CISO's Guide to Securing SharePoint - owasp
15.04.2014 Views
Share Embed Flag

CISO's Guide to Securing SharePoint - owasp

CISO's Guide to Securing SharePoint - owasp

CISO's Guide to Securing SharePoint - owasp

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
owasp.org

You also want an ePaper? Increase the reach of your titles

YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.

START NOW

#5: Respond <strong>to</strong> Suspicious<br />

Activity<br />

• Summary:<br />

– <strong>SharePoint</strong> is used as a place <strong>to</strong> share information<br />

– Access is granted <strong>to</strong> internal and external users<br />

– Organizations need <strong>to</strong> balance trust and openness with the ability <strong>to</strong> detect and alert<br />

on suspicious activity<br />

• Why challenging?<br />

– No au<strong>to</strong>mated analysis of access activity<br />

• What is Required?<br />

– Policy framework <strong>to</strong> identify suspicious behavior<br />

• Example: In the Wikileaks scenario, Manning used an au<strong>to</strong>mated process <strong>to</strong> crawl the<br />

<strong>SharePoint</strong> system and <strong>to</strong> siphon out available files. A simple policy on occurrences would<br />

have alerted if a certain number of files were <strong>to</strong>uched in a short timeframe.

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!