Presentation is loading. Please wait.

Presentation is loading. Please wait.

CyberPatriot: Operating System Security Overview 9/31/10 Joshua White Director of CyOON R&D Adam Pilbeam Lead Network Engineer

Published byMartha Shaw Modified over 8 years ago

Similar presentations

Presentation on theme: "CyberPatriot: Operating System Security Overview 9/31/10 Joshua White Director of CyOON R&D Adam Pilbeam Lead Network Engineer"— Presentation transcript:

1 CyberPatriot: Operating System Security Overview 9/31/10 Joshua White Director of CyOON R&D jwhite@everisinc.com Adam Pilbeam Lead Network Engineer adam.pilbeam@everisinc.com Everis Inc http://www.everisinc.com (315) 370-1535 x4015 1

2 Agenda 2 Operating Systems (OS) Overview OS Security Goals Hardening Overview Hardening – Windows – Linux The OS Security Debate

3 OS Overview 3 Operating System – Interface between user hardware – Intermediary between software and hardware – Control of input and output (I/O) devices Image cutesy of: cgl.ucsf.edu

4 OS Security Goals 4 CIA Triad – Confidentiality – Integrity – Availability AAA Model – Authentication – Authorization – Accounting

5 Hardening Overview 5 OS Hardening Keeping up to date with patches Removing unused software Removing unneeded users Disabling unneeded services Locking unneeded ports Using Security Software Firewalls Access Controls Viral/Malware Protection

6 Hardening Windows 6 DEMO More Resources: – Windows Server: http://security.utexas.edu/admin/win2003.html – Windows XP: http://www.windowsecurity.com/articles/Windows_XP_Y our_Definitive_Lockdown_Guide.html http://www.windowsecurity.com/articles/Windows_XP_Y our_Definitive_Lockdown_Guide.html – And many more Do a search for “windows hardening checklist”

7 Hardening Linux 7 Same concept as Windows hardening Can use more advanced access control features outside CP scope – SELinux Less GUI oriented – Most OS feature tools use command line interface Many Guides Available: http://www.freesoftwaremagazine.com/articles/hardening_linux http://www.cyberciti.biz/tips/linux-security.html http://security.utexas.edu/admin/redhat-linux.html http://www.sans.org/score/checklists/linuxchecklist.pdf

8 OS Security Debate 8 What OS is more secure? – Depends on how you protect it – Less Malware that effect Linux – More Rootkits that effect Linux – Open Source means more peer review Does not mean quality control – Windows users tend to buy-in more to third party software based protection – Linux users tend to learn the ins-and-outs of hardening given built in Tools

9 Thanks 9 Thanks to: Central NY ISSA for providing time to the CyberPatriot documentation project www.issa.org Everis Inc. for hosting, technical support, experienced staff and more www.everisinc.com Griffiss Institute for providing space and support http://www.griffissinstitute.org/ Rome AFRL for their support of STEM http://www.wpafb.af.mil/afrl/ri/

Download ppt "CyberPatriot: Operating System Security Overview 9/31/10 Joshua White Director of CyOON R&D Adam Pilbeam Lead Network Engineer"

Similar presentations

CyberPatriot: An Introduction to GNU/Linux 9/10/10 Joshua White Director of CyOON R&D Everis Inc (315) 370-1535.

CyberPatriot: An Introduction to GNU/Linux 9/10/10 Joshua White Director of CyOON R&D Everis Inc (315)
Discovering Computers Fundamentals, Third Edition CGS 1000 Introduction to Computers and Technology Fall 2006.

Discovering Computers Fundamentals, Third Edition CGS 1000 Introduction to Computers and Technology Fall 2006.
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Introduction to Computer Administration Introduction.

Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Introduction to Computer Administration Introduction.
Two Broad Categories of Software

Two Broad Categories of Software
BETA!BETA! Building a secure private cloud on Microsoft technologies Private cloud security concerns Security & compliance in a Microsoft private cloud.

BETA!BETA! Building a secure private cloud on Microsoft technologies Private cloud security concerns Security & compliance in a Microsoft private cloud.
Vijay krishnan Avinesh Dupat  Collection of tools (programs) that enable administrator-level access to a computer or computer network.  The main purpose.

Vijay krishnan Avinesh Dupat  Collection of tools (programs) that enable administrator-level access to a computer or computer network.  The main purpose.
Potions of Protection Server Security. What does that do again? Familiarity Differing levels of protection –Low, does not exist –Medium, No private data.

Potions of Protection Server Security. What does that do again? Familiarity Differing levels of protection –Low, does not exist –Medium, No private data.
Introduction to windows operating system i

Introduction to windows operating system i
Enterprise Network Security Accessing the WAN Lecture week 4.

Enterprise Network Security Accessing the WAN Lecture week 4.
Week 6 Operating Systems.

Week 6 Operating Systems.
Principles of Computer Security: CompTIA Security + ® and Beyond, Second Edition © 2010 Baselines Chapter 14.

Principles of Computer Security: CompTIA Security + ® and Beyond, Second Edition © 2010 Baselines Chapter 14.
Real Security for Server Virtualization Rajiv Motwani 2 nd October 2010.

Real Security for Server Virtualization Rajiv Motwani 2 nd October 2010.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Enterprise Network Security Accessing the WAN – Chapter 4.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Enterprise Network Security Accessing the WAN – Chapter 4.
Computers Are Your Future Eleventh Edition Chapter 4: System Software Copyright © 2011 Pearson Education, Inc. Publishing as Prentice Hall1.

Computers Are Your Future Eleventh Edition Chapter 4: System Software Copyright © 2011 Pearson Education, Inc. Publishing as Prentice Hall1.
Module 14: Configuring Server Security Compliance

Module 14: Configuring Server Security Compliance
Linux Security LINUX SECURITY. Firewall Linux Security Internet Database Application Web Server Firewall.

Linux Security LINUX SECURITY. Firewall Linux Security Internet Database Application Web Server Firewall.
CyberPatriot: Introduction to Microsoft Windows 9/10/10 Adam Pilbeam Network Engineer Everis Inc (315)

CyberPatriot: Introduction to Microsoft Windows 9/10/10 Adam Pilbeam Network Engineer Everis Inc (315)
The Role of the Operating System

The Role of the Operating System
Project Transcender Standard Windows Forms to Windows 8 Metro Style porting tool Sri Lanka Institute of Information Technology 1.

Project Transcender Standard Windows Forms to Windows 8 Metro Style porting tool Sri Lanka Institute of Information Technology 1.
On Demand Internet By The Cool Beans Initiative  Hugh Becking  Gary Chung.

On Demand Internet By The Cool Beans Initiative  Hugh Becking  Gary Chung.

Similar presentations

Ads by Google