Skip to Main Content
In this chapter, we start with a review of how information security, and its management, were first defined and specified in a standardized manner. An overview is presented on how networks have been designed and developed over the last 30 years and the different standards used to define security within these networks. As noted, networks have evolved over time and now are significantly more complex than the base standards ever anticipated. Focus is then directed at the management of networks, especially security. Again the baseline standards fail to address management and security in a comprehensive manner, although important concepts are introduced, namely, Fault, Configuration, Accounting, Performance, and Security Management (FCAPS), technology-independent security services, and the need for both specific and pervasive security mechanisms. Then the most current standards for network management are reviewed for their treatment of security management and deficiencies noted.