Security Strategies And Performnce Evaluation For Enterprise Networks

One of the key successes of enterprises is their management information system security and performance.MIS of today is composed by different communicating computers and electronic infrastructures manipulated by human to achieve a common goal of an enterprise.This communication is normally made to achieve a secured and reliable exchange of data from any source host to any destination host inside and outside of enterprise boundaries.The design of this communication is made complex as the two of good design aspect(security and availability)do interact in opposite direction as demonstrated in this thesis.Therefore balancing between security and availability while designing this network;is the source of different cost and vulnerabilities.In a race of finding the most intelligent and unbreakable security solution,different security solutions are being used.Commercial version of these security solutions are extremely expensive,their manipulability is not also user friendly it requires security experts.In this thesis,we analyze the relationship among the three pillars of the information security.Our goal is to prove and evaluate the inverse proportionality between the security mechanisms and network performance metrics.To do so,we perform some simulations on the GNS3 and discuss the impact of some security mechanisms on the system throughput.The response time of TCP and UDP packets flowing between two hosts is also simulated.Then we design a projection method to describe the impact when multiple security mechanisms are applied to enterprise networks,where statistical analysis is done.Moreover,we also classify enterprises based on their functions and sizes of IT equipment they can handle.We design an expandable security model to help to establish the conception and evaluate the security requirements of enterprises.Besides,we recommend some appropriate security design for different categories of enterprises.It shows that security systems are now essential for companies to ensure their computer security.However,policies,best practices and basic securities are more essential for assuring enterprises security and might be even sufficient to some small and medium enterprises.