This paper presents an approach to network security at the system design level. Some basic network concepts and major network security threats are outlined. The design approach is described and a brief security analysis is presented. The proposed network structure incorporates data protection devices called network cryptographic devices and a special-purpose processor, the network security center, to control access in the network.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Kaufman, D. J., A Distributed Approach to Computer Network Security, System Development Corporation, SP-3848, May 31, 1976.
	2	Branstad, D. K., "Encryption Protection in Computer Data Communications," Fourth Data Communications Symposium, Quebec City, Canada, October 1975.
	3	Branstad, D. K., "Security Aspects at Computer Networks," AIAA Computer Network Conference, Huntsville, Alabama, April 1973.
	4	National Bureau of Standards Data Encryption Algorithm, Federal Register, March 17, 1975 and August 4, 1975.
	5	B. W. Lampson, Dynamic protection structures, Proceedings of the November 18-20, 1969, fall joint computer conference, November 18-20, 1969, Las Vegas, Nevada  [doi>10.1145/1478559.1478563]