hello and welcome to P C Security Intermediate course.
And this. Listen, I'm will be talking about goals, goal or goals off pieces, security. So accept what are the goals of PC Security and going to touch some of those goals in a bit more detail. So I'm going to talk about protecting the
PC below the US, India s and above the OS.
the goal of peace and security is very simple and can be stated months sentence. It is establishing trust into PC as a component of I t infrastructure. So if you have a PC, we want to make sure
that it's not compromised and that it's doing only those things it's supposed to do and not something without our knowledge.
This goes for personal PC's as well as for business PC's used in the company.
As a matter of fact, in business pieces much more, it's much more important because PC's can do a lot of damage toe some things that are outside the PC itself.
Well, if you have your own PC and it's compromised, it will do damage to whatever you keep on your PC. But if you're in a networked in the company. It can do more damage to your servers, storage and
the function of company itself.
what is protecting the PC below the OS So it is making for establishing trust in hardware? So means making sure that your hardware
is doing what just the things it's supposed to do.
And when we talk about hardware, you're not actually talking about the physical mother board or trip set or your
memory or processor. Now we want to make sure that
piece of code, which is called firmer or bios, that binds these things together and make them work in the way they're supposed to it to deliver the functionality of harder to the operating system
So we have to protect the firmer of the components some of those components that can be used in the with malicious intent. And again we have to protect bias. So we have to make sure that bias is doing
what manufacturer the PC intended and nothing else.
I will elaborate on these things in the future, but the reason why we have to protect bios is because it's ah, it's ah,
link between operating system and harder and if that link is compromised,
Then you have to protect PC in the OS, and the first thing you need to do in order to achieve protection off the OS and inside the OS is to protect the way the users authenticating on. Otherwise,
it means to make sure that whoever is logged in on the PC is actually that person, and not some but the some kind of imposter.
So it means establishing trust in the US in terms off,
uh, doing all the things that are supposed to do in order to make us safe and then hardening the OS, meaning that you have to make sure that all the security updates off the operating system are installed immediately after they're released.
This is very important. People sometimes avoid these because they're afraid that these updates my endanger the functionality of some customized after they're using. Under that us.
And there have been documented cases in the pies that some updates have made some programs not working anymore. And because these programs are the essential for the functioning of the company in which the pieces air used, administrators sometimes
make up some kind of delay in order to test these things. Okay, this is understandable. But as soon as you're OK, you have to make sure that they are there. They're so that all the security falls that have been documented for the OS are removed.
And then you have to protect yours itself for malware because there is malbert that will attack the always changed things in the operating system.
uh, simply do some malicious things on the PC
and finally, the third parties to protect the PC above the OS. So essentially to establish trust in programs or applications that run on the PC
and to create secure yet functional
application Where what does it mean? It means that
fully locked the PC, some programs won't work. For example, if people need to use
browser based applications to do their daily work, can you looks imports, those applications, my network or my network properly and then you have a problem. So it's a balance between just locking everything
or allowing everything because allowing everything means that somebody can enter your
PC easily and do whatever they want with it.
And of course, you have to maintain the security in time. So you have to make sure that if you have imposed some rules for security of a PC
and you have your giving this PC to an employee, you have to make sure first that the template doesn't change these settings.
Um, in order to make employee's life easier.
That's one thing. And the other thing is, if something happens with the PC, for example, breaks so it goes to be repaired. The service
partner replaces the mother board getting back, But then the settings are recent to default. So you have to make sure that in these went,
uh, settings, Aaron implemented as well.
So this is all about goals off,
uh, security of a PC. And then I will talk in details about some of how to implement these things in free lessons to come
at the end of this lesson. Let's do a short learning check. So ask yourself what is not to the goal of PC security,
and the possible answers are managing installed applications on the PC, protecting bias or protecting user authentication.
Correct Answer is managing installed applications on a PC, so in order to protect the PC, you have to protect bias, you have to protect user authentication. But managing installed applications on a PC is not essentially security thing.
It's something that you do to make sure that no unauthorized applications are installed on a PC, but not from security reasons. It can be just a licensing issue
you know, that people are using the latest version off application. So in these cases, managing installed application on PC is important. But it's not the same species security issue
at the nd this lesson in this video you have learned about the goals of PC security, and in next lesson, I will be talking about this whole section importance of PC security and do a recap of the whole module.