A presentation at FBI Mini Summit in
October 2016 in
Clarksburg, WV, USA by
Security Update Shawn Wells Chief Security Technologist, North America Public Sector email@example.com || 443-534-0130 UNCLASSIFIED
45 minute security update
Voting Time! Live Demo Options 1. RHEL7 Common Criteria announced. What exactly was certified? 2. Lets make a STIGd RHEL7 container image 3. Provision RHEL directly into FBI CJIS baseline 4. Tailor DISA STIG content to disable SELinux checks with a GUI tool 5. Generate C&A policy documentation in realtime
Beta Programs + Customer Advisory Panels
26-OCT: RHEL7 Common Criteria Complete! • RHEL 7.1+ • EAL4+ against NIAP Operating System Protection Profile 2.0 • Includes container framework - Namespaces - Control groups - System call filtering - Export/import of security attributes • RELRO Press Release: http://red.ht/2ePN1ya & Security Target: http://bit.ly/2eV10RV UNCLASSIFIED
Common Criteria != Compliance Policy
STIG != Compliance Policy
View Live Demos @ FBI Mini Summit.
Slides used at the 27-OCT-2016 FBI Mini Summit.