A systematic approach to network security assessment

In this paper, we examine network security assessment process, and introduce a novel approach based on two concepts of assessment areas and the related security aspects. Assessment areas include all factors which may affect the security of a network in an organization. We classify assessment areas into three areas of network components and structure, security policy and procedure, and human/environment factors. These areas have their own related security aspects which are categorized based on the impacts which security violations within that area may have on the network. We also propose taxonomy of security aspects related to network components/ structure and human/environments factors. Using the proposed approach, i.e. assessing of assessment areas against the related security aspects, we are able to assess the security of the network systemically and let the network owners and administrators to know which impacts are more expected when any violations occur and what areas are more prone to be violated. The proposed approach is mutually exclusive and includes all the issues which may have an effect on the network security (i.e. exhaustive).