Fundamentals of Network Segmentation

Contributed by Arthur Wyatt
One of the most important things to consider when designing or creating a network architecture or infrastructure is what the security needs are and how best to achieve that security. When deciding the level of security needed there are several things that need to be taken into accounts such as who will need to access the information, how much of the information needs to be secured, Hardware consideration, and accountability. The next step to is to decide how best to address those needs. Many of those aforementioned considerations can at least in part be addressed with the implementation of network segmentation. four methods of segmentation will be the main focus of this paper. Through out this paper several strategies on how, where, and when to use the various methods will be discussed. Of those, the ones that will be discussed in detail are the use of physical segmentation, logical segmentation, virtual segmentation, and lastly a subset of physical called air gag. Lastly, the paper will end with a brief discussion of the main advantages of network segmentation in the form of increased performance and security, the quality of life improvement with ease of management and lastly how segmentation helps meet standard compliance.
 
This document is in PDF format. To view it click here.

Rate this article: 
No votes yet