iStorage diskAshur PRO2 Benutzerhandbuch Seite 33

Vorschau ausblenden Andere Handbücher für diskAshur PRO2:

Benutzerhandbuch (85 Seiten)

Schnellstartanleitung (29 Seiten)

Schnellstartanleitung (25 Seiten)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

Seite von 115

/ 115
Inhalt
Inhaltsverzeichnis
Lesezeichen

Inhaltsverzeichnis

Verfügbare Sprachen

Mitigation

NCSC (CESG) CPA

DEP.2.M277

Confidentiality

DEP.2.M280

Confidentiality

Integrity

DEP.4.M348

DEP.1.M348

Integrity

Confidentiality

Accountability

Confidentiality

Risk

Best Practice

Social

Be aware of the potential of direct and indirect threat of Social

Engineering

Engineering attacks which may attempt to discover your user

id, password and other business related, or personal creden-

tials by means of social engineering techniques.

Ensure that the organisation delivers Security Education and

Awareness to make users aware of the potential threats posed

by:

Unsolicited email seeking to entice the user into

exchanging communications with the sender

ii.

Opening URL's which are embodied within an

unexpected email, which has been received from an

unknown user

iii.

Opening attachments without consideration – they

could be carrying a Malware Payload

iv.

Accepting requests on Social Networking sites from

people you don't know or recognise

Being enticed by on-line offers – if they look to good

to be true, they probably are and most certainly are

fake

Credential

Never communicate or issue any form of security credentials

via the same channel, or which are packaged with an iStorage

Distribution

secure drive.

Note 3:

for distributing credentials, this should be achieved out-of-

band (e.g. by voice, text, secured email).

Authorised

No automated process exists. Only approved updates which

Updates

applicable to the iStorage products will be distributed as

part of an upgrade or replacement process under the internal

iStorage SDLC (Security Development Lifecycle) and their

Vulnerability Management Policy/Process.

Data

Ensure that the value of data assets stored on the iStorage

Classification

secure drive are classified, or protectively marked as is appro-

priate for their use, and/or custodianship.

Cleared Staff/

Ensure that those who are provisioned access to the data as-

Access

sets stored on an iStorage secure drive possess a clear need-

to-know and are suitably cleared as appropriate to the level of

data asset, or protectively marked materials stored thereon.

www.istorage-uk.com

Where operational necessity dictates the requirement

#33

Inhaltsverzeichnis

Quicklinks anzeigen

Quicklinks ausblenden:

Kapitel

Inhaltsverzeichnis

iStorage diskAshur PRO2 Benutzerhandbuch Seite 33

Verfügbare Sprachen

Quicklinks ausblenden:

Kapitel

Verwandte Anleitungen für iStorage diskAshur PRO2

Verwandte Produkte für iStorage diskAshur PRO2

Inhaltsverzeichnis