User:MichaelFelt/sandbox

AIX Security Expert
AIX Security Expert is part of the AIX core. This component was introduced with AIX 5.3 TL4 in August 2006. (cit. coming).

Goals
The key goal of AIX Security Expert was to provide three levels of hardening - available as a single command. These levels: low, medium and high were based on the Common Criteria (CC) recommendations (of 2005). The basic goal of medium was to meet or exceed 80% of the CC requirements while the basic goal of low to ensure that a minimal standard of hardening was provided. The goal of high was to meet the highest level of standard hardening without "breaking" normal usage.

Modifications
Over the years there have been many modifications - the first being the ability to create custom configuration files (XML) - with the standard low, medium, or high settings being used as a starting point. This was done using the discontinued websm systems management interface. The next addition was support to harden AIX following recommendations of the SOX-COBIT legislation.