Timothy Palumbo
ABSTRACT
Lehigh University is implementing the Secunia CSI application to patch faculty/staff computers on campus. This paper will cover the patch management process from the beginning to end, including vendor identification, application testing, vendor selection, implementation, deployment, and interpreting the results. We will discuss the importance of using a patch management solution to guard against data breaches as well as how vulnerable computers are without one. This paper will focus on why we chose Secunia over other products and why patch management is an increasingly necessary solution in all sectors. With breaches occurring daily, we must work on prevention. There are countless vulnerabilities across a variety of products on University computers, including: Adobe Flash, Java, and web browsers. Users often fall victim to viruses and malware as a result of these unpatched or outdated applications. Universities deal with sensitive and valuable data that needs to be protected. Patching software can help prevent breaches and therefore secure campus assets. No matter how you do it, the importance of patch management cannot be overstated.
- Determine WSUS Capacity Requirements, Retrieved July 20, 2015, from Microsoft Corporation: https://technet.microsoft.com/en-us/library/cc708483%28v=ws.10%29.aspxGoogle Scholar
- Ninite Pro, Retrieved July 20, 2015, from Ninite: https://ninite.com/proGoogle Scholar
- Patch Configuration, Retrieved July 20, 2015, from Secunia: http://secunia.com/?action=fetch&filename=ext_feature_description_Patch_Configuration.pdfGoogle Scholar
- Patch Management and Endpoint Security, Retrieved July 20, 2015 from Dell Kace: http://software.dell.com/products/kace-k1000-systems-management-appliance/patch-management-security.aspxGoogle Scholar
- Secunia CSI 7.0 -- Technical User Guide, Retrieved July 20, 2015 from Secunia: https://secunia.com/?action=fetch&filename=Secunia_CSI7_Technical_User_Guide.pdfGoogle Scholar
Index Terms
- Patch Management: The Importance of Implementing Central Patch Management and Our Experiences Doing So
Recommendations
Security Vulnerability and Patch Management in Electric Utilities: A Data-Driven Analysis
RESEC '18: Proceedings of the First Workshop on Radical and Experiential SecurityThis paper explores a real security vulnerability and patch management dataset from an electric utility in order to shed light on characteristics of the vulnerabilities that electric utility assets have and how they are remediated in practice. ...
The critical elements of patch management
SIGUCCS '05: Proceedings of the 33rd annual ACM SIGUCCS conference on User servicesOnly a few years ago, the term "patch management" was not in the general vocabulary of even the most advanced information technology staff. Today, "patch management" is not only in the general vernacular of most IT staff, but it is also one of the more ...
Surviving Insecure IT: Effective Patch Management
The amount of time to protect enterprise systems against potential vulnerability continues to shrink. Enterprises need an effective patch management mechanism to survive the insecure IT environment. Effective patch management is a systematic and ...
Comments