This repository is outdated and the development has moved to https://github.com/telekom/tel-it-security-automation. Therefore this repo has been archived.
Company: T-systems International GmbH
Author: Telekom Security
E-Mail: security.automation@telekom.de
Date: 28. Jan 2019
The intention of the Telekom Security Compliance Automation (TSCA) is to provide scripts for automated hardening of operating systems and software solutions based on security requirements of Deutsche Telekom group.
Automation of security is mandatory to support the demands of scaling and high frequently changing virtualized and cloudified environments. This is also mandatory for new working concepts like agile development, CI/CD and DevOps. Nevertheless, the hardening scripts can also be used for traditional bare metal systems.
With automating of security hardening it is possible to reach a constant and reproducible security level during the complete lifetime of a system.
Ansible:
Telekom Security - Security Requirements:
- SecReq 3.04: Secure Shell
- SecReq 3.65: Linux OS for Servers