System Architecture and Integration(II)

Operating system Security (OS security) is a data and information protection integrated system that aims at ensuring the availability, integrity, and confidentiality of data. In the modern day, information technology has skyrocketed leading to new and viable information security systems. However, with a similar rate, cybercrime and other forms of data confidentiality breach and identity thefts have thrived (Cameron et al. 2010). Criminals use such websites as Darkweb and sophisticated software to infiltrate information system and cause information and data vulnerability.

OS integrated security system comes to the rescue of individuals and organizations in protecting the OS from hacker intrusions, malware, viruses, worms, and other forms of threats. The OS security is an integration of all preventive control techniques used in ensuring data safety. For example, single physical computing hardware that shares I/O devices, disk, and CPU among others tend to be vulnerable to threats and attacks from multiple access points (In Vacca, 2014). The target of any hacker is to control the operating system where the key to all other access points lies.

The bank is one enterprise that is targeted by hackers either directly to its servers or via the security details of the customers. Hackers try to infiltrate the servers and Central Processing Unit of a banking organization, so that they can introduce malware that can help them take control of the banking system and credit their accounts with money (Cameron et al. 2010). On the other hand, they also hack the customer’s security systems and steal their identity and in the process withdrawing al their money (Tran & Park, 2014).

The aim of the project is to employ OS integrated security system in safeguarding data and information integrity and protection. Security provision refers to the aspect of ensuring such computer systems as software programs, disks, CPU and the memory are all protected from malware, manipulation, threats, worms, viruses, and malicious and unauthorized access. The project aims at using an integrated OS security system to promote data and information integrity and security for the banking sector.

The upgrading of the organization’s data security system will be the priority of the project by ensuring that the OS security systems are integrated in such a manner that data integrity and security for the banking sector is enhanced. Some of the vulnerabilities that lead to security breach include the user’s use of weak passwords. Secondly, poor data encryption system, such programs threats as Trojan horse, virus, logic bomb, and Trapdoor. The organization’s system is prone to such threats as worm, port scanning, and denial of service (Silberschatz, Gagne & Galvin, 2013).

In a bid to enhance the OS security system integration, some desirable practices have to be practiced by every bank staff and stakeholders. The operating system can be secured through best practices that mitigate the vulnerability of the entire information security system. When it comes to the user accounts in the bank, the number if computers connected to the organization’s server has to be limited. Only a few trusted users should be allowed to access the bank's server via computers as this would give ease in maintaining accountability (Silberschatz, Gagne & Galvin, 2013).

When it comes to account policies, strong password for both personal computers (PCs) and the server have to be made as string as possible with frequent password change schedule. The file system should be designed in such a manner that it grants read-only access permissions to discourage the hackers. The system should be set to deny access by default if it identifies unauthorized access (Tran & Park, 2014). When it comes to the bank’s network services, the level of access permissions by the users should be limited and restrictive to the general public.

Most importantly, the latest vendor patches for the OS security have to be functional and integrated into the entire system. Also, a regular maintenance schedule has to be set for an update of security patches (Tran & Park, 2014). Considering that the bank has multiple operations, there is need to implement a protection for buffer overflow using third party software. System login files have to be monitored frequently while ensuring that they are safe by restricting access permissions to them. Finally, the system resources have to be backed up on a regular basis (In Vacca, 2014).

TBD

TBD

TBD

TBD

TBD

TBD

Cameron, R., Woodberg, B., Giecco, P., Eberhard, T., & Quinn, J. (2010). Junos Security.

In Vacca, J. R. (2014). Network and system security.

Silberschatz, A., Gagne, G., & Galvin, P. B. (2013). Operating Systems: Security. Retrieved from https://www.cs.uic.edu/~jbell/CourseNotes/OperatingSystems/15_Security.html

Tran, T. A., & Park, J. Y. (2014). Development of integrated design methodology for various types of product — service systems - ScienceDirect. Retrieved from http://www.sciencedirect.com/science/article/pii/S2288430014500048