Protect Your Data and Your Business With Delta Hardening©
(PRWEB) September 21, 2013 -- The Best Defense comes from EvolveThinking
Delta Hardening© from EvolveThinking is a promise-based compliance solution that aligns with and enhances your existing CFEngine infrastructure to protect business’ data in this cyber war. It essentially ‘hardens’ your defenses, ensuring systems and controls remain as strong as when they were first produced.
"A promise based approach allows for activities like: the disabling of unneeded services (services can’t be exploited if they are disabled), limiting login access restricts access (locked systems cannot be logged into) and securing data (unreadable data has zero value)."
Data ‘hardening’ isn’t new – typically, it’s performed when a server is first put into production. Over time, though, environments usually evolve into a configuration ‘drift’ state, and the original hardening is no longer dependable.
Delta Hardening© offers unique, sustained protection.
The solution’s flexibility and baseline promise functionality empowering a constantly reinforced defense against changing conditions and business demands through definitions and promises, reducing your vulnerabilities to both internal and external threats.
How Delta Hardening© Works
Delta Hardening© plugs into existing CFEngine infrastructures and provides ready-to-use hardening promises for data and infrastructure. Individual hardening controls are applied to systems with the option of a holistic or fractional approach.
Simple to implement and adapt, Delta Hardening© provides the ability to adapt to changing conditions across your organization from a single source. Once Delta Hardening© links to CFEngine’s continual convergence, hardening is a onetime only event, with the assurances that it will not diverge over time. Peace of mind between and during audits is just one of the typical benefits.
The Delta Hardening© package from EvolveThinking allows organizations to:
• Enforce hardening rule around the clock, correcting any unauthorized change.
• Simple to customize to your needs.
• Uses industry respected hardening guides from the NSA and NIST.
• More than 100 ready to use hardening controls.
• Uses industry respected CFEngine, either Community or Enterprise versions.
• Makes CFEngine easier to use.
• Compatible with many Linux distributions.
Example controls:
• Disable services like ypbind.
• Install and configure services like sudo and sshd.
• Remove unnecessary files like .netrc.
• Promise file perms like /tmp and /etc/shadow.
• Promise file contents like /etc/issue, /etc/inittab.
• Promise sysctl settings.
• Add your own controls.
• All controls are constrained to hosts of your choosing.
Joseph Braithwatie, EvovleThinking, http://evolvethinking.com/, +1 (647) 519-4842, [email protected]
Share this article