View allAll Photos Tagged cybersecurity
[Robot is in bed with a virus. Bunny is trying to help out by giving him bandages.]
Robot: Glad you got your flu shot, Bunny. I'm feeling a bit under the weather. I missed an update to my virus software, and now I'm paying the price.
Viruses and malware are sneaky, new ones appear every day. You have to stay up to date.
Learn from my mistake. Run your updates now and set auto-reminders to keep your system current.
-----------------
More info at ocio.osu.edu/spyware/#resources
Alex Halderman, Professor of Electrical Engineering and Computer Science, speaks at MichiganÕs new Election Security Commission inaugural meeting in the Bob and Betty Beyster Building on North Campus of the University of Michigan in Ann Arbor, MI on April 16, 2019.
Photo: Joseph Xu/Michigan Engineering, Communications & Marketing
Best Practices for Firewall and Router Management. Learn more at kirkpatrickprice.com/blog/firewall-and-router-management/
This webinar will not going to provide you with specific instructions on how to configure your individual devices. However, it will provide you with the individual attributes that you need to consider when developing your router and firewall security program. In this webinar, we will focus on discussing physical devices, running operating systems, and secure traffic rules.
If you’re goal is to fully develop your security system, you must accept that managing the security of a physical device goes much further than the device itself. Best practices include:
Assigned responsibility for the management of physical devices and periodic review of the configs must be performed
Defined acceptable use policies and procedures for your assets, along with acceptable technologies and acceptable locations to place them in
In those locations, you must ensure that they are physically secured from unauthorized access; this means that cables connecting into and out of the devices are secure, there is limited access to directly console into devices, and there is minimal out-of-bound access points to devices
When you’re considering how to securely run operating systems, there are a few logical steps:
Limit logical access to only those who require it
Maintain a detailed list of hardening standards
Configure logging
Change all defaults (especially passwords)
Ensure strong encryption
Keep your operating system updated
Establish remote access console timeout
Configure NTP
Establish log-on banner
Disable unused interfaces
Ensure that loaded images are authentic
Restrict ICMP from untrusted interfaces
Enable anti-spoofing rules
When maintaining secure traffic rules, there are a few best practices including:
Maintain a list of approved ports and services, which management should oversee
Limit traffic inbound from the Internet to the DMZ
Limit outbound traffic to only that which is need
Deny all other traffic not required
Generally speaking “ any “ based rules should not be use; rules should be as prescriptive as necessary to security shape the traffic
Listen to the full webinar to learn more about firewall and router management, listen to the Q&A portion, and view more resources.