Cornerstone Issue 59: June 22, 2004



Welcome to Issue 59 of Cornerstone, a subscription-only electronic newsletter issued periodically by Core Competence.

Cornerstone reports on a wide range of networking topics and activities involving Core Competence. A brief abstract explains what you will find if you choose to visit each URL.

searchMobileComputing Columns

http://searchmobilecomputing.com/tip/0,289483,sid40_gci970484,00.html
Using virtual APs to enable coexistence
searchMobileComputing, 16 Jun 2004

Many companies are now upgrading their wireless LANs from weak WEP to 802.1X and TKIP (aka WPA Enterprise). Very soon, they will have the opportunity to upgrade to AES (WPA2). Lisa Phifer explains how virtual access points can help provide peaceful coexistence during this transition -- and beyond.

http://searchmobilecomputing.com/tip/1,289483,sid40_gci959572,00.html
Sygate Security Portal neutralizes public PC threats
searchMobileComputing, 13 Apr 2004

If your company is considering browser-based remote access, Sygate's Security Portal can help you stop those Web sessions from letting infected PCs in, being abused by malware or leaving confidential data behind. Read Lisa Phifer's review at searchMobileComputing.

COMDEX Loop Columns

http://loop.interop-comdex.com/comments/183_0_1_0_C/
IP Telephony Security, Part 1: Threats to Subscribers
Comdex LOOP, June 11, 2004

The marriage of voice, IP, and wireless packet offers many benefits, but there's a dark side to this union. Dave Piscitello explains why the combined attack targets and vectors present a formidable triple whammy of security threats to users and IPT operators.

http://loop.interop-comdex.com/comments/179_0_1_8_C/
What Is A Blended Threat?
Comdex LOOP, May 28, 2004

Blended threat is a popular term for a multi-pronged attack against networked computers. In this LOOP column, Dave explains how blended threats can be mitigated using a combination of client security, network admission and integrity control, server security, education, and common sense.

http://loop.interop-comdex.com/comments/163_0_1_8_C/
A Case For Identity Management
Comdex LOOP, May 20, 2004

Some organizations are managing identities —- user and system accounts, access privileges and policies —- across multiple organizations engaged in business-to-business and business-to-consumer transactions. Dave explains why these organizations can probably demonstrate the return on investment (ROI) associated with identity management (IdM).

http://loop.interop-comdex.com/comments/128_0_1_0_C/
Recognizing and Responding to Spoof Email
Comdex LOOP, May 3, 2004

Even the best of antispam measures may not be enough to protect you from spoofed email messages. In this column, Dave offers a short list of things you can do to prevent falling victim to phishing.

WLAN Security

http://www.itworldcanada.com/Pages/Pages/Docbase/ViewArticle.aspx?ID=idgml-a687151f-9899-4f67-acfd-21fd18531643
Wi-Fi Planet: How to locate network intruders
IT World Canada, 18 Mar 2004

Stefan Dubowski's coverage of Wi-Fi Planet Toronto for itWorldCanada includes a brief interview with CoreCom's Lisa Phifer regarding the role of location awareness in WLAN security. [Free site registration required for access]

http://www.webtorials.com/main/resource/papers/BCR/paper73.htm
Securing Teleworker Networks
Webtorials, May 2004 (originally published in BCR 10/2003)

Most IT departments try to beef up teleworker security with VPN and AV software. But as teleworker nodes morph into teleworker networks, should your security strategy change? In this new Webtorials post, originally published by BCR, Lisa Phifer discusses how to adapt teleworker defenses to protect wired and wireless residential LANs.

LiveSecurity Columns

http://www.corecom.com/external/livesecurity/future.htm
Future Internet Security: Predictions, Wishes
WatchGuard LiveSecurity, 22 Jan 2004

To kick the year off, WatchGuard asked Dave Piscitello to speculate on the advances we might expect (or hope) to see in the near future of security. In this LiveSecurity column, Dave explains why the biggest problems security faces are social, not technological.

http://www.corecom.com/external/livesecurity/iisserver.htm
IIS Server Camouflage
WatchGuard LiveSecurity, 26 Feb 2004

Just about every company opens TCP Port 80/HTTP to the Internet for some Web-based application. Thus, many companies, wittingly or not, leak useful tidbits of information that attackers gather to refine their attack plan. In this column, Dave examines information attackers can gather from basic Web requests, and suggests what IIS Server admins can do to make help make info-gathering a little harder.

http://www.corecom.com/external/livesecurity/vlansec.htm
VLAN Security Guidelines
WatchGuard LiveSecurity, 26 Mar 2004

Many organizations still struggle over whether VLANs are secure. How much of VLAN vulnerability is perception rather than reality? Under what circumstances are the most common VLAN vulnerabilities exploited? What measures can you take to eliminate them? Dave's LiveSecurity column tackles these questions.

searchSecurity VPN Tips

In a recent SearchSecurity webcast, Lisa Phifer discussed technology developments in virtual private networks. In the following posts, Lisa answers user-submitted questions that she didn't have time to answer during the broadcast. If you missed the live webcast, visit the broadcast recording on-line at http://searchsecurity.com/vpn1 [viewing requires registration, Javascript, and cookies]

http://searchsecurity.com/tip/1,289483,sid14_gci957677,00.html
IPsec selectors and their use in remote-access VPNs

http://searchsecurity.com/tip/1,289483,sid14_gci957675,00.html
Integrating RADIUS with an MSSP's remote-access VPN

http://searchsecurity.com/tip/1,289483,sid14_gci957673,00.html
Factors to consider with a managed S2S VPN

http://searchsecurity.com/tip/1,289483,sid14_gci957667,00.html
SSL VPNs and client-application authentication


Recent On-Line Musings by CoreCom

http://hhi.corecom.com/weblogindex.htm
Dave Piscitello's Weblog
May-June 2004

Looking for a starter book on ethical hacking? Concerned about legislation and spyware? Want to protect yourself from Phishing? These are just a few of the many topics Dave has blogged during the past few months. If you enjoy Dave's Blog, you can subscribe to it by sending mailto:dave@corecom.com?subject=send_digest

http://searchnetworking.com/ateAnswers/0,289620,sid7_tax292553,00.html
http://searchnetworking.com/ateAnswers/0,289620,sid7_tax296082,00.html
http://searchmobilecomputing.com/ateAnswers/0,289620,sid40_tax294161,00.html
Ask The Expert Wireless and VPN Answers
searchMobileComputing and searchNetworking, May 2004

As a wireless/VPN expert for searchNetworking and searchMobileComputing, Lisa Phifer answers reader questions and offers networking and security tips. A few of the questions Lisa answered last month:

  • Troubleshooting a 802.11g adapter
  • Troubleshooting Nortel Contivity over WLAN
  • Configuring WebVPN using a Cisco VPN Concentrator
  • Indicating a favored AP in XP
  • Current applications for infrared wireless

    -----------------------------------------------------------------

    Cornerstone is an electronic publication of Core Competence, Inc. If you do not wish to receive future issues, please reply to this message or send email to cornerstone@corecom.com with the word "remove" in the subject line or message body.

    For additional information about Core Competence, visit our web site http://www.corecom.com
    For past issues, visit our CornerStone page http://www.corecom.com/html/cornerstone.html
    Send us a subscribe message to receive future issues of CornerStone.