3 Basic Security Considerations

The following principles are fundamental to using any application securely:

• Keep software up to date. Consider upgrading to the latest maintenance release. Consult with Oracle support team to plan for Oracle Communications Diameter Signaling Router software upgrades.
• Limit privileges. Users must be assigned to the proper user group and reviewed periodically to determine relevance to current work requirements. For more information, see the User Administration section.
• Monitor system activity. Establish who must access which system components, how often, and monitor those components. For more information, see Host Intrusion Detection System (HIDS) and Security Logs and Alarms sections.
• Configure software securely. For example, use secure protocols such as TLS and strong passwords. For more information, see the GUI Passwords and Oracle Communications Diameter Signaling Router OS Standard Features sections.
• Change default passwords. The initial installation of the DSR system software uses default passwords. These passwords must be changed during installation. For more information, see Change Passwords for all DSR Administrative Accounts and Changing the Internal Web Service Passwords.
• Obtain and install X.509 web certificates for GUI and MMI access. The DSR system ships with a self-signed certificate that must be replaced before the system is put into operation. For more information, see the Certificate Management section.
• Learn and use the Oracle Communications Diameter Signaling Router security features. For more information, see Implement Oracle Communications Diameter Signaling Router Security and Optional IPsec Configuration sections.
• Keep up to date on security information. Oracle regularly issues security alerts for important vulnerability fixes. It is advisable to install the applicable security patches as soon as possible. For more details, see the security alerts page at http://www.oracle.com/technetwork/topics/security/alerts-086861.html#SecurityAlerts.