An assessment of the National Computer Security Center's approach for computer network security and a recommended alternative systems approach

This study discusses the problems of implementing computer network security by describing the background from which network security needs evolved. It discusses the attempts to address security by establishing standards and evaluation criteria as common reference points for implementing security systems. Generic categories of threats and vulnerabilities to computer networks are outlined as well as network security objectives. The National Computer Security Center's policy for guiding network security efforts are assessed, applied to a current security issue, and analyzed for effectiveness. The study culminates in the description of a recommended alternative approach for the development of network security initiatives.