Using Reflex Disknet Pro to Aid Compliance with BS 7799 & ISO/IEC ...
Using Reflex Disknet Pro to Aid Compliance with BS 7799 & ISO/IEC ...
Using Reflex Disknet Pro to Aid Compliance with BS 7799 & ISO/IEC ...
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
that make use of the products zero day protection capabilities and report no virus<br />
infections. Logic bombs present a real problem for anti-virus software since a logic<br />
bomb can be targeted at a particular organisation. Therefore, the first people <strong>to</strong> see<br />
this malicious code will be the target and as such their anti-virus software will not<br />
recognise the attack. RDP’s zero day protection will also help <strong>to</strong> combat this threat.<br />
Fig.5<br />
3.4. Controls against malicious software [8.3.1 (a) (b) (e) (f)]<br />
The standard requires that a formal policy exists requiring compliance <strong>with</strong> software<br />
licences, prohibiting the use of unauthorised software, and one that protects against<br />
the risks associated <strong>with</strong> obtaining files and software from or via external networks,<br />
or on any other medium. RDP can be used <strong>to</strong> absolutely enforce such a policy. By<br />
selecting the PSG option, which prevents the addition of any new executable files<br />
whilst locking the currently installed executables files as “read only”, software<br />
licensing is maintained since no new software can be installed <strong>with</strong>out the permission<br />
of the system administra<strong>to</strong>r. It does not matter where these types of file are intended<br />
<strong>to</strong> be introduced, they will be blocked. Non executable files can be subjected <strong>to</strong> a<br />
virus scan as an added precaution before the media on which they are s<strong>to</strong>red is<br />
authorised for use. This will include the checking of email attachments. The PSG<br />
tab from <strong>with</strong>in the profile template can be viewed at Fig. 3.<br />
© <strong>Reflex</strong> Magnetics Ltd 11