The ASD Essential Eight model is a set of baseline security measures developed by the Australian Signals Directorate (ASD) to help organisations protect their systems from cyber-attacks. It is designed to be implemented in a layered approach, with each layer providing additional protection against malicious actors.
The eight strategies are:
1. Application whitelisting – restricting the applications that can be installed and run on a system,
2. Patching applications – ensuring that all applications and operating systems are regularly updated with the latest security patches,
3. Patching operating systems – ensuring that all operating systems are regularly updated with the latest security patches,
4. Configuring Microsoft Office macro settings – disabling macros from running in Microsoft Office applications,
5. Restricting administrative privileges – limiting user access to administrative functions,
6. Multi-factor authentication – using two or more authentication methods to access systems and data,
7. User application hardening – configuring applications to reduce the risk of exploitation, and
8. Implementing daily backups – creating regular backups of data to ensure it can be recovered in the event of a breach.
By implementing these strategies, organisations can significantly reduce their risk of a successful cyber-attack. The strategies are designed to be implemented in a layered approach, with each layer providing additional protection against malicious actors.
.png)
.png)
.png)
.png)