Professional Documents
Culture Documents
By Michael Takeuchi
Cyber Security Marathon
25 February 2018, Hotel Bumi Wiyata (Depok)
1
Little Things About Me
2
Objective
3
Presentation Outline
4
IT Security Basic Architecture
5
IT Security Basic Architecture
http://whatis.techtarget.com/definition/Confidentiality-integrity-and-availability-CIA
6
Confidentiality
7
Integrity
8
Availability
9
Network Infrastructure Security
10
Network?
11
Computer Network
12
Infrastructure?
13
IT Infrastructure
14
Why need to be secured?
15
How?
16
How?
17
How? (My Version)
18
Network Infrastructure Topology
19
Conventional Network
20
Services Installed
ISP Router
Routing
NAT
Core Switch
Switching
End-user
Routing
Networking
21
Pro & Con
Pro
Simple
Low Cost
Con
Unmanageable
Data can be sniffed
All in one broadcast domain
Encryption must be applied on the end-user
Firewall setup must be applied on the end-user
22
Hardern Network (1)
23
Services Installed (1)
ISP Router
Routing
Firewall
NAT
IPS
Filtering Malicious Traffic
Edge Router
Inter-VLAN Routing
VLAN Trunking
24
Services Installed (2)
Core Switch
VLAN
Switching
Port Mirroring
IDS
Catch All Traffic
Give Alert If Intrusion Detected
SIEM
Log Management
Convert From RAW Log to Human Readable
25
Services Installed (3)
Active Directory/LDAP
Domain Controller
Access Control for end-user
End-user
Routing & Networking
Domain Group
Anti Virus
Anti Malware
Inernet Security
26
Pro & Con
Pro
Manageable
Different Broadcast Domain (make management easier)
More be secure (but not 100%)
Encryption can be applied on the network easier
Firewall can scan entire network
All of traffic can be monitored
Con
Cost
Complex
Qualified HR Needed
27
Hardern Network (2)
28
Services Installed (1)
ISP Router
Routing
Unified Threat Management (UTM) a.k.a. All in One Box
Firewall
AD/LDAP
NAT
IDS
IPS
VLAN Trunking
Routing & Inter-VLAN Routing
29
Services Installed (2)
Core Switch
VLAN
Switching
End-user
Routing & Networking
Domain Group
Anti Virus
Anti Malware
Inernet Security
30
(FW, IDS, IPS, SIEM) VS UTM
1st Option
2nd Option
31
Summary
32
Frequently Asked Question
33
Help
34
35