Module 6 - Creating a security design for computers. In this module, you will learn how to determine threats and analyze risks to network hosts in an organization. You will also learn how to design security for network hosts throughout their life cycles, from initial purchase to decommissioning. | Module 6: Creating a Security Design for Computers Overview Determining Threats and Analyzing Risks to Computers Designing Security for Computers Lesson: Determining Threats and Analyzing Risks to Computers The Security Life Cycle of a Computer Why Security of Computers Is Important Common Threats to Computers Practice: Analyzing Risks to Computers The Security Life Cycle of a Computer Initial Installation Baseline Security Configuration for Specific Role Application of Security Updates Decommissioning Why Security of Computers Is Important Attacker Threat Example External A virus exploits a known vulnerability in the operating system A worm virus attacks new computers before security updates are installed. The virus installs a Trojan horse application. The compromised computers are deployed with the Trojan horse application. Internal Exposure of the Administrator password A local Administrator password is sent in plaintext during a network installation. An attacker uses the password to view data on his manager’s computer. Corporate Headquarters Internal Attack Virus External Attack Common Threats to Computers Phase Threat Installation Administrator password is exposed during installation Virus infects a computer before virus protection software is installed Operating system is configured incorrectly Baseline and configuration Baseline security is not deployed uniformly Computer is not secured properly for its role Security configuration is not updated when a computer’s role changes Security updates Service packs and hotfixes are applied inconsistently Service pack and hotfix installations are not audited Hotfixes are not reapplied after a service is added Decommissioning Sensitive data remains on hard disks and other storage media when the computer is decommissioned Practice: Analyzing Risks to Computers Read the scenario Answer the questions Discuss answers as a class 1 2 3 Analysis Lesson: Designing Security for Computers Common Methods for Performing an . | Module 6: Creating a Security Design for Computers Overview Determining Threats and Analyzing Risks to Computers Designing Security for Computers Lesson: Determining Threats and Analyzing Risks to Computers The Security Life Cycle of a Computer Why Security of Computers Is Important Common Threats to Computers Practice: Analyzing Risks to Computers The Security Life Cycle of a Computer Initial Installation Baseline Security Configuration for Specific Role Application of Security Updates Decommissioning Why Security of Computers Is Important Attacker Threat Example External A virus exploits a known vulnerability in the operating system A worm virus attacks new computers before security updates are installed. The virus installs a Trojan horse application. The compromised computers are deployed with the Trojan horse application. Internal Exposure of the Administrator password A local Administrator password is sent in plaintext during a network installation. An attacker uses the .
