Chapter 7 Designing A Secure Directory; About Security Threats - Netscape DIRECTORY SERVER 6.1 - DEPLOYMENT Deployment Manual

How you secure the data in Netscape Directory Server (Directory Server) affects all
of the previous design areas. Your security design needs to protect the data
contained by your directory and meet the security and privacy needs of your users
and applications.
This chapter describes how to analyze your security needs and explains how to
design your directory to meet these needs. It includes the following sections:
• About Security Threats (page 129)
• Analyzing Your Security Needs (page 131)
• Overview of Security Methods (page 134)
• Selecting Appropriate Authentication Methods (page 134)
• Preventing Authentication by Account Inactivation (page 138)
• Designing a Password Policy (page 139)
• Designing Access Control (page 146)
• Securing Connections With SSL (page 154)
• Other Security Resources (page 155)

About Security Threats

There are many potential threats to the security of your directory. Understanding
the most common threats helps you plan your overall security design. The most
typical threats to directory security fall into the following three categories:
• Unauthorized Access
Designing a Secure Directory
Chapter 7
129