventory and encrypts using TPM and stored securely to HSM
-On boot runs inventory again and compares to stored values
|
|
|
