itec 5321 information systems security spring ‘07 slax killbill edition v5.1.8.1 deepanwita bagchi...

ITEC 5321Information Systems SecuritySpring ‘07

Slax KillBill Edition v5.1.8.1

Deepanwita Bagchi03-03-2007

3/3/2007 Deepanwita Bagchi

Agenda

Why is Security important?

Role of NIST

Different Technical Controls suggested by NIST

What is a Live CD?

SLAX KillBill Edition v 5.1.8.1

How to implement a technical control with SLAX KillBill live CD?

Q/A


"If you think technology can solve your security problems, then you don't understand the problems and you don't understand the technology."

- Bruce Schneier


National Institute of Standards and Technology

Non Regulatory agency of the US Department of Commerce’s Technology administration

Suggests control categories to prevent, detect and recover IT systems from security threats. Categories are: technical, managerial and operational

Technical control are subdivided into three categories: Supportive, Preventive and Detective/Recovery



Technical Security Controls: Support:

Identification

Cryptographic Key Management

Security Administration

System Protections

Preventive

Authentication

Authorization

Access Control Enforcement

Nonrepudiation

Protected Communications

Transaction Privacy

Detection / Recovery

Audit

Intrusion Detection & Containment

Proof of Wholeness

Restore Secure State

Virus Detection and Eradication



Source: http://csrc.nist.gov/publications/nistpubs/800-30/sp800-30.pdf

Technical Security Controls


Live CD?

Bootable CD with pre-configured software

Easy way to try out multiple operating systems without having to install them

Read-only CD, hard to tamper with

Wide range of distros to choose from while implementing a technical security control


My Choice?

Slax KilBill Edition v5.1.8.1

Slackware Linux based liveCD

Pocket operating system, merely 204MB

Uses Unification File System (also known as unionfs), allowing read-only filesystem to behave as a writable one, saving all changes to memory.

Why Slax KB? Modularity

Speed

Easy CD/ USB creation


Default Features in SLAX KB v5.1.8.1 CD

Linux kernel 2.6 offering excellent hardware support

The newest ALSA sound drivers

Ndiswrapper for loading Windows drivers for WIFI cards

Madwifi drivers for native support for WIFI cards (Multiband Atheros)

KDE 3.5 desktop

Webconfig allowing you to save your session data to slax‘ web


Easy CD creation with MySLAX


Demo of Easy LiveCD Creation


Security Modules available in SLAX KB

87 Security Modules available to choose from

Source: http://www.slax.org/modules.php?category=security


Security Modules I Installed

BCrypt 1.1

Ccrypt 1.7.7

Ethereal 0.10.11

Snort 2.6.0.2

TrueCrypt 4.2a


Technical Control Implemented

Protected Communications:Truecrypt

& Ccrypt


Protected Communications (Contd…):

Keyfile created



File to be encrypted

Encryption command



Encrypted File

Decryption Command



Back to original file


Questions / Comments?

itec 5321 information systems security spring ‘07 slax killbill edition v5.1.8.1 deepanwita bagchi...

Documents

deepanwita bagchi agenda

deepanwita bagchi live

myslax slide

eradication slide

detectiverecovery slide

qa slide

slax web slide

truecrypt ccrypt slide