5.5 Non-networked Windows NT computer

Description

Single, non-networked PCs with a hard disk (as described in chapter 5.1) and with the operating system Windows NT (version 3.51 or 4.0) are considered. The PCs can be equipped with a floppy disk drive. Security-specific aspects of single Windows NT applications are only covered briefly.

Threat Scenario

The following typical threats are assumed as regards IT baseline protection of single PCs with the operating system Windows NT.

Force Majeure:

• T 1.1 Loss of personnel
• T 1.2 Failure of the IT system
• T 1.4 Fire
• T 1.5 Water
• T 1.8 Dust, soiling

Organisational Shortcomings:

• T 2.7 Unauthorised use of rights
• T 2.9 Poor adjustment to changes in the use of IT
• T 2.31 Inadequate protection of the Windows NT system

Human Failure:

• T 3.2 Negligent destroying of equipment or data
• T 3.3 Non-compliance with IT security measures
• T 3.6 Hazards posed by cleaning staff or outside staff
• T 3.8 Improper use of the IT system
• T 3.9 Improper IT system administration

Technical Failure:

• T 4.1 Disruption of power supply
• T 4.7 Defective data media
• T 4.8 Discovery of software vulnerabilities
• T 4.23 Automatic CD-ROM-recognition

Deliberate Acts:

• T 5.1 Manipulation/destruction of IT equipment or accessories
• T 5.2 Manipulation of data or software
• T 5.4 Theft
• T 5.9 Unauthorised use of IT systems
• T 5.18 Systematic trying-out of passwords
• T 5.21 Trojan Horses
• T 5.23 Computer viruses
• T 5.43 Macro viruses
• T 5.52 Misuse of administrator rights in Windows NT systems
• T 5.79 Unauthorised acquisition of administrator rights under Windows NT

Recommended Countermeasures (S)

For the implementation of IT baseline protection, selection of the required packages of safeguards ("modules") as described in chapters 2.3 and 2.4, is recommended.

Safeguards listed as "optional" in the following lists go at least partly beyond baseline protection, or refer to special environments. The safeguards are to be implemented if these conditions are fulfilled, especially if many users are working with the same system and need to be protected from one another, or, if the control of critical security functions does not lie with the user himself but must be administrated centrally.

In the following the safeguard group for "Non-networked Windows NT computer" is presented.

Infrastructure:

• S 1.29 (3) Adequate siting of an IT system (optional)

Organisation:

• S 2.3 (2) Data media control
• S 2.4 (2) Maintenance/repair regulations
• S 2.9 (2) Ban on using non-approved software
• S 2.10 (2) Survey of the software held
• S 2.13 (2) Correct disposal of resources requiring protection
• S 2.22 (2) Escrow of passwords
• S 2.23 (3) Issue of PC Use guidelines (optional)
• S 2.24 (3) Introduction of a PC Checklist booklet (optional)
• S 2.25 (1) Documentation on the system configuration
• S 2.26 (1) Designation of an Administrator and his deputy (optional)
• S 2.30 (2) Provisions governing the configuration of users and user groups (optional)
• S 2.31 (2) Documentation on authorised users and on rights profiles (optional)
• S 2.32 (2) Establishment of a restricted user environment (optional)
• S 2.34 (2) Documentation on changes made to an existing IT system (optional)
• S 2.35 (2) Obtaining information on security weaknesses of the system

Personnel:

• S 3.4 (1) Training before actual use of a program
• S 3.5 (1) Education on IT security measures
• S 3.10 (1) Selection of a trustworthy administrator and a substitute (optional)
• S 3.11 (1) Training of maintenance and administration staff (optional)

Hardware/Software:

• S 4.1 (1) Password protection for IT systems
• S 4.2 (1) Screen lock
• S 4.3 (2) Periodic runs of a virus detection program
• S 4.4 (3) Locking of floppy-disk drive slots (optional)
• S 4.15 (2) Secure log-in
• S 4.17 (2) Blocking and erasure of unneeded accounts and terminals
• S 4.30 (2) Utilisation of the security functions offered in application programs (optional)
• S 4.44 (2) Checking of incoming data for macro viruses
• S 4.48 (1) Password protection under Windows NT
• S 4.49 (1) Safeguarding the boot-up procedure for a Windows NT system
• S 4.50 (2) Structured system administration under Windows NT (optional)
• S 4.51 (3) User profiles to restrict the usage possibilities of Windows NT (optional)
• S 4.52 (2) Protection of devices under Windows NT
• S 4.53 (2) Restrictive allocation of access rights to files and directories underWindows NT
• S 4.54 (2) Logging under Windows NT (optional)
• S 4.55 (2) Secure installation of Windows NT
• S 4.56 (3) Secure deletion under Windows NT and Windows 95
• S 4.57 (2) Deactivating automatic CD-ROM recognition
• S 4.75 (1) Protection of the registry under Windows NT
• S 4.76 (3) Secure system version of Windows NT
• S 4.77 (1) Protection of administrator accounts under Windows NT
• S 4.84 (1) Use of BIOS security mechanisms
• S 4.93 (1) Regular integrity checking

Contingency Planning:

• S 6.20 (2) Appropriate storage of backup data media
• S 6.21 (3) Backup copy of the software used
• S 6.22 (2) Sporadic checks of the restorability of backups
• S 6.23 (2) Procedure in case of computer virus infection
• S 6.27 (3) Backup of the CMOS RAM
• S 6.32 (1) Regular data backup
• S 6.42 (1) Creating start-up disks for Windows NT
• S 6.44 (1) Data back-up under Windows NT

© Copyright by Bundesamt für Sicherheit in der Informationstechnik 2000

Last Update on 6 April 2000