Best Mitre D3FEND advice to harden Windows networks
source link: https://www.csoonline.com/article/3625228/best-mitre-d3fend-advice-to-harden-windows-networks.html
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Often it just takes a defensive mindset to come up with effective options to protect and defend against today’s threats. The Mitre organization has recently released its D3FEND matrix that documents ways to harden the network, detect and isolate threats, and deceive and evict attackers from your network. I’m focusing on D3FEND guidance Windows admins can follow to harden their networks.
Application hardening
Mitre D3FEND recommends these processes to harden applications:
- Dead code elimination
- Exception handler pointer validation
- Process segment execution prevention
- Segment address offset randomization
- Stack frame canary verification
- Pointer authentication
While you might have influence on software choices, you might not have the ability to influence the actual software coding. As a CSO for a larger organization, you can discuss these concepts with your software vendors and query them about their security processes. You can hire consultants to review your internal code projects to ensure that your applications are designed with security in mind.
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK