Multilevel Security Features
I've put in a full night and half of the day so far towards setting up and configuring some of the initial software on the linux servers that will be needed locally and for remote VM's and containers. You know how I mentioned that steep learning curve... yep. Still though, some good progress made in terms of applying the things I've been researching recently.
Along with the security policy framework (see right), I've started testing with ClamAV for anti-virus and malware protection and Suricata for intrusion detection and prevention (once I set up the local policies for it). I also set up Wireshark and found resources on how to get remote monitoring and logging of network traffic from the remote deployments. In addition to the custom firewall rules already established, I'll also be using a WAF like NAXSI within the containers, ZenArmor at the VM level and other third-party services too.
There's still plenty of research to do on lots of other things, but more on that later. Hopefully all of these, when added to the MOOVPAD apps' and webAPI's built-in and custom security features, and what's still to be built into the RServer and MServer for automation, to add user protections on top of the security policy framework, will make MOOVPAD as secure as humanly possible. And I still have a few things up my sleeves for later on that I can't mention yet, so sshhh lol 🙂
Stay awesome,
EMH
HOW MOOVPAD IS BEING BUILT
For the overview of how MOOVPAD apps are being developed, the reasoning behind particular decisions during development, policies, and more in relation to all the technical things, please see the link to the left.
This will be an ongoing work in progress, and will always be linked to the bottom of each upcoming Blog post.