Cybersecurity Standards in the Context of Operating System

What is it about?

This research work provides a comprehensive analysis of various cybersecurity standards i.e. NIST, FIPS, ISO 27001-2, etc. An explicit comparison between cybersecurity frameworks, tools, and software that are available for OS compliance testing is provided. Moreover, based on the cybersecurity standards under consideration, a comprehensive set of minimum requirements is proposed for OS hardening.

Featured Image

Why is it important?

For the protection of infrastructure and information systems, several guidelines have been provided by well-known organizations in the form of cybersecurity standards. The selection of security standards and extracting requirements from those standards in an organizational context is a tedious task. To address such challenges, we presented a comprehensive set of minimum requirements extracted from numerous cybersecurity standards that can be followed by an enterprise to ensure its digital infrastructure security.