This series has been developed by the Home Server Land team to introduce computing and networking technologies.  Throughout the series, we identify threats and vulnerabilities that exist and identify methods that can be taken to reduce them.  We encourage developing a security plan and implementing the safeguards that are necessary to protect your data, your privacy, and your network.

This is the Table of Contents that has links to each post for this series.

Part 1 - Physical Security and Risk Analysis (Published 5 Apr 2009)

In this section we follow the growth of the personal computer from its birth to its use as a mainstay in today's communication and computing culture.  In many ways the first practical use of the personal computer is as important to our generation as was the telephone in 1876.  In both cases, both were embroiled in a controversial start as to who really originated it.  But there is no doubt that that both evolved from technical wonders to must have necessities.  We also discuss the concept of security awareness and develop a worksheet to aid in the implementation of a threat and risk assessment.  We also make recommendations on ways to secure your Windows Home Server and the network.

• Physical Security Risk Assessment
• Threat and Risk Assessment Worksheet

 Part 2 - Network Topology and Security (Published 12 Apr 2009)

Network topology, performance characteristics, and network devices that are commonly used are identified and compared.  We discuss computer security as it relates to the single computer, to computers connected to a LAN, and threats involved with having a constant connection to the Internet.  By explaining in detail all the topics in this part we are providing the basis for a common understanding of the terminology, technology, and methodology as it relates to the Windows Home Server and network.  Our recommendations can be used to plan for future purchases of computer and network equipment and to plan for the obsolescence of legacy components.  This planning is part of the computer security plan.

• Network Topology and Security Risk Assessment
• Threat and Risk Assessment Worksheet

 Part 3 - Internet Service Provider Performance (Published 18 Apr 2009)

We explain the different types of Internet service providers (ISP) interface, service, and equipment that are normally used by home and small business networks.  We explain the different types of Internet service provided by cable, telephone, and satellite companies.  This information helps to identify criteria that can be used to compare ISP service offerings.  Speed, cost, functionality, and reliability become important factors as the WHS is used to expand your reach to the Internet.

• ISP Risk Assessment
• Threat and Risk Assessment Worksheet

 Part 4 - Securing Your Network - Computer User Threats (Published on 26 Apr 2009)

People pose the greatest threats to the network, computers, and the files stored on the computers.  These threats can come from legitimate users or unauthorized people.  Managing these threats is a delicate balance of restricting improper use while permitting authorized users to use the computer.  We identify the tasks that the administrator needs to take to control access to a computer and network and the risks associated by computer users.  Password management is a necessary part of the security plan and provides the day-to-day defense of computers and the network.

• Computer User Threats Risk Assessment
• Threat and Risk Assessment Worksheet

Part 5 - Securing Your Network - General Network Threats (Published 3 May 2009)

We look at the threats and vulnerabilities that are associated with the local area network (LAN).  We provide an explanation of DHCP and NAT.  We explain how an Internet connection is shared by other computers on the LAN.  We describe how to configure the network router to connect to the Internet Service Provider (ISP) by explaining the different types of WAN or wide area network configurations.  We follow with an explanation of how the router is configured for the private network's address, DHCP, and the static local IP address of the Windows Home Server.

• General Network Threats Risk Assessment
• Threat and Risk Assessment Worksheet

 Part 6 - Securing Your Network - Network Topology Threats (Published 10 May 2009)

We explain of how data is encrypted and decrypted using a key and algorithm.  We stress the importance of creating a strong key or password for wireless devices so that it cannot be guessed easily or broken by brute force.  We explain in greater detail how to configure the wireless router or access point in a way that provides the maximum level of security.  We also address what should be done if a laptop has been lost or stolen.

• Wireless Network Threats Risk Assessment
• Threat and Risk Assessment Worksheet

Part 7 - Email Threats (Published 17 May 2009)

Threats and vulnerabilities that can be introduced by email messages are identified.  We identify the methods that are used by hackers to obtain personal information or to place malicious programs on your computer.  We make recommendations as to how all email users can be made aware of these techniques.

• Email Threats Risk Assessment
• Threat and Risk Assessment Worksheet

Part 8 - Internet Threats and the Network Router (Published 24 May 2009)

The risks and vulnerabilities that are associated with the use of the Internet are identified.  The router is the first line of defense to protect the network from attacks by unauthorized people.  We explain how the network router can be used to increase the security of your computers and network.  We identify the role that anti-virus and firewall hardware and software plays to protect the network, privacy, and files.

• Internet Threats and the Network Router Risk Assessment
• Threat and Risk Assessment Worksheet

Part 9 - HTTP and Web Hosting Threats (Published 31 May 2009)

We address the risks and benefits of using the Internet to share public information.  Security and privacy issues related to the use of computers available for public use and web hosting of non-sensitive information are identified.  We explain how the network router can be configured to increase the security of your computers and network.

• HTTP and Web Hosting Threats Risk Assessment
• Threat and Risk Assessment Worksheet

Part 10 - HTTPS and Secure Web Hosting Threats (Published 7 June 2009)

The risks and benefits of using the Internet to share private and personal information are explained in this part.   It is extremely important to secure this information to protect your privacy as a safeguard against identity theft.  It is also important that the Internet be used for social networking.  As a result, a delicate balance of restrictions and permissions must be maintained.  Methods of protecting your personal information as it travels across the Internet are identified.  We explain how to configure the WHS and router to securely access files that are on the WHS.

• HTTPS and Secure Web Hosting Threats Risk Assessment
• Threat and Risk Assessment Worksheet

Part 11 - Friends and Family Threats (Published 14 June 2009)

Issues that are related to sharing files with friends and other family members are identified.  The role of the administrator is explained and alternative methods that can reduce the administrative burden while maintain a secured environment are proposed.  The security plan is revisited to address how to securely share files with this user class.  The result is to ensure that files on the WHS are available to those identified by the administrator.

• Friends and Family Threats Risk Assessment
• Threat and Risk Assessment Worksheet

Part 12 - Remote Access Threats (Published 22 June 2009)

Threats and risks can be experienced with the use of Windows Home Server's Remote Access to computers on the local network.  Allowing access to computers on the WHS network via the Internet requires more restrictions to the local access security plan.  The administrator must identify who is permitted to log on to the WHS and who can remotely access their computer. 

• Remote Access Threats Risk Assessment
• Threat and Risk Assessment Worksheet

Part 13 - FTP Hosting Threats (Published 28 June 2009)

This part identifies the risks and vulnerabilities that are associated with using FTP Internet protocol.  FTP permits internet users to upload or download files to or from a FTP server.  The Windows Home Server can be configured to function as a FTP server.  Several alternatives methods are presented and can be considered prior to considering the installation of a FTP server.

• FTP Hosting Threats Risk Assessment
• Threat and Risk Assessment Worksheet

Part 14 - Email Hosting Threats (Published 05 July 2009)

Email servers provide an automated way of sending and receiving email messages.  The Windows Home Server cannot be configured to function as an email server.  Other third party email servers can be used.  Several alternative methods are presented that can be considered.  The email server will be attacked and we identify the roles, responsibilities, and threats that are associated with hosting your email system.

• EMail Hosting Threats Risk Assessment
• Threat and Risk Assessment Worksheet

Part 15 - Voice over Internet Protocol Threats (Published 12 July 2009)

The role that a VoIP router plays with regard to the network and security plan is explained.  We identify threats and vulnerabilities that are associated with VoIP service, recommend alternative ways to connect the VoIP router to the Internet, and illustrate how to program the network router.

• VoIP Threats Risk Assessment
• Threat and Risk Assessment Worksheet

Part 16 - Windows Home Server Add-In Threats

This part identifies the threats that are associated with installing Add-In products that have been developed for the Windows Home Server.  Every Add-In product contains a risk and should be carefully evaluated before installing the Add-In.