Saturday, February 25, 2017

What is hardening?

Hardening is a general term which refers to a process of configuring a system in such a way that is become more secure and protected against various vulnerability and security attacks. Hardening is implemented to conform to the security requirements as defined in the security policy of an enterprise. Many different hardening procedures are deployed, based on the type of system and the desired level of security. While hardening a system, it is important to keep in mind its intended use because hardening a system can restrict access on various components/programs within a system.

Hardening is done at various levels to protect the system. These include host level, application level, OS level, user level, network level. Each level is protected by different methods of security. Hardening procedures can include:
·     Installing antivirus with regular updates and updating the software by installing the software with its updates recommended by the vendor on computer system.
·   Constructing a specially designed, limited-access server rooms with advance authorization techniques for entry by authorized personal.
·        Updating the operating system with latest patches and hot fixes.
·         Regular monitoring of systems and networks.
·         Limiting resource and file sharing on network.
·         Keeping backup copies of software and data in case of a crash.
·         Implementing password policies
·         Encrypted transfer of data

The main purpose of hardening is to minimize or remove the vulnerabilities and security risks to ensure maximum protection. Hardening can be implemented in the following software and hardware resources:
·         Operating system
·         Directory services
·        File and printer server
·         Web server
·         E-mail server
Share This
Previous Post
Next Post

TekGrabs, established in 2017, is in the business of sharing Information. It provides news, articles and photos about the different technologies, inventions in different domains. Provides information on programming and databases.