| About Blog Cheatsheets Defense Links Offense |
| Defense |
| Architecture Authorities Concept Forensic Introduction ITlawCH Malware Management Measures Methods Network Policy Risks Rules Threats Unix Linux Windows |
Measures
|
Baseline Protection Measures updates/patching, backup, antivirus, antispyware, hostbased firewall, monitoring/auditing, logging, password quality |
|
Personnel and Organizational Measures laws, current organization manual, personalized roleconcept, restrictiv and unavoidable roleconcept, attention to interest and power conflicts, logging, more eye principle, need to see principle, need to know principle, auditing and revision, training, sensitization and awareness, psychology and communication |
|
Technical Measures inbound/outbound filtering, application and network firewalls, separating development and production, access control, encryption, digital signature, integrity checking, safety, authentication, authorization, alerting and alarming, logging and auditing, traffic flow analysis, routing control, host and network intrusion detection/prevention, antimalware, antispam, chrooting/jailing, memory protection, sandboxing, virtualization, failover and hot-/cold-standby, configuration changes, secure programming, input/output validation, tcp wrappers, security testing, code audits |
|
Strategical Measures policies, employee manual, standards (ISO, ITIL, SOx), compliance, governance, risk and threat analysis, business impact analysis, branch comparison, market research, counter-intelligence, espionage |
|
Physical Measures security zones, entrance control, fire and water protection, disaster plan, redundancies, evacuation plan, UPS, overvoltage protection, perimeter security, closed-circuit TV monitoring, asset control, human security, physical mail security, communication security, background checks for staff, data destruction (wiping) |
|
Emergency Measures preventional measures, immediate measures, business-continuity-measures, disaster recovery, backup |