Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

Would you recommend using a set of hardening guidelines like those available fro

ID: 3910781 • Letter: W

Question

Would you recommend using a set of hardening guidelines like those available from the Center for Information Security? You will find a sample of the guidance in this week's module. Why or why not? What is the value of using hardening guidance from a third party like CIS? What might be a downside to using these guidelines? Would you recommend using a set of hardening guidelines like those available from the Center for Information Security? You will find a sample of the guidance in this week's module. Why or why not? What is the value of using hardening guidance from a third party like CIS? What might be a downside to using these guidelines?

Explanation / Answer

Answer: CSI guides include levels for security which is Legacy, Enterprise, High Security.

Yes, we can recommend the set of guidelines like those available from the Center for Information Security to some extent because high security levels in these guidelines designed to restrict the functionality of the system. This includes several setting that that should be evaluated carefully before any implementation. These settings provide tight security even in windows system that is why it is popular. Although these (high security) settings provide additional security benefits, the settings may have an adverse effect on the usability of the system. It is always recommended to deploy high security after thoroughly testing the system otherwise NO.

Third party guidance prompts strong warnings to fully examine the guide in a high security environment at all times. However, these warnings are not always taken care of. Be sure to rigorously test every security configurations in the target environment. Security settings in addition to the recommended security settings may contradict the compliance test application test as part of the operating system testing process. In addition, third parties do not encourage the application of draft guidelines in a real-time production environment rather than in a test environment.

Downside of these guidelines is that they provide high security to the systems on the cost of usability of the system and restrictions on some actions to be done and system should be tested carefully before any deployment since it has adverse impact on the system.

Related Questions

Would you expect any differences in the mechanism of death and the period of sur
Question #99340
Would you expect blood pressure to be higher after exerciseT Why? Laboratory Rev
Question #133740
Would you expect different values for the heat of the neutralization reaction, w
Question #908925
Would you expect more reliable curs to cost more? Consumer Reports rated 15 upsc
Question #3394458
Would you expect octane to be soluble in cyclohexane (another hydrocarbon)? Expl
Question #1022801
Would you expect significant scatter in the data for tests of fracture strength
Question #2323493
Would you expect the concentration of hydrogen ions in the matrix of rotenone-po
Question #279215
Would you expect the diffusion of C in ? iron (BCC) to be larger or smaller than
Question #702526
Hire Me For All Your Tutoring Needs
Integrity-first tutoring: clear explanations, guidance, and feedback.
Drop an Email at
drjack9650@gmail.com
Chat Now And Get Quote

Navigate

Previous
Would you recommend a free tool for exploring compiled .NET assemblies. I need t
Next
Would you say that Microsoft\'s Dynamic Access Control implementation falls into

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.