Articles, Case Studies and Reports

Articles

What about IPv6?

By Ray Bernard and Rodney Thayer

A Bp.IP article • June 2011

       IPv6 isn't just about IP addresses. There is an entire network vision related to it.

Best Practices for IP Security Systems

By Ray Bernard, James Connor and Rodney Thayer

Security Technology Executive Magazine • June/July 2010

       Old thinking must go if we are to have security systems that are themselves secure.

Pass or Fail: the Out-of-the-Box Experience

By Ray Bernard, James Connor and Rodney Thayer

Security Technology Executive Magazine • August 2010

       How the CIO's techs examine security systems.

Sound Deployments for IP Security Systems

By Ray Bernard, James Connor and Rodney Thayer

Security Technology Executive Magazine • September 2010

       Security system assessment criteria .. with common findings and recommendations.

Case Studies

Cisco IT 2004 Case Study: Video and Closed-Circuit TV over IP 

Cisco's security department lost 90% of its security video globally, while most of its service companies around the globe were clueless as to the cause of the problem. This was a global computer and network infection, but IT got its information systems back up and running in practically no time. However, that wasn't the case with Security's systems. Afterwards, the Security department turned to the IT department, and hardened their deployments against this particular threat and others.

Reports

Convergent Security Risks in Physical Security Systems and IT Infrastructures 

This document presents an overview examination of the issues related to the converged security risks in physical security systems and IT infrastructures. It presents the results of a research project conducted by The Alliance for Enterprise Security Risk Management (AESRM) that focused on the nature and ramifications of convergent security risks in physical security systems and IT infrastructures. The security risks and management issues associated with commingling security systems and devices, process control systems, and IT environments need to be identified and addressed by manufacturers, security architects, system administrators, information security staff members and auditors. Control solutions need to be developed within the context of an organization’s overall information security strategy and design.

Convergence Engineering

Look for some deployment project lessons learned material coming up.