Computer System and Network Security
We will bankrupt ourselves in the vain search
for absolute security.
— Dwight D. Eisenhower
The world is never going to be perfect, either on-
or offline; so let's not set impossibly
high standards for online.
— Esther Dyson
World War Two cryptographic hardware
Left: German Enigma encryption machine
Right: U.S. SIGABA encryption machine
National Museum of the U.S. Air Force, WPAFB
This page remains under construction, just as your information security policy should.
These pages are intended to provide some background for the courses I teach, listing the references and URLs for various tools, studies, and other issues that come up in courses. Plus, of course, once I have these pages I no longer have to try to remember specific reference details! I'm not trying to review specific commercial security systems as that is done elsewhere (and would be hard to maintain).
Also check out Purdue's CERIAS information assurance research and development group and their resources: http://www.cerias.purdue.edu/
Remember that installing some tools, and even taking security quite seriously on an on-going basis, does not make you secure! There is no such thing as a completely secure system. Hence some lawyer repellent, er, I mean, disclaimer:
The following are no more than suggestions. There is no guarantee that they will make your system secure. Mention here of a commercial product is by no means an endorsement — I'm just trying to direct you to several available tools, and I may have only one such example handy right now.
Use this information as a tool, in addition to what you have already learned.
Some of these are useful, some have a relatively high level of hype, but you might find some of these useful:
Make sure you understand your systems well, and set them up properly! As Hippocrates said, "Primum non nocere", or "First, do no harm."
Be aware that your browser always gives away some information about you, unless you are using Tor and using it very carefully. Your browser just provided this information:
|REMOTE_ADDR||18.104.22.168 (your IP address)|
|REMOTE_PORT||33949 (your TCP port number)|
|HTTP_ACCEPT_ENCODING||x-gzip, gzip, deflate|