摘要: Electronic record archives that are a part of any computer network, and especially those that are connected to the Internet, are at risk of attack by hackers. This report describes three security technologies that are used to miti... 展开 Electronic record archives that are a part of any computer network, and especially those that are connected to the Internet, are at risk of attack by hackers. This report describes three security technologies that are used to mitigate these risks--firewalls, vulnerability assessment tools, and antivirus software. Two firewall products are evaluated with regard to their depth of inspection, hardware/software platform, and performance. Among our conclusions with regard to firewalls are--Firewalls should be classified by the degree to which they do deep packet inspection and on a per protocol basis. Firewall appliances should be used instead of firewall software on a general purpose operating system in order to provide increased security, reduced management costs, optimized configurations, and higher performance. NIAP certification of firewall products, while a Federal requirement, is not sufficient to control access to protected systems. 收起