• Home

  • Documents

  • Policy Considerations Phill Hallam Baker. We have a choice
19
Policy Considerations Phill Hallam Baker

Policy Considerations Phill Hallam Baker. We have a choice

Tags:

Embed Size (px)

Citation preview

Page 1: Policy Considerations Phill Hallam Baker. We have a choice

Policy Considerations

Phill Hallam Baker

Page 2: Policy Considerations Phill Hallam Baker. We have a choice

We have a choice

Page 3: Policy Considerations Phill Hallam Baker. We have a choice

Choice 1

Page 4: Policy Considerations Phill Hallam Baker. We have a choice

If it works don’t break it

Page 5: Policy Considerations Phill Hallam Baker. We have a choice

Choice 2

Page 6: Policy Considerations Phill Hallam Baker. We have a choice

Do the job right

Page 7: Policy Considerations Phill Hallam Baker. We have a choice

An Architecture

Page 8: Policy Considerations Phill Hallam Baker. We have a choice

A master plan

Page 9: Policy Considerations Phill Hallam Baker. We have a choice

If we have to change• Layered Architecture

• Reusable Policy Statements

• Reusable discovery strategy

Page 10: Policy Considerations Phill Hallam Baker. We have a choice

You can’t have securitywithout security policy

Page 11: Policy Considerations Phill Hallam Baker. We have a choice

SSL

• Should I use security?

• HTTPS://

Page 12: Policy Considerations Phill Hallam Baker. We have a choice

S/MIME, PGP

• No policy layer

• Authentication has limited use

Page 13: Policy Considerations Phill Hallam Baker. We have a choice

STARTTLS

• The best email encryption we have

• Should be used 100%

• Vulnerable to a downgrade attack

Page 14: Policy Considerations Phill Hallam Baker. We have a choice

We can fix discovery

Without changing the DNS infrastructure

Or waiting for it to change

Page 15: Policy Considerations Phill Hallam Baker. We have a choice

Three step discovery1) policy = lookup (TXT, "_dkim.alice.example.com")

IF policy <> NULL THEN RETURN policy

2) pointer = lookup (PTR, “alice.example.com")IF pointer == NULL THEN RETURN NULL

3) policy = lookup (TXT, "_dkim." + pointer)return policy

To specify a wildcard use:*.example.com PTR _default.example.com

Page 16: Policy Considerations Phill Hallam Baker. We have a choice

Choice 1 is best

Page 17: Policy Considerations Phill Hallam Baker. We have a choice

Don’t boil the ocean

Page 18: Policy Considerations Phill Hallam Baker. We have a choice

Unless we have to

Page 19: Policy Considerations Phill Hallam Baker. We have a choice

Don’t end up with


Diocese of Hallam The Church Part 1 Tutor: Gregory Ryan gryan@hallam-diocese.com

Diocese of Hallam The Church Part 1 Tutor: Gregory Ryan [email protected]

Documents
Hallam Senior College

Hallam Senior College

Documents
Http://prismproof.org/ PRISM-PROOF Email Phillip Hallam-Baker Comodo Group Inc

Http://prismproof.org/ PRISM-PROOF Email Phillip Hallam-Baker Comodo Group Inc

Documents
Hallam BPC (1)

Hallam BPC (1)

Documents
AB114-1 revit stairs by phill

AB114-1 revit stairs by phill

Documents
CPMA April 11, 2015 Phill Ward, DPM President, APMA CPMA April 11, 2015 Phill Ward, DPM President, APMA

CPMA April 11, 2015 Phill Ward, DPM President, APMA CPMA April 11, 2015 Phill Ward, DPM President, APMA

Documents
Phill Collins - Anthology

Phill Collins - Anthology

Documents
Phill Brown - Tape Op Magazine · Robert Ash, Mark Bolan, John Bonham, Lenny Breau, Linda Brown, Vicki Brown, Leslie Brown, Jenny Bruce, David ... Phill Brown. Phill Brown

Phill Brown - Tape Op Magazine · Robert Ash, Mark Bolan, John Bonham, Lenny Breau, Linda Brown, Vicki Brown, Leslie Brown, Jenny Bruce, David ... Phill Brown. Phill Brown

Documents
Hallam Graduate Startups

Hallam Graduate Startups

Documents
Hallam road automotive

Hallam road automotive

Automotive
Testde Phill

Testde Phill

Documents
Phill cupcake

Phill cupcake

Documents
Angela hallam presentation

Angela hallam presentation

Design
Signing Email Phill Hallam-Baker. 2 What are the end goals? Phishing –Organized crime sends email impersonating well known brands –Require means of

Signing Email Phill Hallam-Baker. 2 What are the end goals? Phishing –Organized crime sends email impersonating well known brands –Require means of

Documents
Portifólio Diego Phill

Portifólio Diego Phill

Documents
Hallam - Musical Motivation

Hallam - Musical Motivation

Documents
P hallam baker_keynote

P hallam baker_keynote

Technology
Phill Butler : FEBC Media Communications Keynote

Phill Butler : FEBC Media Communications Keynote

Spiritual
Phill Black`s 2nd Year Portfolio

Phill Black`s 2nd Year Portfolio

Documents
Sheffield Hallam University

Sheffield Hallam University

Documents
Sheffield Hallam University 2008 Sheffield Hallam University Formula Student Team CETL Presentation

Sheffield Hallam University 2008 Sheffield Hallam University Formula Student Team CETL Presentation

Documents
daily - Phill Hopkins / BasementArtsProject 2015

daily - Phill Hopkins / BasementArtsProject 2015

Documents
Phill Road

Phill Road

Documents
Catálogo Phill Park Summer 2012

Catálogo Phill Park Summer 2012

Documents
Teesing product phill flyer 2013

Teesing product phill flyer 2013

Career
A presentation by Verisign's Dr. Phillip Hallam-Baker

A presentation by Verisign's Dr. Phillip Hallam-Baker

Documents
test de phill

test de phill

Documents
Chapter Financial Management: Best Practices Chris Hallam Province Delta Archon hallam.13@osu.edu

Chapter Financial Management: Best Practices Chris Hallam Province Delta Archon [email protected]

Documents
SHEFFIELD HALLAM UNIVERSITY - Sheffield College - Home Documents/Course Handbooks/… · SHEFFIELD HALLAM UNIVERSITY. SHEFFIELD COLLEGE in partnership with SHEFFIELD HALLAM UNIVERSITY

SHEFFIELD HALLAM UNIVERSITY - Sheffield College - Home Documents/Course Handbooks/… · SHEFFIELD HALLAM UNIVERSITY. SHEFFIELD COLLEGE in partnership with SHEFFIELD HALLAM UNIVERSITY

Documents
© 2004 VeriSign, Inc. Web Services and the Old World Phillip Hallam-Baker Principal Scientist VeriSign Inc

© 2004 VeriSign, Inc. Web Services and the Old World Phillip Hallam-Baker Principal Scientist VeriSign Inc

Documents