PitBull Foundation Introductory Course

Introductory Course Description

This training is appropriate for system security officers, system administrators, applications integrators, and other users of the Argus security systems. The course assumes familiarity with UNIX.

  • Learn how to operate your system in the Argus secure environment.
  • Understand the concepts of Argus security features and how they respond to security threats.
  • Learn to administer PitBull Foundation Suite components (UDE, Authentication daemon, CGI daemon) through command line interface.

Course Syllabus

Day 1

Principles of Security

  • Principal threats to security - confidentiality, integrity, and availability of service
  • Common attacks - virus, bomb, spoof, worm, trojan horse, etc.
  • Responses to security - access control and system monitoring
  • Security policy

Overview of Argus Security Features

  • Argus family of products
  • Product design goals
  • Advanced Secure Networking
  • Sensitivity Labels, Discretionary Access Control, identification and authentication, security flags, privileges, authorizations, trusted computing base, auditing, integrity databases, and networking

Argus Documentation

  • Security Features User Guide
  • Trusted Facility Manual

Discretionary Access Control

  • Explanation of Discretionary Access Control
  • Attribute locations
  • See and set basic DAC attributes
  • Discretionary Access Control attribute inheritance
  • Access Control Lists
  • Discretionary Access Control enforcement and directories
  • Related security features

Mandatory Access Control

  • MAC policy and labels
  • See and set labels
  • Labels and objects
  • MAC attribute inheritance
  • Customizing labels for your site
  • Partitioned directories

Day 2

Privileges

  • Concepts, policy, and use
  • Process privilege sets
  • Privilege hierarchy
  • Privilege inheritance
  • Least privilege setting
  • Superuser emulation

Authorizations

  • Concepts and policy
  • The authorization hierarchy
  • Customized authorizations
  • The limiting authorization set
  • Commonly used authorizations

MLS Networking

  • ASN - Advanced Secure Networking
  • Packet structure
  • Network security options - CIPSO, RIPSO
  • Network interface rules and host rules
  • Network packet processing, incoming and outgoing
  • The netrule command

Beyond Foundation

  • Web host protection
  • Tools and utilities
  • Internet traffic protection

Day 3

User Accounts

  • Managing users
  • System-wide user settings
  • User-specific security attributes
  • Additional login checks
  • Device management
  • Checklists

Audit

  • Audit events, classes, and masks
  • Audit IDs
  • Audit data files
  • Audit commands and file security flags

System Administration

  • Device management
  • System modes
  • Security flags
  • Trusted library path
  • Integrity checking
  • File system conversion
  • Important Argus directories
  • Backup and restore
  • Startup and shutdown

Day 4

Recommended Security Practices

  • Precautions when installing software
  • Auditing practices
  • Configuration options for better security
  • Locating files that threaten security
  • System Installation and Configuration
  • Hands-on, guided use of the system
  • Integration of Applications
  • Hands-on, guided use of the system
Innovative Security Systems, Inc | dba Argus Systems Group Privacy Copyright © 2008 Innovative Security Systems Inc.