文档详情

微软蓝灰风格PPT模板.ppt

发布：2025-04-09约字共10页下载文档

文本预览下载声明

TrustworthyComputingGoal:Makedevicespoweredbycomputersandsoftwareastrustworthyasdevicespoweredbyelectricity.ATrustTaxonomyAvailability

AtadvertisedlevelsSuitability

FeaturesfitfunctionIntegrity

AgainstdatalossoralterationPrivacy

Accessauthorizedbyend-userReputation

SystemandproviderbrandSecurity

ResistsunauthorizedaccessQuality

PerformancecriteriaDevPractices

Methods,philosophyOperations

GuidelinesandbenchmarksBusinessPractices

BusinessmodelPolicies

Laws,regulations,standards,normsIntent

ManagementassertionsRisks

Whatunderminesintent,causesliabilityImplementation

StepstodeliverintentEvidence

AuditmechanismsGoalsMeansExecutionBuildingthesecureplatformGoal:ProvideITwithasecure,integratedfoundationformanaginghowusers,business,andtechnologiesconnect.12Securityindepth23145ManagementApplicationNetwork(IPSec,Wireless,VPN)Device(PDA,Laptops,PC’s,Servers)Infrastructure(PKI,Directory)FrontEndTypicalApplicationArchitectureUsersBackEndAuthenticationNetworkAccessAuthorizationAuditAlerts******************MicrosoftSecurityStrategy站长站素材SessionAgendaFocusonCustomerChallengesMicrosoftSecurityStrategySecureWindowsInitiativeStrategicTechnologyProtectionProgramTrustworthyComputingBuildingthesecureplatform.NETFrameworkWindows.NETSummaryQuestionsTechnology,Process,People

Whatarethechallenges?ProductslacksecurityfeaturesProductshavebugsInsufficienttechnicalstandardsDifficulttostay up-to-dateDesignforsecurityRolesresponsibilitiesVigilanceBusinesscontinuityplansStayup-to-datewithsecuritydevelopmentProblemrecognitionSkillsshortageHumanerrorProcessPeopleTechnologyTrustworthyComputingStrategicTechnologyProtectionProgramSecureWindowsInitiativeMicrosoftSecurityStrategySecureWindowsInitiative

“EngineeringForSecurity”Goal:EliminateEverySecurityVulnerab

显示全部

相似文档