Mimicking the DEFCON levels, Microsoft divulged the “SECCON Framework” i.e. a generic Windows 10 Security Configuration Framework. This framework aids inwards standardizing the basic safety settings that should hold out applied for Windows 10 systems. It consists of a serial of guides which aid inwards securing a make of Windows 10 configurations inwards various environments.
Windows 10 Security Configuration Framework or SECCON Framework
Chris Jackson, Principal Program Manager at Microsoft said,
We sat downwardly together with asked ourselves this question: if nosotros didn’t know anything at all nigh your environment, what safety policies together with safety controls would nosotros propose you lot implement first?
The consequence was what Microsoft has named – The SECCON framework. Opening amongst an “Administrator workstation” at flat 1 edifice upwards to the “Enterprise security” at flat 5, the Windows 10 safety configuration framework is Microsoft’s seek to simplify together with standardize the safety scheme on Windows 10. This safety configuration isn’t a universal solution, yet a simplified configuration which could hold out used past times enterprise-level users to consider many mutual device configurations together with scenarios.
The v levels inwards Windows 10 safety configuration framework
Windows 10 safety configuration framework for enterprises are defined based on “Common Device Scenarios” inwards 5 dissimilar levels past times Microsoft: Enterprise Security, Enterprise High Security, Enterprise VIP Security, DevOps Workstation, together with Administrator Workstation; Levels 5 – 1 respectively.
Here, the lower numbers request a higher score of safety hardening. Following are the 5 levels inwards Windows 10 Security Configuration Framework.
- Level 5: Enterprise Security
- Level 4: Enterprise High Security
- Level 3: Enterprise VIP Security
- Level 2: DevOps workstation
- Level 1: Administrator Workstation
Let’s briefly explicate each of these safety levels:
1] Level 5 – Enterprise Security:
Enterprise safety or Level 5 is the minimum-security configuration for an firm device. This safety configuration flat contains recommendations that are mostly straightforward together with designed to hold out deployed inside thirty days. Read to a greater extent than nigh this flat inwards the Microsoft Docs.
2] Level four – Enterprise High Security:
This configuration is recommended for devices where users demand to access confidential/sensitive information. Few of these controls tin comport upon app compatibility, thus oftentimes exceed through an audit-configure-enforce workflow. According to Microsoft, recommendations for Level ii are accessible to the administrators together with the configurations tin hold out deployed inside xc days. Read to a greater extent than nigh this flat inwards the Microsoft Docs.
3] Level three – Enterprise VIP Security:
Aimed specifically at devices run past times organizations having a larger or to a greater extent than sophisticated safety team, or for specific users/groups who are at solely high risk. An organisation who is prone to larn targeted past times well-funded together with sophisticated rivals should pursue this configuration. Deploying this laid of configurations may hold out complex together with tin oftentimes accept to a greater extent than than xc days. Read to a greater extent than nigh this flat inwards the Microsoft Docs.
4] Level ii – DevOps workstation:
Microsoft recommends this configuration to the developers together with testers, who are an attractive target since they are on systems belongings high-value information or running critical employment concern functions. This flat is yet nether development, together with Microsoft volition brand an annunciation equally before long equally it’s ready. Read to a greater extent than nigh this flat inwards the Microsoft Docs.
5] Level 1 – Administrator Workstation:
Administrator Workstation or Level 1 inwards Windows 10 Security Configuration Framework (SEECON) is designed for administrators who “face the highest risk, through information theft, information alteration, or service disruption.” Like Level 4, this flat is likewise nether development, together with Microsoft volition brand an annunciation equally before long equally it is ready. Read to a greater extent than nigh this flat inwards the Microsoft Docs.
Security Control Classification
Owing to the gamble levels associated amongst each device type, the Windows 10 safety configuration framework is to a greater extent than restrictive inwards the lower levels. Recommendations for each flat are alienated into three dissimilar categories:
- Policies: These propose configuring surely safety policies on devices similar applying a minimum password length, password complexity requirements, deactivating invitee accounts, surely firewall rules, or limiting surely rights to specific user groups.
- Controls: This grouping recommends the utilisation of surely specific safety features or applications. For example, Level 5 controls advise to configure surely Windows Defender features similar Application Guard or Credential Guard together with brand Microsoft Edge the default browser.
- Behaviors: This grouping defines safety processes similar installing safety updates inwards specific duration afterward free or confiscating equally many users equally possible from the administrator group.
Microsoft says, this is a draft version together with they are gathering feedback from organizations who are looking to implement a device safety tightening program. You tin read the draft from here.