Implementation -> Infrastructure Hardening: Filter outgoing traffic
Risk and Opportunity
Risk: A compromised infrastructure component might try to send out stolen data.
Opportunity: Having a whitelist and explicitly allowing egress traffic provides the ability to stop unauthorized data leakage.
- Open Policy Agent, , Tags:
- firewalls, , Tags:
Usefulness and Requirements of this Activity
Required knowledge: Medium (two disciplines)
Required time: Medium
Required resources (systems): Medium
OWASP SAMM VERSION 2
- virtual environments are not explicitly covered by ISO 27001 - too specific