NIST just released three great guides relating to network security. SP 800-45 is entitled Guidelines on Electronic Mail Security [pdf], and addresses topics such as securing a mail server, content filtering, various email standards, and of course email encryption and signing.
Also new, SP 800-84 is called Guide to Intrusion Detection and Prevention Systems [pdf]. It discusses IDPS technologies that are network-based, host-based, designed for wireless networks, and those that do network behavior analysis. The document has a good overview of how IDPS works in general, and goes into details of the various implementations. There’s even a section on how to select the right product for your situation.
The third new document is SP 800-97, Establishing Wireless Robust Security Networks [pdf]. This is basically a guide to the IEEE 802.11i standard, which provides much-needed security enhancements to the familiar 802.11 family of wireless standards. The first few sections are an overview of 802.11, with some history lessons on WEP and why it was such a failure, but the rest of the document is great for anyone trying to understand what 802.11i has to offer. Now if I could just get my neighbor to put a password on her access point…
Related posts:
