Please use this identifier to cite or link to this item:
Title: Cumplimiento del Esquema Nacional de Seguridad en servidores CentOS 7 con OpenSCAP
Author: Fandiño Calvo, José Carlos
Director: García Font, Víctor
Tutor: Canto Rodrigo, Pau del
Keywords: information security
computer security
security policy
secure configuration
Issue Date: 28-Dec-2019
Publisher: Universitat Oberta de Catalunya (UOC)
Abstract: SCAP protocol provides automation of security procedures, vulnerability assessment, automatic hardening and configuration of systems and other related security procedures. For this reason, is very appropriate to implement security policies. OpenSCAP project provides set of open and free inter-operable tools for SCAP content. Centro Criptológico Nacional (CCN) is responsible of the Information Security policies for the government and public sector in Spain. CCN-STIC series contains a set of security policies and related procedures. CCN-STIC-619 contains official hardening instructions and security policy for client systems based on CentOS7. This publication implements the recommendations of CCN-STIC-619 using SCAP content (XCCDF rules and OVAL checks), providing automatic capabilities to check and configure target systems. Also, a set of remediation scripts is developed, to modify the system configuration to conform with the rules when required. The implementation is verified checking a clean install of CentOS7. Remediation scripts are applied to adapt the target system to the requirements.
Language: Spanish
Appears in Collections:Bachelor thesis, research projects, etc.

Files in This Item:
File Description SizeFormat 
jfandinocTFM1219memoria.pdfMemoria del TFM2.05 MBAdobe PDFView/Open
CentOS7.zip15.49 kBUnknownView/Open

This item is licensed under a Creative Commons License Creative Commons