Bienvenue sur Scribd !

Ignorer le carrousel

CIS288 Security Design in A Windows 2003 Environment: CIS288 Securing Network Resources

Transféré par

ghar_dash

0% ont trouvé ce document utile (0 vote)

12 vues11 pages

cis341_week10_ch09

Titre original

cis341_week10_ch09

Copyright

Formats disponibles

PPT, PDF, TXT ou lisez en ligne sur Scribd

Partager ce document

Partager ou intégrer le document

Options de partage

Avez-vous trouvé ce document utile ?

Ce contenu est-il inapproprié ?

Signaler ce document

cis341_week10_ch09

Droits d'auteur :

Attribution Non-Commercial (BY-NC)

Formats disponibles

Téléchargez comme PPT, PDF, TXT ou lisez en ligne sur Scribd

Signaler comme contenu inapproprié

0% ont trouvé ce document utile (0 vote)

12 vues11 pages

CIS288 Security Design in A Windows 2003 Environment: CIS288 Securing Network Resources

Transféré par

ghar_dash

cis341_week10_ch09

Droits d'auteur :

Attribution Non-Commercial (BY-NC)

Formats disponibles

Téléchargez comme PPT, PDF, TXT ou lisez en ligne sur Scribd

Signaler comme contenu inapproprié

Passer à la page

Vous êtes sur la page 1sur 11

Rechercher à l'intérieur du document

CIS288 Security Design in a Windows 2003 Environment

CIS288 Securing Network Resources

Objectives
When you complete this lesson you will be able to:
Design an access control strategy for files and folders Analyze auditing requirements Design an access control strategy for the registry Design a permission structure for registry objects Design a strategy for the encryption and decryption of files and folders Design security for a backup and recovery strategy

Designing an Access Control strategy for Files and Folders

One of the fundamental elements of data security is controlling access to information. Step 1
Authorizing access to user

Step 2
Controlling what data those users can access

Windows Server 2003

Analyzing Risks to Data

Common elements that should be reviewed and analyzed as part of a comprehensive security plan:
Physical loss of data Data corruption Data modification from viruses and other attacks Security breaches due to incorrectly configured permissions Auditing practices

Reviewing Access Control and Access control Lists

When designing a resource strategy, you must determine how to grant and manage appropriate access to users, groups, and computers. Two methods:
Access control
Permissions User Rights Object Auditing

Resource Authorization
User/ ACL Account Group/ACL Account Group/ Resource Group Role-Based Authorization

Analyzing Auditing Requirements

As part of designing network resource security, you should analyze your requirements for auditing to determine what level of auditing is appropriate for your organization. Knowing your business patterns will help you spot patterns in the audit events. There are a number of events that could be managed, but the following list is a good starting point:
Logon events Account logon events Directory service access events Privilege use events Object access events Object access events System events Process tracking events Policy change events

Design an Access Control Strategy for the Registry

The registry is the heart of the Windows Server 2003 operating system and contains sensitive data about the files and folders, the applications, and the computer state. The only users who are granted full access to the entire Registry are administrators. While permissions can be modified for the Registry using the Registry Editor, it makes sense in a larger organization to apply security to the Registry via Group Policy.

Design a Permission Structure for Registry Objects

By default, when you install a clean version of Windows Server 2003, the Setup Security.inf security template is applied The easiest way to manage Registry settings is to use the settings provided in the predefined security templates in Windows Server 2003 Secedit.exe Group Policy Object Editor Snap-in Security Configuration and Analysis Snap-in

An encryption strategy for files and folders includes an assessment of vital data, an assessment of the environment, policies for using EFS, and procedures for recovering encrypted files. Obviously, not all files are sensitive enough to warrant encryption. In most cases, files protected with two layers of security will be safe. However, files that contain sensitive data such as social security numbers, credit card data, medical or health data, or corporate trade secrets should be protected with EFS.

Creating a Strategy for the Encryption and Decryption of Files and Folders

Designing Security for a Backup and Recovery Strategy

Youve probably heard horror stories about companies that failed to back up their data and suffered the consequences. Currently 60% to 70% of a companys data storage management efforts are associated with backup and recovery functions. Most companies today use tape backup systems for both current backup and archival backups.

Summary
Design an access control strategy for files and folders Design an access control strategy for the registry

Vous aimerez peut-être aussi

Domain 2 - Asset Security
Document15 pages
Domain 2 - Asset Security
Louie Mok
Pas encore d'évaluation
The Ultimate Doxing Guide
Document5 pages
The Ultimate Doxing Guide
joan garcia garcia
Pas encore d'évaluation
Lecture 10 - Database Administration and Security PDF
Document41 pages
Lecture 10 - Database Administration and Security PDF
Chia Wei Han
100% (1)
CIA Vs Parker Heaxd Final
Document3 pages
CIA Vs Parker Heaxd Final
إسراء النبريصي
50% (2)
CIS288 Security Design in A Windows 2003 Environment: CIS288 Securing Active Directory
Document13 pages
CIS288 Security Design in A Windows 2003 Environment: CIS288 Securing Active Directory
ghar_dash
Pas encore d'évaluation
Information Security IV
Document39 pages
Information Security IV
Pratik Bajaj
Pas encore d'évaluation
Unit 9. Database Security
Document36 pages
Unit 9. Database Security
Kusum Paudel
Pas encore d'évaluation
Auditing Operating System and Databases PDF
Document45 pages
Auditing Operating System and Databases PDF
dhaval kulkarni
Pas encore d'évaluation
Microsoft Official Course: Securing Windows Servers Using Group Policy Objects
Document35 pages
Microsoft Official Course: Securing Windows Servers Using Group Policy Objects
J Loudes Anthoo Roys
Pas encore d'évaluation
Ch03-Security Part 1. Auditing Operating Systems and Networks
Document42 pages
Ch03-Security Part 1. Auditing Operating Systems and Networks
Alfin Abdullah
100% (1)
Isam Lec6
Document34 pages
Isam Lec6
Alicia Cecilia Fonseca
Pas encore d'évaluation
Cyber Security: Unit 3
Document14 pages
Cyber Security: Unit 3
RISHABH TOMAR
Pas encore d'évaluation
Auditing in CIS Environment - Auditing Operating Systems and Networks (Final)
Document44 pages
Auditing in CIS Environment - Auditing Operating Systems and Networks (Final)
Luisito
100% (2)
Accounting Information Systems: John Wiley & Sons, Inc
Document33 pages
Accounting Information Systems: John Wiley & Sons, Inc
Jessa Wong
Pas encore d'évaluation
Security Design in A Windows 2003 Environment: CIS 288 Designing A Secure Network Framework
Document10 pages
Security Design in A Windows 2003 Environment: CIS 288 Designing A Secure Network Framework
ghar_dash
Pas encore d'évaluation
Course1 DBSecurity Intro
Document45 pages
Course1 DBSecurity Intro
Alex Ciacîru
Pas encore d'évaluation
Types of IT Audits: Information Security (Module-1)
Document30 pages
Types of IT Audits: Information Security (Module-1)
Khateeb Ahmad
Pas encore d'évaluation
SIS Napredna Sigurnosna Analitika
Document51 pages
SIS Napredna Sigurnosna Analitika
Shporet
Pas encore d'évaluation
Database Security
Document34 pages
Database Security
Vishal Tesla
Pas encore d'évaluation
Microsoft Official Course: Implementing Dynamic Access Control
Document25 pages
Microsoft Official Course: Implementing Dynamic Access Control
vamshikiran ponugoti
Pas encore d'évaluation
SIC Micro
Document8 pages
SIC Micro
Hatim Kanchwala
Pas encore d'évaluation
Bai 2-2 OS Security
Document36 pages
Bai 2-2 OS Security
levietkhanh189
Pas encore d'évaluation
Configuring The User and Computer Environment Using Group Policy
Document41 pages
Configuring The User and Computer Environment Using Group Policy
addislibro
Pas encore d'évaluation
WEEK 2 Objectives:: Audit in An Cbis Environment Part 1: General Controls
Document3 pages
WEEK 2 Objectives:: Audit in An Cbis Environment Part 1: General Controls
Aboc May An
Pas encore d'évaluation
Bài 3- Bảo mật HDH
Document34 pages
Bài 3- Bảo mật HDH
Anh Phú Nguyễn
Pas encore d'évaluation
Configuring The User and Computer Environment Using Group Policy
Document41 pages
Configuring The User and Computer Environment Using Group Policy
addislibro
Pas encore d'évaluation
2677x CH09 NAGINPPT
Document26 pages
2677x CH09 NAGINPPT
nelsondarla12
Pas encore d'évaluation
Session 2 - ISYS6542-20210105D5181 - Foundations For System Design
Document41 pages
Session 2 - ISYS6542-20210105D5181 - Foundations For System Design
Ronan Wisnu
Pas encore d'évaluation
System Administration and Maintenance Module 1
Document31 pages
System Administration and Maintenance Module 1
ABEGAIL CABIGTING
Pas encore d'évaluation
CP 211 Lecture 1 Introduction To System Administration
Document47 pages
CP 211 Lecture 1 Introduction To System Administration
MELKIZEDEKI IGWE
Pas encore d'évaluation
Cyber - Unit 31 - 12.1.17
Document112 pages
Cyber - Unit 31 - 12.1.17
excitekarthik
Pas encore d'évaluation
Cyber - Unit 31
Document110 pages
Cyber - Unit 31
excitekarthik
Pas encore d'évaluation
Data Secuirity
Document35 pages
Data Secuirity
miry.baba
Pas encore d'évaluation
Data Security, Data Privacy, Ethics in Database
Document32 pages
Data Security, Data Privacy, Ethics in Database
ilham.ahmad.kamil-2020
Pas encore d'évaluation
South Korean Malware Attack - 1
Document3 pages
South Korean Malware Attack - 1
renebavard
Pas encore d'évaluation
IT Controls: Northern Arizona University Compliance, Controls & Business Services December 2011
Document35 pages
IT Controls: Northern Arizona University Compliance, Controls & Business Services December 2011
Sefi Rifkiana
Pas encore d'évaluation
CIS 288 WEEK 10, PART 1: Securing Network Resources
Document6 pages
CIS 288 WEEK 10, PART 1: Securing Network Resources
ghar_dash
Pas encore d'évaluation
Lesson D - 2 Ch04 Controlling and Auditing Data Management Systems
Document23 pages
Lesson D - 2 Ch04 Controlling and Auditing Data Management Systems
Maria Caesarina Claire Berdin
Pas encore d'évaluation
Microsoft Jump Start: M10: Implementing Dynamic Access Control
Document24 pages
Microsoft Jump Start: M10: Implementing Dynamic Access Control
Edmundo Lozada
Pas encore d'évaluation
1dsam PDF
Document49 pages
1dsam PDF
Cherry Mea Bahoy
Pas encore d'évaluation
Topic 7 Auditing Database Dan Storage: Course: Information System Audit Effective Period: September 2017
Document31 pages
Topic 7 Auditing Database Dan Storage: Course: Information System Audit Effective Period: September 2017
Melissa Indah Fianty
Pas encore d'évaluation
Day 3 Session 1-Secure Software Requirements
Document32 pages
Day 3 Session 1-Secure Software Requirements
mrz
Pas encore d'évaluation
Planning of Cyber Security
Document4 pages
Planning of Cyber Security
Ifrat Zawar
Pas encore d'évaluation
IS CH 4
Document45 pages
IS CH 4
Kamal Kamalesh
Pas encore d'évaluation
Best Practices For Securing Active Directory
Document123 pages
Best Practices For Securing Active Directory
Fede Villanueva
Pas encore d'évaluation
Cissp - Chapter 7 Security Operations
Document90 pages
Cissp - Chapter 7 Security Operations
EL MAMOUN ABDELLAH
Pas encore d'évaluation
Database Security: System Vulnerability and Abuse
Document7 pages
Database Security: System Vulnerability and Abuse
Andhika Prasetya Gradiyanto
Pas encore d'évaluation
Systems Architecture, Documentation and Testing
Document24 pages
Systems Architecture, Documentation and Testing
addokenneth58
Pas encore d'évaluation
Ch02-Auditing IT Governance Controls-Rev26022014
Document60 pages
Ch02-Auditing IT Governance Controls-Rev26022014
Alfin Abdullah
100% (4)
TOPIC 3 - Infomtion Assets Seccurity and Risk Presentation Updated
Document49 pages
TOPIC 3 - Infomtion Assets Seccurity and Risk Presentation Updated
MulTech
Pas encore d'évaluation
03 Security
Document18 pages
03 Security
Body Sallam
Pas encore d'évaluation
Week8 ControllingandAuditingDataManagementSystems
Document34 pages
Week8 ControllingandAuditingDataManagementSystems
ashraf ayoub
Pas encore d'évaluation
Database Security CH 14
Document55 pages
Database Security CH 14
Nur Haslina Abdullah
Pas encore d'évaluation
Database (Ibrahem)
Document15 pages
Database (Ibrahem)
Saif
Pas encore d'évaluation
Data Warehouse Components
Document18 pages
Data Warehouse Components
Maja Kostic Ex Simic
Pas encore d'évaluation
Hardening Microsoft Active Directory
Document14 pages
Hardening Microsoft Active Directory
Marquete Navarro
Pas encore d'évaluation
Isms Framework
Document27 pages
Isms Framework
shivam garg
Pas encore d'évaluation
Processing Controls
Document14 pages
Processing Controls
Musariri Talent
Pas encore d'évaluation
Chapter 4 - Software Design
Document42 pages
Chapter 4 - Software Design
shimelis
Pas encore d'évaluation
Course Code: Comp 324: Course Name: Database Management System II Lecture 4: Database Security and Authorization
Document16 pages
Course Code: Comp 324: Course Name: Database Management System II Lecture 4: Database Security and Authorization
Mutuba Neema
Pas encore d'évaluation
Big Data Modeling and Management Systems
D'Everand
Big Data Modeling and Management Systems
Alexander Afriyie
Pas encore d'évaluation
Ian Talks Hacking A-Z
D'Everand
Ian Talks Hacking A-Z
Ian Eress
Pas encore d'évaluation
List of Docker Commands
Document6 pages
List of Docker Commands
ghar_dash
Pas encore d'évaluation
Docker Commands PDF
Document11 pages
Docker Commands PDF
ghar_dash
Pas encore d'évaluation
List of Docker Commands
Document6 pages
List of Docker Commands
ghar_dash
Pas encore d'évaluation
UEM Getting Started With REST
Document12 pages
UEM Getting Started With REST
ghar_dash
Pas encore d'évaluation
BlackBerry Dynamics Bindings For Xamarin - Android 3.4.1.78 Release Notes en
Document8 pages
BlackBerry Dynamics Bindings For Xamarin - Android 3.4.1.78 Release Notes en
ghar_dash
Pas encore d'évaluation
Background Threads in ASP
Document11 pages
Background Threads in ASP
ghar_dash
Pas encore d'évaluation
UEM Getting Started With REST
Document12 pages
UEM Getting Started With REST
ghar_dash
Pas encore d'évaluation
qt5 Cadaques PDF
Document263 pages
qt5 Cadaques PDF
André Castro
Pas encore d'évaluation
Entity Framework / Validation Model: (Key) Databasegeneratedoption - Identity) )
Document5 pages
Entity Framework / Validation Model: (Key) Databasegeneratedoption - Identity) )
ghar_dash
Pas encore d'évaluation
SELECT FROM (Db1) - (Dbo) .Table1 A INNER JOIN (Server2) - (Db1) - (Dbo) .Table2 B ON A.Id B.Id
Document3 pages
SELECT FROM (Db1) - (Dbo) .Table1 A INNER JOIN (Server2) - (Db1) - (Dbo) .Table2 B ON A.Id B.Id
ghar_dash
Pas encore d'évaluation
Aws Glossary General PDF
Document265 pages
Aws Glossary General PDF
ghar_dash
Pas encore d'évaluation
Cognito TechTalk
Document71 pages
Cognito TechTalk
ghar_dash
Pas encore d'évaluation
Aws Glossary General PDF
Document265 pages
Aws Glossary General PDF
ghar_dash
Pas encore d'évaluation
Cheat Sheet - Subversion
Document1 page
Cheat Sheet - Subversion
ghar_dash
Pas encore d'évaluation
Icebergs For Kuwait: Similar Situations or Problems?
Document3 pages
Icebergs For Kuwait: Similar Situations or Problems?
ghar_dash
Pas encore d'évaluation
Student Opinion Poll Results, Fall 2007
Document2 pages
Student Opinion Poll Results, Fall 2007
ghar_dash
Pas encore d'évaluation
JSON Data Set Sample
Document21 pages
JSON Data Set Sample
ghar_dash
Pas encore d'évaluation
Draft TV Commercials: Similar Situations or Problems?
Document2 pages
Draft TV Commercials: Similar Situations or Problems?
ghar_dash
Pas encore d'évaluation
World History Hand Written Notes (156 Pages) PDF (WWW - upscPDF.com)
Document156 pages
World History Hand Written Notes (156 Pages) PDF (WWW - upscPDF.com)
gokul shanmugam
Pas encore d'évaluation
Guide Adhering To The NIST Framework With Tenable Ot
Document8 pages
Guide Adhering To The NIST Framework With Tenable Ot
mohammed benhmammouch
Pas encore d'évaluation
Full Ethics Notes in HINDI PDF
Document145 pages
Full Ethics Notes in HINDI PDF
Manish Negi
100% (1)
DigitalForensics 03 MAY2010
Document84 pages
DigitalForensics 03 MAY2010
hhhzine
Pas encore d'évaluation
Privacy Protection Based Access Control Scheme in Cloud-Based Services - 1crore Projects
Document5 pages
Privacy Protection Based Access Control Scheme in Cloud-Based Services - 1crore Projects
Ashok Chelika
Pas encore d'évaluation
Adaptive Server Enterprise: Security Administration Guide
Document434 pages
Adaptive Server Enterprise: Security Administration Guide
Wera
Pas encore d'évaluation
Training Manual SignServer-v10-20221012 - 223306
Document47 pages
Training Manual SignServer-v10-20221012 - 223306
Mouhamed Lamine Diankha
Pas encore d'évaluation
ASSP 2.4.1 Version Manual
Document134 pages
ASSP 2.4.1 Version Manual
linuxloonie
Pas encore d'évaluation
Vulnerability Scanning vs. Penetration Testing
Document13 pages
Vulnerability Scanning vs. Penetration Testing
Tarun Sahu
Pas encore d'évaluation
Cyber Threat Intelligence
Document44 pages
Cyber Threat Intelligence
Rushika
Pas encore d'évaluation
HUAWEI USG6600 Series Next-Generation Firewall Brochure
Document2 pages
HUAWEI USG6600 Series Next-Generation Firewall Brochure
evolvingsat
Pas encore d'évaluation
137 - CS8792, CS6701 Cryptography and Network Security - 2 Marks With Answers 1
Document31 pages
137 - CS8792, CS6701 Cryptography and Network Security - 2 Marks With Answers 1
Lionel Bharath Razer
Pas encore d'évaluation
Computer Security Fundamentals 5Th Edition William Chuck Easttom Full Chapter
Document51 pages
Computer Security Fundamentals 5Th Edition William Chuck Easttom Full Chapter
jose.ferguson966
100% (17)
J As Adisjfa SJDLKJ
Document77 pages
J As Adisjfa SJDLKJ
Albus Severus
Pas encore d'évaluation
Practical Task
Document3 pages
Practical Task
AAAAAAA
Pas encore d'évaluation
Unit 1
Document13 pages
Unit 1
Sarthak
Pas encore d'évaluation
Recitation 457
Document38 pages
Recitation 457
cv31415
Pas encore d'évaluation
1.0 Threats, Attacks, Vulnerabilities
Document198 pages
1.0 Threats, Attacks, Vulnerabilities
Celeste Jones
100% (1)
Cryptographic Hash Functions
Document37 pages
Cryptographic Hash Functions
yohan surya
Pas encore d'évaluation
Ships at
Document12 pages
Ships at
Akash Mukherjee
Pas encore d'évaluation
Prepared By: Mohamad Asyraf Fatullah B. Mohamad Isa 4IT
Document15 pages
Prepared By: Mohamad Asyraf Fatullah B. Mohamad Isa 4IT
Nor Ajiyah Malan
Pas encore d'évaluation
Cyber Security Awareness: Communication Security Advisory For Government Officials
Document23 pages
Cyber Security Awareness: Communication Security Advisory For Government Officials
sam sam
Pas encore d'évaluation
Arcsight Usecase Library - 14082017
Document159 pages
Arcsight Usecase Library - 14082017
21ai017
Pas encore d'évaluation
Dokumen - Tips - Tms Cryptography Pack Developers Guide Tms Software Tms Cryptography Pack
Document48 pages
Dokumen - Tips - Tms Cryptography Pack Developers Guide Tms Software Tms Cryptography Pack
pajoloma
Pas encore d'évaluation
The Keys To Using SSH: David Tomaschik
Document41 pages
The Keys To Using SSH: David Tomaschik
Mc Salah
Pas encore d'évaluation
Sangfor NGAF Report 20211026154441
Document11 pages
Sangfor NGAF Report 20211026154441
Alzi Al-Lail
Pas encore d'évaluation
Purchase Order: Adistec Ecuador
Document1 page
Purchase Order: Adistec Ecuador
HECTOR GOMEZ
Pas encore d'évaluation
WWW Starterstory Com Cybersecurity Blog Post Ideas Successful - Subscribe True
Document14 pages
WWW Starterstory Com Cybersecurity Blog Post Ideas Successful - Subscribe True
semogo8645
Pas encore d'évaluation