8/11/2019 QoS Security

1/12

ITE PC v4.0

Chapter 1 1 2007 Cisco Systems, Inc. All rights reserved. Cisco Public

Network Architecture Characteristics

Ensuring Quality of Service Ensuring QoS requires a set of techniques to manage the

utilization of network resources.

It is necessary to prioritize which types of data packages must be

delivered first, in expense of other data packages that can bedelayed.

Classification:Assigning precisely priority for each type ofcommunication. For example, communication that is time-sensitiveor important would be classified differently from communication

that can wait or is less important. Assigning priorities:The characteristics of the information being

communicated also affects its management. For example, thedelivery of a stream of video would require a large amount ofbandwidth while other type of service, like e-mail, would be less

demanding.

8/11/2019 QoS Security

2/12

ITE PC v4.0

Chapter 1 2 2007 Cisco Systems, Inc. All rights reserved. Cisco Public

Network Architecture Characteristics

8/11/2019 QoS Security

3/12

ITE PC v4.0

Chapter 1 3 2007 Cisco Systems, Inc. All rights reserved. Cisco Public

Network Architecture Characteristics Networks need mechanisms to manage congested

network traffic. Congestion is caused by when thedemand on the network exceed the available capacity.

Network bandwidth is the measure of the data carrying

capacity of the network. When simultaneouscommunications are attempted across the network, thedemand for the network bandwidth can exceed itsavailability.

An obviously fix for this is to increase the amount ofavailable bandwidth. But this is not always possible duetechnology limitations, costs, etc.

8/11/2019 QoS Security

4/12

ITE PC v4.0

Chapter 1 4 2007 Cisco Systems, Inc. All rights reserved. Cisco Public

Network Architecture Characteristics

8/11/2019 QoS Security

5/12

ITE PC v4.0

Chapter 1 5 2007 Cisco Systems, Inc. All rights reserved. Cisco Public

Network Architecture Characteristics Without properly designed and implemented QoS

mechanisms, data packages can be dropped withoutconsidering priority.

Time-sensitive communication: Increase priority for

services like telephony or video distribution.

Non time-sensitive communication: Decrease priorityfor web page retrieval or e-mail.

High importance to organization: Increase priority forproduction control or business transaction data.

Undesirable communication: Decrease priority orblock unwanted activity, like peer-to-peer file sharing orlive entertainment.

8/11/2019 QoS Security

6/12

ITE PC v4.0

Chapter 1 6 2007 Cisco Systems, Inc. All rights reserved. Cisco Public

Network Architecture Characteristics

8/11/2019 QoS Security

7/12ITE PC v4.0

Chapter 1 7 2007 Cisco Systems, Inc. All rights reserved. Cisco Public

Network Architecture Characteristics

Network Security Compromising the integrity of the network infrastructure, service

and the data contained on network attached computer can havebusiness and financial repercussions like:

Network outage that prevent communications and transactionsoccurring, with consequences loss of business.

Misdirection and loss of personal of business funds.

Company intellectual property that is stolen and used by acompetitor.

Customer contract details that become known to competitors ormade public, resulting in a loss of market confidence in thebusiness.

8/11/2019 QoS Security

8/12ITE PC v4.0

Chapter 1 8 2007 Cisco Systems, Inc. All rights reserved. Cisco Public

Network Architecture Characteristics

8/11/2019 QoS Security

9/12ITE PC v4.0

Chapter 1 9 2007 Cisco Systems, Inc. All rights reserved. Cisco Public

Network Architecture Characteristics

Ensuring confidentiality: Having a strong system for userauthentication, enforcing passwords that are difficult to guess, andrequiring users to change it frequently helps restrict access tocommunications and to data stored.

Data encryption: Where appropriate, encrypting content ensures

confidentiality and minimizes unauthorized disclosure or theft ofinformation.

Maintaining communication integrity: The use of digitalsignatures, hashing algorithms and checksum mechanisms areways to provide source and data integrity across a network to

prevent unauthorized modification of information. Ensuring availability: Means having the assurance of timely and

reliable access to data services for authorized users. Networkfirewall devices can ensure system reliability and the robustness todetect, repel, and cope attacks. Building redundant networks

infrastructures can reduce the impact of these attacks.

8/11/2019 QoS Security

10/12ITE PC v4.0

Chapter 1 10 2007 Cisco Systems, Inc. All rights reserved. Cisco Public

IRC Clients and Wiki Server IRC: Internet Relay Chat is a form of real-time Internet

text messaging or synchronous conferencing. It ismainly designed for group communication in discussionforums, called channels, but also allows one-to-onecommunication via private message as well as chat anddata transfer, including file sharing.

Wiki Server: Is a WikiEngine that is completely self-contained it includes its own HTTP server, and sodoes not require CGI support, Perl, or even a separate

Web server such as Apache or IIS. As such, it is one ofthe easiest way to run a wiki.

8/11/2019 QoS Security

11/12ITE PC v4.0

Chapter 1 11 2007 Cisco Systems, Inc. All rights reserved. Cisco Public

Summary

8/11/2019 QoS Security

12/12ITE PC v4.0

Chapter 1 12 2007 Cisco Systems Inc All rights reserved Cisco Public