File Integrity Checker

Learn how a file integrity checker (FIC) identifies changes made to files.

Overview

A file integrity checker (FIC) monitors specific files on a device for unauthorized changes. Critical system files, whose alteration could result in system compromise, are a good place to start. However, files change all the time on a device. The key is to determine which files are worth monitoring from a security standpoint and to make the FIC aware when authorized changes will take place to prevent false positives from being triggered.

Identification of differences in system files

Ideally, our organization should have a base ...