Information Systems Security Baseline Configurations Verification and Evaluation
This paper first elaborates and analyses the information system security baseline theory,then follows the baseline security theory of information systems,references the FISMA model (The Federal Information Security Management Act) and the introduction of the SCAP (Security Content Automation Protocol) standard,designs an automatic configurations verification and evaluation system based on the information systems security baseline (named AutoCVES for short).This system uses a combination of remote detection and local detection,can automatically excute the configuration verification based on the security baseline library,therefore saves the time of the traditional manual operating,such as single-point security configuration checking,also can effectively reduce the mistakes and avoid the risks caused by traditional manual inspections.At the end,this paper proposes that the Hidden Markov Model(HMM) can be used to set model for various states of information system and helpful for the evaluation.
Baseline Security FISMA SCAP Configurations Verification HMM
ZOU Yu-Lin DING Yu-Ting
Ocean University of China, Qingdao City Shandong Province 266100, China
国内会议
北京
英文
166-170
2013-03-01(万方平台首次上网日期,不代表论文的发表时间)