Submitting forms on the support site are temporary unavailable for schedule maintenance. If you need immediate assistance please contact technical support. We apologize for the inconvenience.
How are Windows Updates applied to Safeguard appliances?
설명
How is the operating system on a Safeguard appliance secured? Will patches be provided to address security vulnerabilities?
해결 방안
The operating system on Safeguard appliances has been hardened uses several methods to restrict access. These measures include the following:
Prevent console access and restrict network access
Disable or remove unused services
Disable or remove unused programs and operating system components
Implement highly restrictive ACLs
Use Local Security Policy
The only way to apply code changes—such as an application update, component change, or an operating system security patch—to an application is via a patch provided by One Identity. These patches are a proprietary format, are AES-256 encrypted using an X.509 certificate as the key, and are further authenticated by the use of a patch key that is uniquely generated based on both hardware and software attributes of the appliance. This ensures that only patches that come from One Identity can be applied to an appliance.
추가 정보
Please download the whitepaper for a full explanation of the security architecture of the Safeguard Appliance.