Home

Security

IT Security

Security has been a core interest for a long time for us. All our projects have a strong bias towards implementation of good security practice. List of IT Security projects

Conceptual IT Security

  • Security concepts
  • Audits
  • Analysis of physical security

Network Perimeter and Host Protection

Today, firewalls are a standard means of basic protection for hosts and network segments. They are typically deployed at network borders to separate internal networks from the Internet. The big majority of Linux hosts we implement are configured with Netfilter iptables as host firewall.
  • Firewalls Checkpoint, IPtables, Cisco, Nokia, SonicWALL, SunScreen
  • Design of demilitarized zones DMZ
  • Intrusion Detection (Snort, ISS RealSecure)

Transport Security (network encryption)

A lot of the information that travels on the network is of confidential nature. For the protection of this information, we employ different technologies, depending on the network layout and other factors. IPsec VPNs are mostly used to interconnect physically distant IT infrastructures. SSL/TLS either enables point-to-point security between two servers or point-to-multipoint in the case of a secured web server. SSH can also be used for point-to-point transport security; it's widely used for UNIX systems management.
  • IPsec VPNs (OpenSWAN, Free-S/WAN)
  • OpenVPN
  • SSL/TLS (Apache mod_ssl)
  • SSH (OpenSSH)

Authentication and Authorization

  • Directories, LDAP (OpenLDAP, iPlanet Directory Server)
  • Public Key Infrastructure PKI
  • Smart Cards, X.509v3 certificate management