| Day
1 |
Overview/Architecture |
Introduction to the basics of risk analysis and to
Apple's security architecture. |
| |
Securing
the Local System |
Using the NSA Security Document to refine the security settings
in Mac OS X for local systems. |
| |
Data
Confidentiality |
Keeping data confidential on local drives through the use of FileVault,
file system permissions, and encrypted disk images. |
| |
Mobility
Security Issues |
Wireless security for Bluetooth and 802.11, and physical security
issues specific to mobile devices. |
| Day
2 |
Secure
Network Connections |
Comparing commonly used secure client protocols. Creating ssh tunnels,
and configure VPN clients. |
| |
Secure
Authentication |
Secure local authentication using different shadow hashes, smart
cards, and biometrics. Secure network authentication using certificates
and Open Directory security. |
| |
Secure Network Configuration |
Configuring Mac OS X Server for NAT, port forwarding, firewall,
and VPN server. |
| Day
3 |
Mail Security |
Security options in Mail.app, as well as configuring certificates
and real-time blacklists on Mac OS X server, and Clam/AV for mail-borne
virus detection. |
| |
Web Security |
Security options in Safari, as well as Apache web server security
issues. Covers web server-specific file system security considerations,
PHP vulnerabilities, and logging. |
| |
Maintenance, Intrusion Detection, and Auditing |
Apple certification compliance with various agencies, Common Criteria
auditing tools, Apple's security update process. Analyzing Viruses,
Macro Viruses, Trojans, and Worms, and exploring potential risks
involved on Mac OS X. |
