Ensure that devices have end-point security controls configured as per organizational policies.Ensure that the Cloud Gateway implements a process to keep the connected devices firmware up to date.Ensure that the default login credentials of the field gateway are changed during installation.Encrypt OS and other partitions of IoT Field Gateway with BitLocker.Ensure that only the minimum services/features are enabled on devices.Encrypt OS and other partitions of IoT Device with BitLocker.Ensure that unknown code cannot execute on devices.Ensure that all admin interfaces are secured with strong credentials.Encrypt sections of Web API's configuration files that contain sensitive data.Ensure that only trusted origins are allowed if CORS is enabled on ASP.NET Web API.Configure a Windows Firewall for Database Engine Access.Remove standard server headers on Windows Azure Web Sites to avoid fingerprinting.Use locally hosted latest versions of JavaScript libraries.Enable ValidateRequest attribute on ASP.NET Pages.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |