Key Components of Service Provider Security

Service provider security implementations can be broken down into the following main components:

  • Securing the routing decisions made on the service provider routers.

  • Device security of the service provider's network components.

  • Auditing of the logs on service provider routers for prosecution and attack-detection purposes. When collected using some of the traceback mechanisms discussed in this chapter, these logs can be used to trace the source of an attack.

  • Use of access-control mechanisms to block certain types of DoS attacks.

  • Use of pattern-detection techniques to identify malicious content in the traffic traversing the service provider network. The traffic can be dropped, or rate-limiting techniques ...

Get Network Security Principles and Practices now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial