Cornerstone Issue 39: March 4, 2002
Welcome to Issue 39 of Cornerstone, an electronic newsletter
issued periodically by Core Competence.
Cornerstone reports on a wide range of networking topics and
activities involving Core Competence. A brief abstract explains
what you will find if you choose to visit each URL.
http://hhi.corecom.com/osnindex.html
Published in 1993 and co-authored by Dave Piscitello and Lyman Chapin,
"OSN" is now out of print, and Addison Wesley has released the copyrights
to the authors. This month, Dave and Lyman invite you to download the
first five chapters. OSN still includes plenty of relevant information
about TCP/IP. Its popular "AHAs" (An Historical Aside) remain humorous,
offering insight into what was then the chaos of ISO/CCITT standards. If
you attend the IETF these days, you'll no doubt recognize the similarity!
http://webevents.broadcast.com/wsp/index.asp?nEventId=1060
In this live audio event, Lisa Phifer will explain how IPsec encryption,
message authentication, and IKE tunnel endpoint authentication measures
actually work to protect VPN traffic. Pre-register for this live
presentation and on-line chat by visiting searchSecurity.com.
http://searchnetworking.techtarget.com/onlineEventsTranscriptSecurity/1,289693,sid7_gci796838,00.html
If you missed this searchNetworking audio event presented by Lisa Phifer,
listen to the on-demand audio archive. Learn about the measures you can
take to eliminate the security risks of 802.11b wireless LANs.
http://seminars.internet.com/isp/west02/agenda2.html#track2
Network access may be an ISP's bread and butter, but if you want any icing
on your cake, you've got to diversify. Join Lisa Phifer as she moderates
this expert panel at April's ISP Business Expo. Dr. Bill Hancock (Exodus),
David Cottingham (AT&T), and Alan Vance (ISS Managed Security Services) will
gather at 10:45 on Wednesday, April 3rd to share their insights on managed
security services, the business opportunities, and the details that must be
considered by ISPs entering this lucrative-but-challenging market.
http://www.rubi-con.org/speakers.html#piscitello
You're invited to join Dave Piscitello when he delivers his Rubi-Con 2002
presentation at 18:00 on Saturday, April 6th. According to the program,
"Dave will be debugging IPsec as a protocol and explaining its security
issues, problems with protocol design, and its many uses. In this session,
he hopes to debunk many of the myths of IPsec and make it user friendly
enough for all to grasp like a rodeo clown holding onto the horns of the
beast that could crush him senseless in a swift move of its torso."
http://www.key3media.com/interop/lv2002/education/special.php
To learn more about VPNs, join Dave Piscitello, Joel Snyder and Fred Avolio
in Las Vegas. VPN Day 1 is designed to provide a solid understanding of VPN
technologies, alternatives, applications, use considerations, and selection
criteria. VPN Day 2 examines the nitty gritty details that make or break an
IPsec VPN, providing practical recommendations for successful deployment.
http://www.isp-planet.com/technology/2002/snmp_lock.html
By now, everyone has heard the CERT advisory and realizes that SNMP is
vulnerable. But what can you do to protect your net? Read Lisa Phifer's
ISP-Planet "how to" on battening down those loose SNMP hatches.
http://www.corecom.com/external/livesecurity/sohorecovery.htm
With WatchGuard's permission, CoreCom reposts Dave Piscitello's
LiveSecurity column which explains how a network security administrator
can help a remote WatchGuard SOHO user recover from damage to his
firewall.
http://www.searchNetworking.com/tip/1,289483,sid7_gci804130,00.html
In last month's column, Lisa Phifer discussed the growing demand for
secure PDA access to enterprise networks. This month's column takes a
closer look at one approach: using IPSec to secure PDA network access
over 802.11b wireless LANs. Read about how we tunneled WiFi from Palm
and Pocket PC 2002 handhelds using Certicom's movianVPN client, Xircom's
WLAN module, and Agere's ORiNOCO PC card.
-----------------------------------------------------------------
Cornerstone is an electronic publication of Core Competence, Inc.
If you do not wish to receive future issues, please reply to this
message or send email to
cornerstone@corecom.com
with the word "remove" in the subject line or message body.
For additional information about Core Competence, visit our web site http://www.corecom.com
NETWORK ARCHITECTURE
Open Systems Networking: TCP/IP & OSI
Chapters 1 through 5: Preface, Standards, Architecture, Addressing
ON-LINE EVENTS
Understanding IPsec VPN Crypto
searchSecurity Audio Event, March 26, 2002
Make Your Wireless LAN Secure
searchNetworking Audio Event, February 12, 2002
CONFERENCE PRESENTATIONS
Selling Security Services: Leveraging your Network and Technical Chops
ISP Business Expo, Dallas, April 3, 2002
Debugging IPsec
Rubi-Con, Romulus, Michigan, April 6, 2002
VPN Day 1: Fundamentals, VPN Day 2: Design and Deployment
Networld+Interop Las Vegas, May 6-7, 2002
SECURITY ADMINISTRATION
Battening Down SNMP
ISP-Planet, February 15, 2002
SOHO Disaster Recovery (Story of Bob)
LiveSecurity Editorial, November 23, 2001
WIRELESS AND PDAs
Securing PDA Access To WLANs
searchNetworking, February 26, 2002
For past issues, visit our CornerStone page http://www.corecom.com/html/cornerstone.html
Send us a subscribe message to receive future issues of CornerStone.