Security Information
NETWORK
COMMUNICATION AND SECURITY
Advantage
software utilizes the following technologies to identify the authenticity of its
users prior to the initial product launch. The product also adds another layer
of protection by authenticating the users prior to the launch of the software by
requiring a username and password.
LOCAL AREA NETWORK
Starting with Microsoft
Windows 2000, Microsoft products use Kerberos protocol and Integrated Windows
Authentication (IWA) to check the authenticity of any network user requesting
information from the server or acting server and the shared resources on the
server.
Windows
Authentication is commonly used between all software running on Windows. Also
filesharing permissions can use Kerberos and IWA with Microsoft Active
Directory. This way user only needs to give login credentials once on a PC and
has access to shared files over network with suitable permissions. Advantage
software utilizes UDP port 4000 on the local area network to establish
communication between clients and the server.
For information regarding
the Wide Area Network security, please visit the
Advantage Encryption page.
SECURITY
AND ANTI-VIRUS SOLUTION
Compulink recommends
Security and Anti-Virus solutions developed for business/corporate
environments. Solutions made for home/home office users, such as Norton
Anti-Virus 2010, are not designed for network applications such as Advantage
software. It is imperative that your security solution provides an interface for
proper configuration and unfiltered network packet delivery on the local area
network. All security applications, such as Symantec Endpoint Protection, must
be configured by a network professional to permit full access to Advantage
software and all of its associated TCP/UDP ports.
Network scanning option MUST be disabled for all available Security and
Anti-Virus programs. The content of the local drives are scanned and
protected. Enabling the network drive scanning will only cause latency and
create lag time for users of Advantage software. Scanning system for malware
should also be scheduled during off peak hours or when system is not in use to
avoid performance issues.
RECOMMENDATION:
Many
proprietary
software companies provide
threat prevention and defense against malware. Symantec Endpoint Protection is
recommended for use with Advantage software. Advantage Users can deploy
Symantec Endpoint Security on their networks to protect against even the most
sophisticated attacks. Symantec Endpoint Protection can provide advanced threat
prevention from unknown targets. It includes proactive technologies that
automatically analyze application behaviors and network communications to
detect, block and report suspicious activities. Deploying Symantec Endpoint
Security will provide real-time security protection for Advantage users.
NOTE:
Compulink
Business Systems, Inc. utilizes Symantec Endpoint Protection and Windows Server
Update Services (WSUS) to certify all communication between Compulink and
Advantage clients are free of malware. At Compulink, all network nodes are
protected, real-time, and scanned daily using Symantec TruScanTM
Technology. A comprehensive scan is also scheduled and performed on a weekly
basis on all network nodes. Symantec Endpoint and WSUS are updated daily for
any available and most current threat protection. These updates are delivered
to all Servers, workstations and laptops immediately to ensure a malware free
environment.
RECOMMENDED
NETWORK APPLIANCES
As more health
care providers make patient information available over the Web and on wireless
devices, security and patient privacy are
a big concern. The
Data Protection Act 1998 (DPA) requires "appropriate technical and
organizational measures" to prevent "unauthorized or unlawful processing of
personal data.” Compulink recommends client use advanced network appliances to
assist in protecting this information. Aside from the security software,
Internet connectivity devices play a big role in securing a network from
external threats. Compulink Recommends Sonicwall (www.sonicwall.com)
and Snapgear (www.snapgear.com)
security appliances.
