I am currently studying at University of Advancing Technology in the Network Security Program, and currently I am learning about frameworks and security. I was reading an article that was talking about PDCA and found the "Vendor Provides" element interesting in the Implementation Frameworks section under the Security Knowledge in Practice (SKiP) portion of organizing framework. I know there are many good things about the SKiP implementation such as ease of use, its broad range to fulfill customer needs and requirements but there are also a lot of open holes in this implementation. I can see that like on most our smart phones, which come heavy with vendor apps, there are a lot of unneeded applications. This can make a system insecure, and can also leave a system open to attacks. Another thing I noticed is the openness of file access in files and directories. With everything being so easy for the end user it seems that "ease of use" element comes at the price of security. Other than the "Vendor Element" the SKiP framework seems like an ideal choice for most businesses. So as a student who is learning about frameworks I want to know if anyone has utilized the SKiP framework, and in utilizing SKiP as a framework would you have any suggestions or advice on working with such a framework? What have you learned in working with SKiP and what would you advise from your own experiences? Thanks
- Art from UAT
Free Guide: Managing storage for virtual environments
Complete a brief survey to get a complimentary 70-page whitepaper featuring the best methods and solutions for your virtual environment, as well as hypervisor-specific management advice from TechTarget experts. Don’t miss out on this exclusive content!