Managing a security policy
A security policy is a set of data that defines the following operational settings of the application:
- User-defined sets of Intrusion Detection rules
- Allow rules for Interaction Control and for events
- Settings of devices and tags that are used for Asset Management and Process Control
- Network map display settings
- Address space settings
- Event types settings
- Risk types settings
All other application settings are not part of a security policy and are applied separately from it. This includes the settings of nodes that have components installed, the list of application users, objects linking events and devices in the devices table, and other settings.
A security policy is stored on the Server and is automatically updated each time application settings are modified (for example, when Interaction Control rules are added).
You can export a security policy to files and import them from files. You can also clear the current security policy on the Server to delete all previously saved settings.
When exporting, importing or clearing a security policy, you can select specific sections of the policy that you want to export, import, or clear. For example, you can export only devices and allow rules.
When exporting a security policy, the application creates a file containing information about the selected application settings. To import settings, you can select a previously exported file.
Changing the contents of a security policy file may result in a malfunction of Kaspersky Industrial CyberSecurity for Networks if you import a security policy from this modified file. The application may stop performing protection functions for the industrial network.
