Intel vPro® Platform
Intel Manageability Forum for Intel® EMA, AMT, SCS & Manageability Commander
2834 Discussions

Security considerations

idata
Employee
‎10-05-2011 01:03 AM
1,139 Views

Hi all,

I have been playing around now for a while. I would like to understand a little more about security.

Obviously, as a starting point, a good password policy is enforced. But it concerns me that placing an enabled machine on the Internet with remote access open is going to be an issue - a brute force hacker would get in eventually?

So what stops attacks, can you restrict access from a list of places? I have searched for any reference material but haven't found any yet.

BTW I don't have an option for a perimeter firewall device.

Thanks

Nick

0 Kudos

Link Copied

1 Reply
idata
Employee
‎10-05-2011 03:31 PM
301 Views

The vPro platform was designed with the idea that it would be used behind a firewall, so, having it directly on the Internet has obvious security implactions as you have pointed out.

Since your system is exposed using an aggressive password management policy is a must. I am guessing that your client isn't part of an classic enterprise network with Active Directory so you'd have to rely on the build in digest account management. Is this correct?

Do you have a certificate authority in your environment? Using mutial TLS may be an option to help secure the communications.

0 Kudos
Copy link
Reply

Community support is provided during standard business hours (Monday to Friday 7AM - 5PM PST). Other contact methods are available here.

Intel does not verify all solutions, including but not limited to any file transfers that may appear in this community. Accordingly, Intel disclaims all express and implied warranties, including without limitation, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement, as well as any warranty arising from course of performance, course of dealing, or usage in trade.

For more complete information about compiler optimizations, see our Optimization Notice.