Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science

Security Threats to Linux - St. Cloud State University

Security Strategies in Linux
Platforms and Applications
Lesson 1
Security Threats to Linux
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Learning Objective
 Identify threats to the Linux operating
system and other open source applications.
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 2
Key Concepts
 Open source software security considerations
 Impact of laws and regulations on a security
policy
 Threats to the seven domains of an information
technology (IT) infrastructure
 Standard methodologies for testing vulnerabilities
on Linux and open source applications
 Linux in the emerging virtual machine (VM)
market
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 3
DISCOVER: CONCEPTS
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 4
C-I-A Triad the Parkerian Hexad
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 5
Seven Domains of a Typical IT
Infrastructure
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 6
Linux in the Seven Domains
 User Domain
 Workstation Domain
 LAN Domain
 WAN Domain
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 7
Linux in the Seven Domains
(Continued)
 LAN-to-WAN Domain
 Remote Access Domain
 System Domain
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 8
Open Source Productivity
Applications
Firefox Web
browser
OpenOffice.org
suite
Scribus
desktop
Security Strategies in Linux Platforms and Applications
Thunderbird
e-mail client
Kino video
editor
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 9
DISCOVER: PROCESS
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 10
Defining the Security Framework
Frameworks to Choose From
Key Questions to Consider
 National Institute of
 What are the critical
Standards and
assets and threat
Technology (NIST)
agents?
 Certified Information
 Who would a system
Systems Security
compromise impact?
Professional (CISSP) 10
 Where are the critical
Domains
Framework assets located?
Selection
 International
 When have past
Organization for
security breaches in
Standardization (ISO)
the industry occurred?
17799 and ISO 27001
 How does legislation
 Open Source Security
and regulations
Testing Methodology
mandate policy?
Manual (OSSTMM)
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 11
OSSTMM Test Methodologies
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 12
DISCOVER: ROLES
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 13
Responsibilities of a Linux
System Administrator
 System availability and performance
 User access and denial
 Maintenance of the integrity of operating
system, application, storage files,
resources, and data transmission
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 14
Tasks of a Linux System
Administrator
 Tuning performance and making upgrades
 Configuring and restoring system
 Managing user and group accounts
 Deploying, logging, and monitoring
 Documenting configurations and processes
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 15
DISCOVER: CONTEXTS
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 16
Linux in the Market: Quick Facts
 Over 90% of the world’s super computers
run on Linux.
 The servers of New York Stock Exchange
and Google run on Linux.
 Red Hat and Novell are the top commercial
Linux vendors for enterprises.
 Linux is predicted to have a 33%
smartphone share by 2015.
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 17
DISCOVER: RATIONALE
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 18
VM
A VM can be a:
 Hardware VM or Hypervisor
• Type1—runs on native machines
• Type2—runs on host operating systems as
guest
 Application VM
• Java VM and Dalvik VM
• Adobe Flash Player
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 19
Advantages of a Hypervisor
 Saves money on hardware and power
 Well-positioned for bastion hosts
 Makes better use of hardware resources
 Easier to manage
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 20
Linux in the VM Market
 Linux provides a scalable, robust solution to
scale many servers in a VM environment
without the additional licensing costs.
 The relative small size of Linux allows for
many instances of VMs to run.
 The Linux kernel 2.6.20 has virtualization
capabilities built-in with Kernel-based VM
(KVM).
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 21
Popular VM Software Used with
Linux
VM
Licensing
Vendor
VirtualBox
Dual open source
and commercial
Sun/Oracle
VMware server
Commercial
VMware
Xen
Open source and
commercial
Citrix
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 22
Summary
 Linux in the seven domains and various open
source productivity applications
 Facts about the use of Linux in the market
 Responsibilities and tasks of a Linux system
administrator
 Process to define a security framework
 Linux in the VM market and various VM
software used with Linux
Security Strategies in Linux Platforms and Applications
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Page 23
Related documents
For Exercises 1-6, match the problem solving strategy with the
For Exercises 1-6, match the problem solving strategy with the
z/Linux or Linux on the Mainframe
z/Linux or Linux on the Mainframe
Webinar Presentation
Webinar Presentation
Presentation File ()
Presentation File ()
Selected Slides for Intro
Selected Slides for Intro
Unit 6 Operating Systems
Unit 6 Operating Systems
System Administration
System Administration
Virtual Machine By Nitin V. Choudhari, DIO,NIC,Akola Virtual Machine
Virtual Machine By Nitin V. Choudhari, DIO,NIC,Akola Virtual Machine
Media Powerpoint
Media Powerpoint
Reaver
Reaver
Chapter 1
Chapter 1
Download