Host Based Security System: Difference between revisions

Browse history interactively

← Previous edit

Content deleted Content added

VisualWikitext

Revision as of 12:01, 11 October 2023 edit Salman khan27 (talk \| contribs) 8 edits m →History: i have updated and changed the HBBS components, Tags: Reverted Visual edit Newcomer task Newcomer task: update ← Previous edit		Latest revision as of 00:01, 13 January 2024 edit undo BD2412 (talk \| contribs) Autopatrolled, Administrators 2,529,165 edits m clean up spacing around commas and other punctuation fixes, replaced: ,h → , h (2) Tag: AWB
(One intermediate revision by one other user not shown)
Line 15: * March 27, 2007: The ESSG approved the HBSS for full-scale deployment throughout the DoD enterprise * October 9, 2007: The [[Joint Task Force for Global Network Operations\|JTF-GNO]] releases CTO 07-12 * November, 2009: The [[United States Air Force\|Air Force]] awarded [[Northrop Grumman]] with the deployment of HBSS on the SIPRNet<ref>Henry Kenyon, ''Northrop Grumman Wins Air Force SIPRNET Contract'', http://www.afcea.org/signal/signalscape/index.php/2009/11/northrop-grumman-wins-air-force-siprnet-contract/, 3/13/2010 {{Dead link\|date=August 2021}}</ref> == HBSS components == Throughout its lifetime, ~~[https://99web.org/host-based-security-system/~~ HBSS] has undergone several major baseline updates as well as minor maintenance releases. ~~'''~~The first major release of HBSS~~'''~~ iswas ~~based~~known onas Baseline 1.0 and contained the McAfee ePolicy orchestrator engine, ~~Inc's~~HIPS, ~~'''ePolicy'''~~[[software ~~Orchestrator~~compliance profiler]] (~~ePO~~SCP), [[rogue system detection]] (RSD), [[asset baseline manager]] (ABM), and ~~other~~assets ~~McAfee~~software. ~~point~~ ~~product~~As ~~security~~new ~~applications~~releases ~~such~~were asintroduced, ~~Host~~these ~~Intrusion~~software ~~Prevention~~products ~~System~~have ~~(HIPS)~~evolved, .had ~~The~~new ~~system~~products ~~comprises~~added, ~~several~~and ~~modules/components~~in some cases, ~~including:~~been completely replaced for different products. ~~'''Host Intrusion Prevention System (HIPS):''' A module that provides intrusion detection and prevention capabilities to protect against known and unknown threats .~~ ~~'''Policy Auditor (PA):''' A module that enables administrators to audit and enforce compliance with security policies across the enterprise .~~ ~~'''Assets Baseline Module (ABM):''' A module that enables administrators to establish a baseline of authorized software and configuration settings for each host ¹.~~ ~~'''Rogue System Detection (RSD):''' A module that detects unauthorized devices on the network and prevents them from accessing sensitive data .~~ ~~'''Device Control Module (DCM):''' A module that enables administrators to control access to peripheral devices such as USB drives, CD/DVD drives, and printers .~~ ~~'''Asset Publishing Service (APS):''' A module that enables administrators to publish asset information to other HBSS servers in the enterprise .~~ Recently, the Defense Information Systems Agency (DISA) has rebranded HBSS into a new suite called Endpoint Security Solutions (ESS), which adds new capabilities on top of the existing HBSS software . ESS is a multi-point product designed to meet known intrusion points, discover gaps, and reduce the likelihood of unauthorized device and network access . === HBSS Baseline 4.5 MR2 components === Line 106 ⟶ 92: <!----==== Security compliance profiler ==== The security compliance profiler (SCP) was one of the original products provided in HBSS Baseline 1.0. It was removed from HBSS as of Baseline 2.0 and replaced with the policy auditor component. The SCP is an integral component of ePO that provides enterprise-wide reporting on security patches, including the Microsoft® operating systems.<ref>'''System Compliance Profiler''', http://www.mcafee.com/us/enterprise/products/promos/system_security_management/epolicy_orchestrator/compliance_profiler.html, 3/14/2010</ref> ---->