Upload
jean-wheeler
View
216
Download
4
Embed Size (px)
Citation preview
INFORMATION SECURITYUNIX & DB2
Introduction• THE OBJECTIVE IS TO DESIGN SECURITY MEASURES
FOR A MILITARY SYSTEM
• SYSTEM RUNNING A DB2 SERVER ON UNIX
• FOCUS IS ON DB2 BACKEND VULNERABILITIES
UNIX VULNERABILITIES BIND DOMAIN NAME SYSTEM
REMOTE PROCEDURE CALLS
APACHE WEB SERVER
STRENGTHENING UNIX FIREWALLS
REGULAR UPDATES
STRINGENT USER ACCOUNT MANAGEMENT
ENCRYPTION
WEB SERVER DEPLOYMENT 2 SERVERS WILL BE DEPLOYED IN 2 LOCATIONS
THE SERVERS WILL BE SET TO AUTOMATICALLY SYNCHRONIZE
THE WEB SERVER WILL NOT USE PORT 80
SECURE FIREWALL CONFIGURATION
APACHE THE MOST POPULAR WEB SERVER WORLD WIDE
HIGH RELIABILITY AND PERFORMANCE
FREE & OPEN SOURCE
CROSS-PLATFORM
MORE SECURE THAN IIS
IIS PRODUCED BY MICROSOFT
SUPPORTS .NET FRAMEWORK AND ASPX SCRIPTS
ONLY RUNS ON WINDOWS
LESS SECURE THAN APACHE
ReferencesRoberta Bragg, C. I. S. S. P., & Rhodes-Oulsey, M. (2004). Network Security: The Complete Reference . The McGraw-Hill/Osborne.