Write a Blog >>
ASE 2020
Mon 21 - Fri 25 September 2020 Melbourne, Australia
Wed 23 Sep 2020 09:10 - 09:30 at Koala - Configuration Management (1) Chair(s): Carmine Vassallo

Hardening is the process of configuring IT systems to ensure the security of the systems’ components and data they process or store. The complexity of contemporary IT infrastructures, however, renders manual security hardening and maintenance a daunting task.

In many organizations, security-configuration guides expressed in the SCAP (Security Content Automation Protocol) are used as a basis for hardening, but these guides by themselves provide no means for automatically implementing the required configurations.

In this paper, we propose an approach to automatically extract the relevant information from publicly available security-configuration guides for Windows operating systems using natural language processing. In a second step, the extracted information is verified using the information of available settings stored in the Windows Administrative Template files, in which the majority of Windows configuration settings is defined.

We show that our implementation of this approach can extract and implement 83% of the rules without any manual effort and 96% with minimal manual effort. Furthermore, we conduct a study with 12 state-of-the-art guides consisting of 2014 rules with automatic checks and show that our tooling can implement at least 97% of them correctly. We have thus significantly reduced the effort of securing systems based on existing security-configuration guides.

Wed 23 Sep
Times are displayed in time zone: (UTC) Coordinated Universal Time change

09:10 - 10:10: Configuration Management (1)Research Papers at Koala
Chair(s): Carmine VassalloUniversity of Zurich, Switzerland
09:10 - 09:30
Talk
Research Papers
Patrick StöckleTechnical University of Munich, Bernd GrobauerSiemens AG, Alexander PretschnerTechnical University of Munich
DOI
09:30 - 09:50
Talk
Research Papers
Stefan MühlbauerLeipzig University, Sven ApelSaarland University, Germany, Norbert SiegmundLeipzig University
DOI Pre-print
09:50 - 10:10
Talk
Research Papers
Haochen HeNational University of Defense Technology, Zhouyang JiaNational University of Defense Technology, Shanshan LiNational University of Defense Technology, China, Erci XuNational University of Defense Technology, Tingting YuUniversity of Kentucky, Yue YuCollege of Computer, National University of Defense Technology, Changsha 410073, China, Ji WangNational University of Defense Technology, Xiangke LiaoNational University of Defense Technology, China
DOI Pre-print