Choice of architecture: essential for effective protection
Firewalls. The pocketknife for enforcing computer security
Article REF: TE7550 V2
Choice of architecture: essential for effective protection
Firewalls. The pocketknife for enforcing computer security

Author : Maryline LAURENT

Publication date: October 10, 2017, Review date: January 3, 2024 | Lire en français

Logo Techniques de l'Ingenieur You do not have access to this resource.
Request your free trial access! Free trial

Already subscribed?

12. Choice of architecture: essential for effective protection

To build an effective, robust and flexible solution, a CISO needs to do more than simply configure a firewall and put it in front of the public network. He or she needs to think about how to combine the various components that make up the filtering policy, and the security policy in general. It's a question of defining a genuine firewall platform where firewall, DMZ, proxy and reverse-proxy coexist.

After introducing the concept of DMZ, and then the notion of VLAN, which is useful for setting up a more global security solution, this section discusses several firewall platform architectures, and, for each, presents the advantages and disadvantages. The aim is to enable CISOs to identify the key points to bear in mind when designing their own solution.

12.1 DMZ...

You do not have access to this resource.
Logo Techniques de l'Ingenieur

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed?

Ongoing reading
Choice of architecture: essential for effective protection

Article included in this offer

"Security of information systems"

( 86 articles )

Complete knowledge base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

View offer details
Contact our team FAQ