application of scap to secure
play

Application of SCAP to Secure Unified Communications - PowerPoint PPT Presentation

Oct 15, 2023 •417 likes •575 views

Application of SCAP to Secure Unified Communications www.isalliance.org The ISAlliance Board www.isalliance.org VoIP Project Leadership www.isalliance.org Government Participants www.isalliance.org Industry Participants www.isalliance.org

  1. Application of SCAP to Secure Unified Communications www.isalliance.org

  2. The ISAlliance Board www.isalliance.org

  3. VoIP Project Leadership www.isalliance.org

  4. Government Participants www.isalliance.org

  5. Industry Participants www.isalliance.org

  6. The Need • Concerns of: – Vendors – Carriers – Enterprises • Vulnerability Management • Secure Patching • Secure Configuration www.isalliance.org

  7. The SCAP Challenge SCAP Today SCAP Tomorrow – Federal Desktop Core – Set Configuration Configuration (FDCC) – More Applications • One Vendor – More Vendors • Just Workstations – More Tools – More Endpoints www.isalliance.org

  8. ISAlliance Unified Communications Program Proposal & Status Snapshot • To ¡lead ¡and ¡influence ¡the ¡development ¡of ¡industry ¡ based ¡SCAP ¡checklists ¡for ¡Voice ¡and ¡VoIP ¡Security ¡ for ¡Government, ¡CriAcal ¡Infrastructure ¡and ¡ Enterprises ¡ (approved ¡Feb ¡2008 ¡ISAlliance ¡BoD ¡ Mee9ng) ¡ • ¡VoIP ¡Security ¡ImplementaAon ¡and ¡Assurance ¡ Workshop ¡held ¡@ ¡NIST ¡as ¡part ¡of ¡the ¡ 4 th ¡ Informa,on ¡Security ¡Automa,on ¡Conference , ¡ (complete, ¡Sept ¡22 nd ¡-­‑-­‑ ¡23 rd , ¡2008) ¡ ¡ www.isalliance.org

  9. ISAlliance Unified Communications Program • Outcome ¡of ¡2008 ¡workshop ¡need ¡ was ¡idenAfied ¡to: ¡ – Access ¡the ¡applicability ¡of ¡SCAP ¡to ¡ VoIP ¡ – Enumerate ¡standards ¡to ¡develop ¡ SCAP ¡content ¡ ¡ • Phase ¡I ¡– ¡ whitepaper ¡due ¡end ¡of ¡ Networks Networks 2009 ¡ UC Network UC Network – Applica'on ¡of ¡SCAP ¡to ¡Secure ¡ ¡ Unified ¡Communica'ons ¡ ¡ Services Services • Phase ¡II ¡– ¡ proposed ¡ s s e e c c i i v v e e D D – Prosaic ¡Checklist ¡ – Business ¡Case ¡(RoI ¡Analysis) ¡on ¡the ¡ use ¡of ¡SCAP ¡technology ¡by ¡ Enterprises ¡ – CriAcal ¡to ¡have ¡UC ¡Vendor ¡and ¡SCAP ¡ Tools ¡Vendor ¡ParAcipaAon ¡ www.isalliance.org

  10. Baseline Standards Process Scope Recommended Architecture Security Controls Review Standards Define Baseline www.isalliance.org www.isalliance.org

  11. Applicability Workgroup Approach Scope Applicability Architecture of SCAP TRA (Threat Risk Assessment) Security Controls www.isalliance.org

  12. The White Paper Please email bfoer@isalliance.org To be placed on the distribution list for a free copy of Application of SCAP to Secure Unified Communications. Available end of 2009 www.isalliance.org www.isalliance.org

  13. Backup www.isalliance.org

  14. The Unified Communication Challenge UC Network Services www.isalliance.org

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

SCAP for VoIP Automating Configuration Compliance 6 th Annual IT Security Automation Conference

SCAP for VoIP Automating Configuration Compliance 6 th Annual IT Security Automation Conference

SCAP for VoIP Automating Configuration Compliance 6 th Annual IT Security Automation Conference Presentation Overview 1. The Business Challenge 2. Securing Voice over IP Networks 3. The ISA VoIP Security Project 4. Next Steps With SCAP 5. Summary

388 views • 23 slides
Automate Security Testing and System Compliance Agenda Introduction to SCAP Introduction

Automate Security Testing and System Compliance Agenda Introduction to SCAP Introduction

Automate Security Testing and System Compliance Agenda Introduction to SCAP Introduction to STIG SUSE STIG Automation Demo Time Whats next? What is SCAP? The Security Content Automation Protocol is a multi-purpose

684 views • 37 slides
Geor Georgia as Hi s High gher er E Education L Landsc scap ape: e: Demograph

Geor Georgia as Hi s High gher er E Education L Landsc scap ape: e: Demograph

Geor Georgia as Hi s High gher er E Education L Landsc scap ape: e: Demograph phics cs, F Fund unding and and Wha hat Stude dents P Pay Jennifer Lee, Policy Analyst jlee@gbpi.org @jjesunlee October 25, 2017 @GaBudget

442 views • 33 slides
OperationCheckpoint: SDN Application Control Workshop on Secure Network Protocols (NPSec14) 19

OperationCheckpoint: SDN Application Control Workshop on Secure Network Protocols (NPSec14) 19

OperationCheckpoint: SDN Application Control Workshop on Secure Network Protocols (NPSec14) 19 October 2014 Sandra Scott-Hayward, Christopher Kane and Sakir Sezer s.scott-hayward@qub.ac.uk Centre for Secure Information Technologies (CSIT)

359 views • 20 slides
SCAP Collection Committee Workshop SWRCB, Region 8 May 12, 2004 9:00 am 12:00 pm Inland

SCAP Collection Committee Workshop SWRCB, Region 8 May 12, 2004 9:00 am 12:00 pm Inland

SCAP Collection Committee Workshop SWRCB, Region 8 May 12, 2004 9:00 am 12:00 pm Inland Empire Utilities Agency 6075 Kimball Avenue, Chino Agenda 1.

1.19k views • 106 slides
Secure application development with AOP Nils Durner <ndurner@web.de> 1 Outline of the

Secure application development with AOP Nils Durner <ndurner@web.de> 1 Outline of the

Secure application development with AOP Nils Durner <ndurner@web.de> 1 Outline of the talk Introduction to Aspect Oriented Programming Examples for uses of AOP for security AOP & Memory safety Future work 2 What is

870 views • 59 slides
How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing

How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing

DIMACS Workshop On Secure Routing March 10, 2010 How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing Protocols? $ $ Sharon Goldberg Microsoft Research & Boston University y Michael Schapira

701 views • 54 slides
Application Security as a Service: Start Your Application Security Initiative in Less than a Day

Application Security as a Service: Start Your Application Security Initiative in Less than a Day

Application Security as a Service: Start Your Application Security Initiative in Less than a Day David Harper Practice Principal Fortify on Demand #MicroFocusCyberSummit Agenda The Application Security Problem Security Gate Secure DevOps

37.39k views • 30 slides
What is iTax iTax is a web-enabled and secure application system that provides a

What is iTax iTax is a web-enabled and secure application system that provides a

DTD INTEGRATED TAX MANAGEMENT SYSTEM (iTax) CGT/LSK WORKSHOP 29 TH AUGUST 2016 What is iTax iTax is a web-enabled and secure application system that provides a fully-integrated and automated solution for administration of domestic taxes.

295 views • 10 slides
Sediment Quality Objectives (SQO) Plan Presentation to SCAP March 20, 2008 Susan C. Paulsen,

Sediment Quality Objectives (SQO) Plan Presentation to SCAP March 20, 2008 Susan C. Paulsen,

Sediment Quality Objectives (SQO) Plan Presentation to SCAP March 20, 2008 Susan C. Paulsen, Ph.D., P.E. (Credit to SWRCB and SCCWRP for many slides) Overview Background Overall SQO approach Draft Plan and Phase 1 SQO approach

416 views • 22 slides
Secure, Reliable & Proven Application Performance Management for the Enterprise Web

Secure, Reliable & Proven Application Performance Management for the Enterprise Web

Secure, Reliable & Proven Application Performance Management for the Enterprise Web Performance Matters to the Business Your organization depends on your web applications to do business from customer facing eCommerce, banking or travel

281 views • 6 slides
Technology Application in Safe and Secure Operation of Ferry Transportation in the New York

Technology Application in Safe and Secure Operation of Ferry Transportation in the New York

Technology Application in Safe and Secure Operation of Ferry Transportation in the New York Harbor Transportation Technology Symposium Jonathan Figueroa - NY Waterway Amit Bhowmick - Port Authority of NY & NJ November 20, 2015 History

587 views • 21 slides
Alpha Presentation Secure Application Layer API Proxy The Capstone Experience Team Symantec

Alpha Presentation Secure Application Layer API Proxy The Capstone Experience Team Symantec

Alpha Presentation Secure Application Layer API Proxy The Capstone Experience Team Symantec Lauren Allswede Steven Kneiser Jacob Carl TJ Kelly Yili Luo Department of Computer Science and Engineering Michigan State University Fall 2017

225 views • 9 slides
Beta Presentation Secure Application Layer API Proxy The Capstone Experience Team Symantec

Beta Presentation Secure Application Layer API Proxy The Capstone Experience Team Symantec

Beta Presentation Secure Application Layer API Proxy The Capstone Experience Team Symantec Lauren Allswede Steven Kneiser Jacob Carl TJ Kelly Yili Luo Department of Computer Science and Engineering Michigan State University Fall 2017

547 views • 12 slides
Article review: Secure web application via automatic partitioning Stephen Chong, Jed Liu, Andrew

Article review: Secure web application via automatic partitioning Stephen Chong, Jed Liu, Andrew

1 of 24 slides Article review: Secure web application via automatic partitioning Stephen Chong, Jed Liu, Andrew C. Myers, Xin Qi, K. Vikram, Lantian Zheng, and Xin Zheng; 2007 Department of Computer Science Cornell University Ivan Hristov

450 views • 28 slides
SuperMem: Enabling Application- transparent Secure Persistent Memory with Low Overheads Pengfei

SuperMem: Enabling Application- transparent Secure Persistent Memory with Low Overheads Pengfei

SuperMem: Enabling Application- transparent Secure Persistent Memory with Low Overheads Pengfei Zuo 1,2 , Yu Hua 1 , Yuan Xie 2 1 Huazhong University of Science and Technology, China 2 University of California at Santa Barbara, USA 52nd IEEE/ACM

494 views • 33 slides
Patient and Public Involvement & Engagement PPI Objectives To make research available to

Patient and Public Involvement & Engagement PPI Objectives To make research available to

Patient and Public Involvement & Engagement PPI Objectives To make research available to people in their own backyard by forging links with local communities. Develop good practice guidance for researchers and scientists on engaging

133 views • 10 slides
Real Capital Conference Tuesday February 28, 2017 Stephen Camp Senior Vice President Cell:

Real Capital Conference Tuesday February 28, 2017 Stephen Camp Senior Vice President Cell:

Real Capital Conference Tuesday February 28, 2017 Stephen Camp Senior Vice President Cell: (416) 347-6747 Email: scamp@cameronstephens.com The Arthouse A 905 Residential Condominium The Arthouse A 905 Residential Condominium

246 views • 5 slides
H1 2017 Results REINVESTING FOR THE FUTURE 17 August 2017 Forward looking statements Certain

H1 2017 Results REINVESTING FOR THE FUTURE 17 August 2017 Forward looking statements Certain

Invincible Pit, St Ives, Western Australia H1 2017 Results REINVESTING FOR THE FUTURE 17 August 2017 Forward looking statements Certain statements in this document constitute forward looking statements within the meaning of Section 27A

440 views • 32 slides
Evaluating methods for setting catch limits for gag grouper: data- rich versus data-limited Skyler

Evaluating methods for setting catch limits for gag grouper: data- rich versus data-limited Skyler

Evaluating methods for setting catch limits for gag grouper: data- rich versus data-limited Skyler R. Sagarese 1,2 , John F. Walter III 2 , Meaghan D. Bryan 2 , and Thomas R. Carruthers 3 1 Cooperative Institute for Marine and Atmospheric Studies,

608 views • 22 slides
Pollutant Source Control Pollutant Source Control for the for the Lower Duwamish Waterway

Pollutant Source Control Pollutant Source Control for the for the Lower Duwamish Waterway

Pollutant Source Control Pollutant Source Control for the for the Lower Duwamish Waterway Lower Duwamish Waterway Steve Siefert Steve Siefert & ecology and environment, inc. Some Some Perspective Perspective Georgetown South Park

635 views • 48 slides
Dashboard Discussion Document Jamie Miller, CEO August 6-7, 2019 This document contains Mission

Dashboard Discussion Document Jamie Miller, CEO August 6-7, 2019 This document contains Mission

MI:COP Risk Scoring Dashboard Discussion Document Jamie Miller, CEO August 6-7, 2019 This document contains Mission Innovate Proprietary and Confidential Business Information Common Operating Picture The Whole is Greater than Common

468 views • 19 slides
Excellence in Engineering Since 1946 City of Madison BUCKEYE ROAD PROJECT (Monona Drive to

Excellence in Engineering Since 1946 City of Madison BUCKEYE ROAD PROJECT (Monona Drive to

Excellence in Engineering Since 1946 City of Madison BUCKEYE ROAD PROJECT (Monona Drive to Stoughton Road) May 31, 2017 Overview Project Location & Limits Need for Project Anticipated Schedule Overview of Design

458 views • 33 slides
Presentation of Q1 2010 results 1 Safe Harbour Statement Matters discussed in this presentation

Presentation of Q1 2010 results 1 Safe Harbour Statement Matters discussed in this presentation

Presentation of Q1 2010 results 1 Safe Harbour Statement Matters discussed in this presentation may constitute forward-looking statements. Such statements reflect TORM's current expectations and are subject to certain risks and uncertainties

409 views • 22 slides

More recommend