To ensure secure operation of the application at an enterprise after installation of Kaspersky Industrial CyberSecurity for Networks, it is recommended to reinforce the security of computers on which the Kaspersky Industrial CyberSecurity for Networks Server and sensors are installed. The required level of security ensuring safe operation of the application must be supported by the operating system and its protection tools. To maintain security of the application, it is recommended to regularly install updates for application modules and databases of Kaspersky Industrial CyberSecurity for Networks and security updates for the operating system.
It is recommended to restrict physical access to hardware on which the application is running to prevent the following potential security issues:
When deploying Kaspersky Industrial CyberSecurity for Networks, you are advised to do the following:
After each use of a script for centralized installation of application components (including for centralized removal or to reinforce computer security) you must block access to computers over the SSH protocol for security purposes. You can block access by using the following command in the operating system console: sudo systemctl disable --now sshd
. To restore access over the SSH protocol (if you need to reuse a script for centralized installation of application components), you can use the command: sudo systemctl enable --now sshd
.
When application events are transmitted to recipient systems (other than Kaspersky Security Center), the application does not guarantee the security of the data transfer. We recommend that you use other means to secure the data transfer.
For use of application management tools, it is also recommended to take the following actions to ensure data security on the intranet:
If there is a risk that the password was compromised, the application user must promptly change their password.
To force termination of a connection session, you need to use the Log out option in the user menu.