|
LJK/Security provides centralized security
assessment for distributed VMS systems. A central security staff can ensure
all systems comply with organization security policy.
V2.9 is the March 2005 release of LJK/Security,
and it includes the following enhancements:
- Includes tests for 32 additional elements
of VMS security.
- Adds the SHA-1 cryptographic checksum
as a slower but more resiliant algorithm to test for modification of
executable images and other critical files.
- Adds a mechanism for exporting security
policies (or individual limits and exemptions) in the form of a command
procedure suitable for modifying other security policies to match.
- Adds a Summary capability to report violation
totals rather than full details in the case of systems which are badly
out of compliance with policy.
- Provides command procedures to build
policies including proper checksum values for executable images that
ship as part of VMS and listing executable images that ship as part
of VMS that are allowed to be part of the Trusted Computing Base.
- Provides
command procedure to build a policy that corresponds to NIST Special
Publication 800-53, Recommended Security Controls for Federal Information
Systems. Violation reports
resulting from policies built in that fashion include the 800-53 control
designation along with each reported violation. Further discussion is
available here.
- Adds a mechanism to allow similar customization
of violation reports for policies you build based on other disciplines
such as HIPPA or the Gramm-Leach-Bliley Act.
|
