Speaker
Pablo Martin Zamora
(CERN)
Description
Over 8000 Windows PCs are actively used on the CERN site for tasks ranging from controlling the accelerator facilities to processing invoices. PCs are managed through CERN's Computer Management Framework and Group Policies, with configurations deployed based on machine sets and a lot of autonomy left to the end-users. While the generic central configuration works well for the majority of the users, a specific hardened PC configuration is now provided for users who require stronger resilience against external attacks. This presentation will describe the technical choices and configurations involved and discuss the effectiveness of the hardened PC approach.
Authors
Michal Kwiatek
(CERN)
Vincent Nicolas Bippus
(CERN)
Eneko Cruz Elejalde
(Universidad de Oviedo (ES))
Pablo Martin Zamora
(CERN)
