1 Faronics DeepFreeze Presenter: Zoltan Karaszi zkaraszi(at)kent.edu Design of Secure Operating Systems.

Slides:



Advertisements
Similar presentations
Working with Disks and Devices
Advertisements

Windows XP Tutorial Securing Windows. Introduction This presentation will guide you through basic security principles for Windows XP.
VMWare Workstation Installation. Starting Vmware Workstation Go to the start menu and start the VMware Workstation program. *Note: The following instructions.
Windows Deployment Services WDS for Large Scale Enterprises and Small IT Shops Presented By: Ryan Drown Systems Administrator for Krannert.
Imaging Software: Norton Ghost Presented by: Paul Tsan Carlos Vasquez Steven Sanchez.
Windows 8: Windows To Go Overview Zvezdan PavkovicTanya Koval Senior ConsultantArchitect WCL333.
Understand Virtualized Clients Windows Operating System Fundamentals LESSON 2.4.
Symantec AntiVirus Update Mark Reynolds Manager of Support Services Technology Support Services Michael Satut Manager of Distributed Support Services Technology.
Week:#14 Windows Recovery
Faronic’s DeepFreeze. What is it? DeepFreeze is an application that “freezes” the hard drive of a system. Once a system is frozen, any change to data.
Cambodia-India Entrepreneurship Development Centre - : :.... :-:-
Maintaining and Updating Windows Server 2008
Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software.
Introducing Quick Heal Endpoint Security 5.3. “Quick Heal Endpoint Security 5.3 is designed to provide simple, intuitive centralized management and control.
Installing software on personal computer
Chapter 8 Operating Systems and Utility Programs By: James Granahan.
Kaspersky Open Space Security: Release 2 World-class security solution for your business.
Norman Endpoint Protection Advanced security made easy.
Module 16: Software Maintenance Using Windows Server Update Services.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 14: Problem Recovery.
Chapter 1 Computer History, Fundamentals, and Operating Systems.
Using Virtualization in the Classroom. Using Virtualization in the Classroom Session Objectives Define virtualization Compare major virtualization programs.
Lesson 3 Introduction to Networking Concepts Lesson 3.
Ch 11 Managing System Reliability and Availability 1.
© Paradigm Publishing Inc. 4-1 Chapter 4 System Software.
1 Chap 10 Malicious Software. 2 Viruses and ”Malicious Programs ” Computer “Viruses” and related programs have the ability to replicate themselves on.
Administering Windows 7 Lesson 11. Objectives Troubleshoot Windows 7 Use remote access technologies Troubleshoot installation and startup issues Understand.
Configuring the MagicInfo Pro Display
Hands-On Microsoft Windows Server 2008
Lesson 6 Operating Systems and Software
Introducing Quick Heal Endpoint Security 5.2. “Quick Heal Endpoint Security 5.2 is designed to provide simple, intuitive centralized management and control.
Chapter 7 Microsoft Windows XP. Windows XP Versions XP Home XP Home XP Professional XP Professional XP Professional 64-Bit XP Professional 64-Bit XP Media.
Component 4: Introduction to Information and Computer Science Unit 4: Application and System Software 1 Health IT Workforce Curriculum Version 1.0/Fall.
Tutorial 11 Installing, Updating, and Configuring Software
Chapter 4 System Software.
Deep Freeze 6.5 Overview. Introduction to Deep Freeze Sales Engineer Bob Carpenter.
Chapter SIx Maintaining a Computer Part I: Configuring, Updating, and Upgrading the OS.
Operating Systems  A collection of programs that  Coordinates computer usage among users  Manages computer resources  Handle Common Tasks.
Microsoft Active Directory(AD) A presentation by Robert, Jasmine, Val and Scott IMT546 December 11, 2004.
Chapter Fourteen Windows XP Professional Fault Tolerance.
Cap 333 Network Administration. Solution Rules  Your solution must be typed by computer. Otherwise, it will not be accepted.  If the question is a project.
Using Virtualization in the Classroom. Using Virtualization in the Classroom Session Objectives Define virtualization Compare major virtualization programs.
MANAGEMENT ANTIMALWARE PLATFORM Microsoft Malware Protection Center Dynamic Signature Svc Available only in Windows 8 Endpoint Protection Management.
User Manager Pro Suite Taking Control of Your Systems Joe Vachon Sales Engineer November 8, 2007.
Module 7: Fundamentals of Administering Windows Server 2008.
Step By Step Windows Server 2003 Installation Guide Step By Step Windows Server 2003 Installation Guide.
CHAPTER 14 Viruses, Trojan Horses and Worms. INTRODUCTION Viruses, Trojan Horses and worm are malicious programs that can cause damage to information.
Chapter Nine NetWare-Based Networking. Introduction to NetWare In 1983, Novell introduced its NetWare network operating system Versions 3.1 and 3.1—collectively.
C HAPTER 2 Introduction to Windows XP Professional.
Module 15 Managing Windows Server® 2008 Backup and Restore.
Training on Basic Software Hardware Installation
Microsoft Management Seminar Series SMS 2003 Change Management.
11 CLUSTERING AND AVAILABILITY Chapter 11. Chapter 11: CLUSTERING AND AVAILABILITY2 OVERVIEW  Describe the clustering capabilities of Microsoft Windows.
Hands-On Virtual Computing
DEEPFREEZE INSTALLATION GUIDE For Windows XP only Bulletproof Your PC Faronics Deep Freeze makes your PC indestructible. It protects your computer by freezing.
HOW TO INSTALL WINDOWS 7? This step-by-step guide demonstrates how to install Windows 7 Ultimate. The guide is similar for other versions of Windows 7.
Automating Installations by Using the Microsoft Windows 2000 Setup Manager Create setup scripts simply and easily. Create and modify answer files and UDFs.
Page 1 Viruses. Page 2 What Is a Virus A virus is basically a computer program that has been written to perform a specific set of tasks. Unfortunately,
Kaspersky Small Office Security INTRODUCING New for 2014!
Sniper Corporation. Sniper Corporation is an IT security solution company that has introduced security products for the comprehensive protection related.
Securing a Host Computer BY STEPHEN GOSNER. Definition of a Host  Host  In networking, a host is any device that has an IP address.  Hosts include.
Planning Server Deployments Chapter 1. Server Deployment When planning a server deployment for a large enterprise network, the operating system edition.
Maintaining and Updating Windows Server 2008 Lesson 8.
NETWORK SECURITY LAB 1170 REHAB ALFALLAJ CT1406. Introduction There are a number of technologies that exist for the sole purpose of ensuring that the.
PC Support & Repair Chapter 5 Operating Systems Part 2.
NT1110 Computer Structure and Logic Unit 8 (Module 5A) COMPUTER OPERATION AND SECURITY.
Using Virtualization in the Classroom
Solutions: Backup & Restore
Diskless network security
Booting Up 15-Nov-18 boot.ppt.
Presentation transcript:

1 Faronics DeepFreeze Presenter: Zoltan Karaszi zkaraszi(at)kent.edu Design of Secure Operating Systems

2 Introduction DeepFreeze is an application that “freezes” the desired configuration of the computer Once a system is frozen, any change to data or the system itself does not actually take place With a simple restore-to-reboot the system integrity is maintained When the computer is restarted, the system goes back to the state when it was frozen

3 Why we need this application? Users can change the operation system set up. Students frequently download and deploy proprietary software or other not permitted contents onto the Computer Lab computers at Kent State University. Finding these elements and fixing the changes manually every day in a huge lab is almost impossible. 60,000 new unique pieces of malware are emerging daily Anti-Virus programs keep the known threats out but often unknown malicious software infections appear and infect the systems. Need a brilliant solution to make the OS Secure like Deep Freeze

4 Compatibility Windows Fully compatible with Windows 7 Windows Vista and Windows XP Macintosh Compatible with Mac OS X 10.7 (Lion) Mac OS X 10.6 (Snow Leopard) Mac OS X 10.5 (Leopard) Mac OS X 10.4 (Tiger)

5 How does DeepFreeze make the OS Secure? This is proprietary software => no open source version... “DeepFreeze is a kernel-level driver that protects hard drive integrity by redirecting information being written to the hard drive or partition, leaving the original data intact. This redirected information is no longer referenced once the computer is restarted, thus restoring the system to its original state at the disk sector level.” - Wikipedia Only the system administrator can thaw the machines and make any change on them; otherwise they are tamperproof.

6 Three core principles Integrity of data Remain at all times when the system is frozen With a simple restore-to-reboot the system integrity is maintained Confidentiality Malicious users can get confidential data, even if the system is frozen The system needs a novel and updated antivirus protection Tamperproof When a system is frozen, any change to data does not take place With one reboot, the original state of the system (when it was first frozen) is brought back Windows can be tamperproofed with DeepFreeze

7 The Layered Security Approach Protects against multiple layers of potential threats on one central console, offering a simple, first-rate security system The Components: UIT: (User InTerface) manage and monitor Core Servers and workstations LT: (Logical Tier) management of workstations DT: (Data Tier) stores the workstation list and the information about the workstations CA (Core Agent): installed on the workstation, enables communication between the workstations and the Faronics Core Server

8 Why are universities still using the Enterprise Console of DeepFreeze? Easier to set it up and basically has the same functionality Prerequisites to install the new Core Console: NET 3.5 SP1 SQL Server System CLR Types 2008 R2 Microsoft SLQ Server 2008 R2 Management Objects SQL Server Client 2008 R2 Why is KSU planning to go to the (new) Core Console ? It contains several additional features such as antivirus software and “wake up” function Provides a better service with a complex software package

9 Important Notes The Faronics Core Agent is only compatible with DeepFreeze 7.0 or higher In order to bring up the DeepFreeze console - a combination of Ctrl + Alt + Shift + F6 is needed “Client” (any deepfreeze installed computer) – can be controlled only by one IP address to prevent tampering (“Server” or “Host”) Without the centralized control - manually disabling DeepFreeze is tedious With centralized control - easy to thaw the machine, reboot it, push the updates, make changes, freeze the machine and reboot it Kent State IT departments use the benefits of this application

10 Host Consoles Supports multiple hard drives and multi boot environments Reboot in "Thawed" mode to make permanent configuration changes In completely shut-down state, the administrator can wake up and turn on those machines; the client PC’s motherboard has to support this feature.

11 DeepFreeze Configuration Administrator Passwords and Drives Preset multiple passwords can be used on a workstation or via Command Line Control with varying activation and expiration dates Thawspace: the administrator can create up to 8 virtual partitions on the PC’s HDD  allows files to be saved there that survive after the reboot

12 DeepFreeze Configuration Administrator Embedded Events and Maintenance Set up a maintenance cycle /e.g. 12-2am/ when the computers automatically thaw themselves and do the system restore and run windows updates Batch Tuesday: spec batch run on that specific day of every week Idle: if there is no user activity for 20 minutes the PC reboots itself & restores system Disable keyboard and mouse : Useful if Library is open 24/7 during finals week

13 DeepFreeze Configuration Administrator Advanced Options Using SUS/WSUS ((wide)System Update Service) we can download the updates for one PC and use that one as a server  So we won’t slow down the entire internet network on the department License Key – do not forget – this is proprietary software

14 Vulnerabilities System boot from a different medium (USB device, network server)  no protection Deep Unfreezer /for DeepFreeze version 5 and 6/ We can change the state of DeepFreeze without needing the password  no protection Faronics DeepFreeze has a modified driver that bypasses the deepfreeze program and allows the user to get in without knowing the password. Just afew people know this driver but what if one day one of them just shares this specific driver on the internet…  no protection

15 Deep Unfreezer Successfully tested on WIN9X and WIN2K/XP /with DF v5&v6/ It can crack DeepFreeze and our super secure system is not safe anymore… 1.DeepFreeze Detected Click boot Thawed on Next 1 restart 2.Load Deep Freeze UnFreezer Save the Status and Exit 3.Restart your Computer …this is just an illustration…

16 “Faronics DeepFreeze makes the computer indestructible”… but … Can your Operation System protected with DeepFreeze be really Secure? The truth is out there… / X-Files /

17 Literature x Thank you !

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.