North American Network Operators Group|
Date Prev | Date Next |
Date Index |
Thread Index |
Author Index |
Re: A useful oversimplification for network surveillance?
- From: Nicolas FISCHBACH
- Date: Tue Aug 30 18:57:19 2005
Howard C. Berkowitz wrote:
I'm developing some guidance for ISP surveillance for infrastructure
attacks, and my increasing impression is that for other than the expert
level, there may be some useful simplifications of the applicability of
tools. Remember that I am speaking of surveillance here, not the
detailed analysis in a sinkhole. Perhaps this could be the basis of
some security architecture presentations/tutorials at NANOG.
Have a look at these two presentations, the first covers most of the
items you listed, the second one, while more enterprise-oriented also
applies to large SP management networks.
"Building an Early Warning System in a Service Provider Network"
"Network flows and Security"
Nicolas FISCHBACH (email@example.com) <http://www.securite.org/nico/>
Senior Manager - IP Engineering/Security - COLT Telecom
Securite.Org Team - http://www.securite.org/