Security Update Shawn Wells Chief Security Technologist, North America Public Sector shawn@redhat.com || 443-534-0130 UNCLASSIFIED
Slide 1
Slide 2
45 minute security update UNCLASSIFIED
Slide 3
Voting Time! Live Demo Options 1. RHEL7 Common Criteria announced. What exactly was certified? 2. Lets make a STIGd RHEL7 container image 3. Provision RHEL directly into FBI CJIS baseline 4. Tailor DISA STIG content to disable SELinux checks with a GUI tool 5. Generate C&A policy documentation in realtime UNCLASSIFIED
Slide 4
UNCLASSIFIED
Slide 5
UNCLASSIFIED
Slide 6
Beta Programs + Customer Advisory Panels UNCLASSIFIED
Slide 7
FIPS 140-2 UNCLASSIFIED
Slide 8
Common Criteria UNCLASSIFIED
Slide 9
26-OCT: RHEL7 Common Criteria Complete! • RHEL 7.1+ • EAL4+ against NIAP Operating System Protection Profile 2.0 • Includes container framework - Namespaces - Control groups - System call filtering - Export/import of security attributes • RELRO Press Release: http://red.ht/2ePN1ya & Security Target: http://bit.ly/2eV10RV UNCLASSIFIED
Slide 10
Common Criteria != Compliance Policy UNCLASSIFIED
Slide 11
STIG != Compliance Policy UNCLASSIFIED
