EMG™ Edge Management Gateway User Guide
405
Appendix A: Security Considerations
The EMG provides data path security by means of SSH or Web/SSL. Even with the use of SSH/
SSL, however, do not assume you have complete security. Securing the data path is only one
measure needed to ensure security. This appendix briefly discusses some important security
considerations.
Security Practice
Develop and document a Security Practice. The Security Practice should state:
The dos and don'ts of maintaining security. For example, the power of SSH and SSL is
compromised if users leave sessions open or advertise their password.
The assumptions that users can make about the facility and network infrastructure, for
example, how vulnerable the CAT 5 wiring is to tapping.
Factors Affecting Security
External factors affect the security provided by the EMG unit, for example:
Telnet sends the login exchange as clear text across Ethernet. A person snooping on a subnet
may read your password.
A terminal to the EMG may be secure, but the path from the EMG to the end device may not
be secure.
With the right tools, a person with physical access to open the EMG unit may be able to read
the encryption keys.
There is no true test for a denial-of-service attack. There is always a legitimate scenario for a
request storm. A denial-of-service filter locks out some high-performance automated/scripted
requests. The EMG will attempt to service all requests and will not filter out potential denial-of-
service attacks.
Содержание EMG 8500
Страница 1: ...Part Number PMD 00008 Revision A October 2019 EMG Edge Management Gateway User Guide EMG 8500 ...
Страница 69: ...6 Networking EMG Edge Management Gateway User Guide 69 Figure 6 2 Network Network Settings 2 of 2 ...
Страница 302: ...14 Maintenance EMG Edge Management Gateway User Guide 302 Figure 14 12 About EMG ...