Security Planning
Security cannot be added onto a product like a new software feature or parameter adjustment.
Some categories and examples of the kinds of things to consider during this initial product installation planning are:
-
Networking: Virtual and physical interfaces, bridged and routed
- External interface access: Optional use of your own CA Trust chain
-
User Access: Users and groups, what their role is, and what resources they will access to inspect, read, use or manage
-
Password rules: length and character requirements, other characteristics
-
Cryptographic algorithms: allowed or mandated, usage guidelines
-
Patch or update process security: limitations, roles allowed to execute procedures
This is not an exhaustive list. The more things that can be planned ahead of time, the better.