IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection of Generic Components
_________________________________________________________________________________________
5.3 Laptop PC
As compared with a normal PC, a portable PC (laptop) requires additional IT security safeguards
because it is exposed to other threats due to its mobile nature. Examples of additional safeguards
which apply to laptop PCs are suitable safe-keeping during mobile use and use of an encryption
product.
5.4 PCs With a Non-Constant User Population
This module specifies the safeguards which must be adhered to when using a normal PC which is
routinely used by several users. Subjects covered include PC security products, password protection,
use of a virus detection program, regular backup.
5.5 PC under Windows NT
The safeguards needed for non-networked PCs which run under the Windows NT operating system
(version 3.51 or 4.0) are described in this module. Security-specific aspects of individual Windows NT
applications are only covered briefly.
5.6 PC with Windows 95
Non-networked PCs which run under Windows 95 can be configured as stand-alone systems or as
clients in a network for one or more users. The necessary safeguards for both operating variations are
described in this module.
5.99 Stand-Alone IT Systems Generally
For IT systems not yet considered in the IT Baseline Protection Manual the generic module 5.99 can
be used.
6.1 Server-Supported Network
The necessary safeguards that must be taken into account when operating a server-supported network
are explained in this module. These considerations are independent of the operating system used on
the servers and clients. Safeguards pertaining to operating systems can be found in the specific
modules of Chapters 5 and 6.
6.2 UNIX Server
IT systems which, as servers, provide services on a network and run under the UNIX or Linux
operating system are considered here. Safeguards directed at providing IT security in this IT
environment are described here. These safeguards are UNIX-specific and must be supplemented by
Section 6.1.
6.3 Peer-to-Peer Network
This section describes how a peer-to-peer network can be securely operated for IT baseline protection.
Topics include the design of such a network from the point of view of security, administrative options
and functional limitations. The operating systems Windows for Workgroups 3.11, Windows 95 and
Windows NT apply here.
6.4 Windows NT Network
The design and operation of a secure Windows NT network is described in this module. Windows NTspecific
safeguards are predominantly dealt with here. They must be supplemented by the general
safeguards contained in Section 6.1.
_________________________________________________________________________________________
IT-Baseline Protection Manual: Otober 2000