book

Security Strategies in Windows Platforms and Applications

Name: Security Strategies in Windows Platforms and Applications
Author: Michael G. Solomon
ISBN: 9780763791940

by Michael G. Solomon

November 2010

Intermediate to advanced

384 pages

10h 21m

English

Jones & Bartlett Learning

Read now

Unlock full access

Copyright
Preface
Purpose of This BookLearning FeaturesAudience
Acknowledgments
ONE. The Microsoft Windows Security Situation
1. Microsoft Windows and the Threat Landscape
Information Systems SecurityTenets of Information Security: The A-I-C TriadAvailabilityIntegrityConfidentialityMapping Microsoft Windows and Applications Into a Typical IT InfrastructureWindows ClientsWindows ServersMicrosoft's End User Licensing Agreement (EULA)Windows Threats and VulnerabilitiesAnatomy of Microsoft Windows VulnerabilitiesCode RedSQL SlammerConfickerDiscovery-Analysis-Remediation CycleDiscoveryAnalysisRemediationCommon Forms of AttackCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 1 ASSESSMENT
2. Security in the Microsoft Windows Operating System
Operating System Components and ArchitectureThe KernelOperating System ComponentsBasic Windows Operating System ArchitectureWindows Run ModesKernel ModeUser ModelAccess Controls and AuthenticationAuthentication MethodsAccess Control MethodsSecurity Access Tokens, Rights, and PermissionsSecurity IdentifierAccess Rules, Rights, and PermissionsUsers, Groups, and Active DirectoryWorkgroupsActive DirectoryWindows Attack Surfaces and MitigationMultilayered DefenseMitigationFundamentals of Microsoft Windows Security Monitoring and MaintenanceSecurity MonitoringIdentify VulnerabilitiesCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 2 ASSESSMENT
TWO. Managing and Maintaining Microsoft Windows Security
3. Access Controls in Microsoft Windows
The Principle of Least PrivilegeThe Orange BookLeast Privilege and LUAsRights and PermissionsAccess Models: Identification, Authentication, Authorization, ACLs, and MoreUser Account Control (UAC)Sharing SIDs and SATsKerberosNT LAN ManagerWindows Objects and Access ControlsWindows DACLsDACL Advanced PermissionsSIDs, GUIDs, and CLSIDsCalculating Microsoft Windows Access PermissionsAuditing and Tracking Windows AccessMicrosoft Windows Access Management ToolsCacls.exeiCacls.exeRobocopyBest Practices for Microsoft Windows Access ControlCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 3 ASSESSMENT
4. Microsoft Windows Encryption Tools and Technologies
Encryption Methods Microsoft Windows SupportsEncrypting File System, BitLocker, and BitLocker To GoEncrypting File SystemBitLockerBitLocker To GoEnabling File-, Folder-, and Volume-Level EncryptionEnabling EFSEnabling BitLockerEnabling BitLocker To GoEncryption in CommunicationsEncryption Protocols in Microsoft WindowsSSL/TLSVirtual Private NetworkWireless SecurityMicrosoft Windows and Security CertificatesPublic Key InfrastructureBest Practices for Windows Encryption TechniquesCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 4 ASSESSMENT
5. Protecting Microsoft Windows Against Malware
Types of MalwareVirusWormTrojan HorseRootkitSpywareMalware Type SummaryAntivirus and Anti-Spyware SoftwareAntivirus SoftwareAnti-Spyware SoftwareImportance of Updating Your SoftwareMaintaining a Malware-Free EnvironmentScanning and Auditing MalwareTools and Techniques for Removing MalwareMalware Prevention Best PracticesCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 5 ASSESSMENT

6. Group Policy Control in Microsoft Windows
Group Policy and Group Policy ObjectsGroup Policy SettingsGPO LinkingMaking Group Policy Conform to Security PolicySecurity ResponsibilitySecurity Policy and Group PolicyGroup Policy TargetsTypes of GPOs in the RegistryLocal Group Policy EditorGPOs in the Registry EditorTypes of GPOs in Active DirectoryGroup Policy Management ConsoleGPOs on the Domain ControllerDesigning, Deploying, and Tracking Group Policy ControlsGPO Application OrderSecurity FiltersGPO Windows Management Instrumentation (WMI) FiltersDeploying Group PolicyAuditing and Managing Group PolicyGroup Policy InventoryAnalyzing the Effect of GPOsBest Practices for Microsoft Windows Group Policy and ProcessesGroup Policy Design GuidelinesCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 6 ASSESSMENT
7. Microsoft Windows Security Profile and Audit Tools
Profiling Microsoft Windows SecurityProfilingProfiling Windows ComputersMicrosoft Baseline Security Analyzer (MBSA)MBSA GUIMBSA Command Line InterfaceShavlik Security AnalyzersNetChk Protect LimitedNetChk ProtectSecunia Personal and Corporate Security AnalyzersSecunia Personal ScannersSecunia Corporate ProductsMicrosoft Windows Security AuditMicrosoft Windows Security Audit ToolsBest Practices for Microsoft Windows Security AuditsCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 7 ASSESSMENT
8. Microsoft Windows Backup and Recovery Tools
Microsoft Windows Operating System (OS) and Application Backup and RecoveryThe Need for BackupsThe Backup ProcessThe Restore ProcessWorkstation, Server, Network, and Internet Backup TechniquesWorkstation BackupsOther Workstation Backup UtilitiesServer BackupsOther Server Backup UtilitiesNetwork BackupsInternet BackupsMicrosoft Windows and Application Backup and Recovery in a Business Continuity Recovery SettingDisaster Recovery PlanBusiness Continuity PlanWhere a Restore Fits InMicrosoft Windows Backup and Restore UtilityRestoring with the Windows Backup and Restore UtilityRestoring with the Windows Server 2008 Server Recovery UtilityRebuilding Systems from Bare MetalManaging Backups with Virtual MachinesBest Practices for Microsoft Windows Backup and RecoveryCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 8 ASSESSMENT
9. Microsoft Windows Network Security
Network SecurityNetwork Security ControlsPrinciples of Microsoft Windows Network SecurityCommon Network ComponentsConnection MediaWired Network ConnectionsWireless Network ConnectionsNetworking DevicesHubSwitchRouterGatewayServer Computers and Services DevicesNetwork File ServerNetwork Print ServerData StorageApplication ServicesFirewallsMicrosoft Windows Security Protocols and ServicesSecuring Microsoft Windows Environment Network ServicesService UpdatesService AccountsNecessary ServicesSecuring Microsoft Windows Wireless NetworkingMicrosoft Windows Desktop Network SecurityUser Authorization and AuthenticationMalicious Software ProtectionOutbound Traffic FilteringMicrosoft Windows Server Network SecurityAuthentication and AuthorizationMalicious Software ProtectionNetwork Traffic FilteringBest Practices for Microsoft Windows Network SecurityCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 9 ASSESSMENT
10. Microsoft Windows Security Administration
Security Administration OverviewThe Security Administration CycleSecurity Administration TasksMaintaining the A-I-C Triad in the Microsoft Windows OS WorldMaintaining AvailabilityMaintaining IntegrityMaintaining ConfidentialityMicrosoft Windows OS Security AdministrationFirewall AdministrationPerformance MonitorBackup AdministrationWindows Workstation BackupsWindows Server BackupsOperating System Service Pack AdministrationGroup Policy AdministrationDACL AdministrationEncryption AdministrationEnabling EFSEnabling BitLocker or BitLocker To GoAnti-Malware Software AdministrationEnsuring Due Diligence and Regulatory ComplianceDue DiligenceThe Need for Security Policies, Standards, Procedures, and GuidelinesBest Practices for Microsoft Windows OS Security AdministrationCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 10 ASSESSMENT
THREE. Microsoft Windows OS and Application Security Trends and Directions
11. Hardening the Microsoft Windows Operating System
Understanding the Hardening Process and MindsetStrategies to Secure Windows ComputersInstall Only What You NeedSecurity Configuration WizardManually Disabling and Removing Programs and ServicesHardening Microsoft Windows Operating System AuthenticationHardening the Network InfrastructureSecuring Directory Information and OperationsHardening Microsoft Windows OS AdministrationHardening Microsoft Servers and Client ComputersHardening Server ComputersHardening Workstation ComputersHardening Data Access and ControlsHardening Communications and Remote AccessAuthentication ServersRADIUSTACACS+VPNs and EncryptionHardening PKIUser Security Training and AwarenessBest Practices for Hardening Microsoft Windows OS and ApplicationsCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 11 ASSESSMENT
12. Microsoft Application Security
Principles of Microsoft Application SecurityCommon Application Software AttacksHardening ApplicationsSecuring Key Microsoft Client ApplicationsWeb BrowserE-mail ClientProductivity SoftwareFile Transfer SoftwareAppLockerSecuring Key Microsoft Server ApplicationsWeb ServerE-mail ServerDatabase ServerERP SoftwareLine of Business SoftwareCase Studies in Microsoft Application SecuritySporton InternationalMonroe CollegeDow CorningBest Practices for Securing Microsoft Windows ApplicationsCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 12 ASSESSMENT
13. Microsoft Windows Incident Handling and Management
Understanding and Handling Security Incidents Involving Microsoft Windows OS and ApplicationsFormulating an Incident Response PlanPlan Like a PilotPlan for Anything That Could Cause Loss or DamageBuild the CSIRTPlan for CommunicationPlan SecurityRevision ProceduresPlan TestingHandling Incident ResponsePreparationIdentificationContainmentEradicationRecoveryLessons LearnedIncident Handling and Management Tools for Microsoft Windows and ApplicationsInvestigating Microsoft Windows and Applications IncidentsAcquiring and Managing Incident EvidenceTypes of EvidenceChain of CustodyEvidence Collection RulesBest Practices for Handling Microsoft Windows OS and Applications Incidents and InvestigationsCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 13 ASSESSMENT
14. Microsoft Windows and the Security Life Cycle
Understanding System Life Cycle PhasesManaging Microsoft Windows OS and Application Software SecurityDeveloping Secure Microsoft Windows OS and Application SoftwareImplementing, Evaluating, and Testing Microsoft Windows OS and Application Software SecurityMaintaining the Security of Microsoft Windows OS and Application SoftwareMicrosoft Windows OS and Application Software Revision, Change Management, and End-of-Life PhaseoutSoftware Development Areas of DifficultySoftware ControlSoftware Configuration Management (SCM)Best Practices for Microsoft Windows and Application Software Development Security InvestigationsCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 14 ASSESSMENT
15. Best Practices for Microsoft Windows and Application Security
Basic Rules of Microsoft Windows OS and Application SecurityAudit and Remediation CyclesSecurity Policy Conformance ChecksSecurity Baseline AnalysisOS and Application Checks and UpkeepNetwork Management Tools and PoliciesSoftware Testing, Staging, and DeploymentCompliance/Currency Tests on Network EntryTrends in Microsoft Windows OS and Application Security ManagementCHAPTER SUMMARYKEY CONCEPTS AND TERMSCHAPTER 15 ASSESSMENT
A. Answer Key
B. Standard Acronyms
Glossary of Key Terms
References

Overview

PART OF THE NEW JONES & BARTLETT LEARNING INFORMATION SYSTEMS SECURITY & ASSURANCE SERIES!

More than 90 percent of individuals, students, educators, businesses, organizations, and governments use Microsoft Windows, which has experienced frequent attacks against its well-publicized vulnerabilities. Written by an industry expert, Security Strategies in Windows Platforms and Applications focuses on new risks, threats, and vulnerabilities associated with the Microsoft Windows operating system. Particular emphasis is placed on Windows XP, Vista, and 7 on the desktop, and Windows Server 2003 and 2008 versions. It highlights how to use tools and techniques to decrease risks arising from vulnerabilities in Microsoft Windows operating systems and applications. The book also includes a resource for readers desiring more information on Microsoft Windows OS hardening, application security, and incident management. With its accessible writing style, and step-by-step examples, this must-have resource will ensure readers are educated on the latest Windows security strategies and techniques.

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Security Strategies in Windows Platforms and Applications, 4th Edition

Publisher Resources

ISBN: 9780763791933

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills