Chapter 23. Design Under Fire

This chapter deals with design under fire, which means the practice of looking at our network security designs the same way an attacker would. Analyzing how attackers can compromise our networks helps us find the networks' weaknesses so that we can improve their security. Analysis is a natural follow-up to the testing procedures discussed in Chapter 22, “Assessment Techniques.” To implement design under fire, we discuss a process called adversarial review, which offers one way to protect our networks, even from vulnerabilities we are unaware of.

Performing an adversarial review might seem redundant because you already included security in your design from the start. However, the testing that occurs in the design stage ...

Get Inside Network Perimeter Security, Second Edition now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.