User: Guest  Login
Title:

Hardening with Scapolite: A DevOps-Based Approach for Improved Authoring and Testing of Security-Configuration Guides in Large-Scale Organizations

Document type:
Konferenzbeitrag
Contribution type:
Textbeitrag / Aufsatz
Author(s):
Stöckle, Patrick; Pruteanu, Ionuț; Grobauer, Bernd; Pretschner, Alexander
Abstract:
Security Hardening is the process of configuring IT systems to ensure the security of the systems' components and data they process or store. In many cases, so-called security-configuration guides are used as a basis for security hardening. These guides describe secure configuration settings for components such as operating systems and standard applications. Rigorous testing of security-configuration guides and automated mechanisms for their implementation and validation are necessary since erro...     »
Keywords:
security configuration, hardening
Book / Congress title:
Proceedings of the Twelveth ACM Conference on Data and Application Security and Privacy
Organization:
ACM
Date of congress:
25.-27.04.2022
Publisher:
Association for Computing Machinery
Publisher address:
New York, NY, USA
Date of publication:
15.04.2022
Year:
2022
Pages:
137–142
Print-ISBN:
9781450392204
Bookseries title:
CODASPY '22
Reviewed:
ja
Language:
en
Publication format:
WWW
Fulltext / DOI:
doi:10.1145/3508398.3511525
WWW:
https://doi.org/10.1145/3508398.3511525
 BibTeX