Chapter 12

Question 1

Strategies for OS security

Answer 1

1. white-list approved applications
2. patch third-party applications + OS vulnerabilities
3. restrict administrative privileges
4. create defence-in-depth system

Question 2

System security planning

Answer 2

1. purpose of system , type of info stored
2. categories of users of the system, privileges they have
3. how users authenticated
4. who will administer system + how manage system
5. what access the system has to info stored on other hosts + how managed
6. how access to info stored = managed
7. any additional security measures required

Question 3

Setup

Answer 3

1. Remove unnecessary applications + services
2. configure users , groups + authentication
3. configure resource controls
4. Install additional security measures
5. Test system security

Question 4

Security maintenance

Answer 4

1. monitor + analyse logging info
2. perform regular backups
3. recover from security compromises
4. regularly test system security
5. using appropriate software maintenance process to patch + update all critical software + monitor + revise configuration as needed

Question 5

Hypervisor functions

Answer 5

1. execution management of VM
2. device emulation + access control

Question 6

Planned process for deployment + building OS

Answer 6

1. assess risk + plan system deployment
2. secure underlying OS + then key applications
3. ensure critical content is secure
4. ensure appropriate network protection mechanisms are used
5. ensure appropriate processes are used to maintain security

Question 7

IDS

Answer 7

Intrusion detection system