Why do I need this model? Because Active Directory is exposed, and don’t misunderstand this. It is exposed to persons, applications, services and networks, so there is a real risk to get it compromised. There are hundreds of details to take into account to objectively check the risk, but the risk is there, and the best thing to do is […]
Group: Security Concern
Security topics, questions, answers, discussions and references around the model, and the security improvements that can be achieved.
Is there an alternative to these models?
Not really. The model focuses on many “very old, but STILL valid” concepts, which help us to protect our directory. For example, having unpatched systems will render into vulnerable systems, and the only solution is to patch them, reducing the risk thus increasing security. But when a more advanced thread is ahead, the solutions get more complex. The main concept […]