|
May 11 2002
The purpose of Project †ru§t §ea‡ is to find a common ground in network security by implementing processes to grade levels of security on a single site or server.
This will include sophisticated security and data collections obtained by security experts and a group of exclusive ethical hacker network.
The seal grades will have ranking that will ultimately achieve the †ru§t §ea‡ grade and grant of the †ru§t §ea‡ which will be globally known as maximum security in place.
The grading process would be carefully laid out and it will undertake several phases. These phases will include a detailed initial reporting on all vulnerabilities. The vulnerabilities will be extracted in real time while the †ru§t §ea‡ hacker team attacks with offself,self built, all-out remote monitoring programs. The results are complied and will compare to proprietary†ru§t §ea‡ evolving standards and a grade will be granted accordingly.
The client than should work with the report to strengthen the security fundamentals of their network and ultimately achieve the †ru§t §ea‡ (SEAL). The †ru§t §ea‡ team will attack and report, while the client will enhance the network security through it's building blocks to obtain the level of security, directed by †ru§t §ea‡ standards
This will be a dynamic and evolving process as vulnerabilities will be challenged by the †ru§t §ea‡ pannel.
If and when the †ru§t §ea‡ was granted, the site than will indefinitely enter the maintenance phase which the client will be responsible to follow new reports and deploy the necessary undertaking in a time-frame provided by the panel. Maintaining of a security state will also apply to any grade.
The initial panel. is selected by †ru§t §ea‡ Enterprise and should consist of world wide experts and Interested hackers. This process will change to clients voting and electing 50 percent of the workforce.
Dialogue to be continued
|
