Login or Register to Ask a Question and Join Our Community

learn linux and unix commands - unix shell scripting

Some Background Notes on the Consensus Audit Guidelines (CAG)

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
# 1  
Old 09-25-2009
Some Background Notes on the Consensus Audit Guidelines (CAG)
Here's some background on the CAG (Consensus Audit Guidelines).  The Red Teams have consistently proved that poor configuration and patching practices have made it easy for them to defeat network defenses.  This determination lead to the Air Force approaching Microsoft and insisting that new desktop software application come with a standard secure configuration.  This was the genesis of what is now known as the Federal Desktop Core Configuration (FDCC.) FDCC uses Red Team knowledge about attacker techniques to protect systems and network vulnerabilities used by attackers to break into systems.  This in turn, has led to the Twenty Critical Security Controls (the “CAG” not to be confused with the older abbreviation for Carrier, Air Group used by the Navy.)  In the IA context, CAG is the follow-on to the FDCC.  It extends the mandate that “offense must teach defense” to identify all 20 critical controls that ensure systems are protected against most known attack vectors and that the systems are configured adequately so that attack software that does get through can be found and eliminated quickly.  The demonstrated collateral benefits of these efforts include saving costs in terms of configuration management and patching plus reducing help desk calls.

Image
Image

More...
Login or Register to Ask a Question

Previous Thread | Next Thread

4 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Adding per group and selecting consensus name

Hello gurus, I am having trouble selecting consensus name, if any, for each group in my data. The rules are 1. A group is defined by the first 2 columns. 2. The last column defines the name of the row within a group. If all rows within a group have the same name , we select that name as... (1 Reply)
Discussion started by: sheetalk
1 Replies

2. AIX

When AIX audit start, How to set the /audit/stream.out file size ?

Dear All When I start the AIX(6100-06)audit subsystem. the log will save in /audit/stream.out (or /audit/trail), but in default when /audit/stream.out to grow up to 150MB. It will replace the original /audit/stream.out (or /audit/trail). Then the /audit/stream.out become empty and... (2 Replies)
Discussion started by: nnnnnnine
2 Replies

3. Shell Programming and Scripting

Filling positions based on consensus character

I have files with hundreds of sequences with missing characters represented by a dash ("-"), something like this I need to go sequence by sequence and if a dash is found, it should be replaced with the most common character in that particular position. Thus, in my example the dash in the second... (6 Replies)
Discussion started by: Xterra
6 Replies

4. What is on Your Mind?

Guidelines for Posting Here

This area is not for forum specific technical questions. Please post forum specific technical questions in the best forum, not in the lounge. However, if your idea or question is not covered clearly in a forum, please post it here. Discuss whatever is on your mind. Technical topics welcome... (0 Replies)
Discussion started by: Neo
0 Replies
Login or Register to Ask a Question