Network security management refers to access control or management to network resources. Access control management is the security process that block or facilitate a user or system to communication and interact with network resources such as computers, web servers, routers or any other systems or devices. Access controls protect systems from unauthorized access and determine what levels of authorization are appropriate for a user or system.

There are two steps in the authorization process:

• Authentication: the logon process
• Discretionary Access Control: checking the level of authorization of the users to determine if they can enter to the sensitive areas and files with higher security control.

Security auditing is part of the access control process of the security management. An auditing system can track when specific users log on and what resources they access.

Proxy server and firewalls are two special access control systems for security management, which have the job of protecting internal network resources from the access of the public network such as the Internet. A proxy server allows internal users access the Internet by acting as a proxy for those users. By doing so, the internal IP address can be hidden to reduce risk of attack on the IP addresses from outside. A proxy server also allows network admin to manage the Internet access privileges of internal users.

A firewall allows external users to access internal network resources under certain regulations and policies. Refer to the Firewall section for more details.

Related Terms: Network management, Performance management, Fault management, Configuration management, Security Auditing, Access Control, Discretionary Access Control, Proxy Server, Firewall