Securing a WindowsInfrastructure using WindowsServer 2012 & Windows 8 Built-infeaturesMarcus Murray & Hasain AlshakartiTru...
Marcus Murray   Hasain Alshakarti
So.. What are the new security features in Windows8 & Server 2012?
Secure boot/Measured boot/Early Malware detection                                                Client                   ...
Bitlocker enhancement                                          This feature requires the client hardware to have a DHCP   ...
Virtual smartcard                         Client                          User                    Web Srv
Claims                  Client                   User         Client          User                  Web Srv
Dynamic access control
Data classification  Secret stuff.doc                   Project X.doc     Public statement.doc  Required Clearance:       ...
Dnssec                  Client                   User         Client          User                  Web Srv
Unified Remote access                                 Client                                  User                        ...
Powershell remoting                               Client                                User                      Client  ...
FGPP Ui
Improved Security Audit • Advanced Security Audit                     Client   Policy Step-by-Step Guide                  ...
Marcus Murray   Hasain Alshakarti
Thank you for listening! 
Securing a Windows Infrastructure using Windows Server 2012 & Windows 8 Built-in features
Upcoming SlideShare
Loading in …5
×

Securing a Windows Infrastructure using Windows Server 2012 & Windows 8 Built-in features

2,515 views

Published on

More info on http://techdays.be.

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
2,515
On SlideShare
0
From Embeds
0
Number of Embeds
155
Actions
Shares
0
Downloads
55
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Securing a Windows Infrastructure using Windows Server 2012 & Windows 8 Built-in features

  1. 1. Securing a WindowsInfrastructure using WindowsServer 2012 & Windows 8 Built-infeaturesMarcus Murray & Hasain AlshakartiTruesec Security Team, MVP-Enterprise Securityx2
  2. 2. Marcus Murray Hasain Alshakarti
  3. 3. So.. What are the new security features in Windows8 & Server 2012?
  4. 4. Secure boot/Measured boot/Early Malware detection Client User Web rv
  5. 5. Bitlocker enhancement This feature requires the client hardware to have a DHCP driver implemented in its UEFI firmware. • Enhancements: Client – Bitlocker Network unlock – New protectors User •For NKP, the win8 client should be using UEFI 2.3.1 BitLocker Network Unlock has the following software and hardware requirements that must be met before you can use it: Client computer requirements •A DHCP driver that is implemented in the UEFI firmware •Trusted Platform Module (TPM) 1.2 or TPM 2.0 •BitLocker enabled on the operating system volume Windows Deployment Services server requirements •BitLocker Network Unlock feature installed (only available in windows server 2012) •2,048-bit RSA public/private key pair X.509 certificate present in FVENKP certificate store Domain controller requirements •Copy of the BitLocker Network Unlock Certificate from the Windows Deployment Services server on the domain controller to set Group Policy settings for Network Unlock. (2012 server
  6. 6. Virtual smartcard Client User Web Srv
  7. 7. Claims Client User Client User Web Srv
  8. 8. Dynamic access control
  9. 9. Data classification Secret stuff.doc Project X.doc Public statement.doc Required Clearance: Required Clearance: Required Clearance: Restricted Internal Use Public Confidentiality: Confidentiality: Confidentiality: High Moderate Low http://www.microsoft.com/en- us/download/details.aspx?id=27123
  10. 10. Dnssec Client User Client User Web Srv
  11. 11. Unified Remote access Client User Client User Web Srv
  12. 12. Powershell remoting Client User Client User Web Srv
  13. 13. FGPP Ui
  14. 14. Improved Security Audit • Advanced Security Audit Client Policy Step-by-Step Guide User <http://technet.microsoft.com/en- Client us/library/dd408940(v=ws.10).aspx> User Web Srv
  15. 15. Marcus Murray Hasain Alshakarti
  16. 16. Thank you for listening! 

×