Professional Documents
Culture Documents
TSS-02
WSP 2014 R2 Whitelisting
& Cyber Security
Recommendations
Alicia Rantos
Principal Technical Support
Engineer
Summary
Recommended configuration details for Whitelisting our WSP 2014 R2
products with Intel Securitys ePO products. Plus, important industrial
controls cyber security recommendations
Agenda
Whitelisting as a cyber security solution
McAfee ePO and Application Control for whitelisting
Compatibility and Installation
Central Administration
Whitelisting specifics for WSP 2014 R2 and related components
Installing updates, hot fixes, patches and upgrades
Additional defense-in-depth cyber security recommendations
Whitelisting
Application Whitelisting is a proactive security technique where only a
limited set of approved programs are allowed to run, while all other
programs (including most malware) are blocked from running by default.
Application Whitelisting is not a replacement for traditional security
software, such as antivirus and host firewalls. It should be used as one
layer in a defense-in-depth strategy.
Central Administration
The central administration of the whitelisting (installation, configuration, and
monitoring of the clients) takes place via the McAfee ePO application.
All local McAfee Application Control commands and options are also remotely
available via the ePO.
The McAfee ePO administration software must be installed on its own computer
with up-to-date hardware and a respectively compatible, McAfee supported
Windows Server operating system; Windows 2008 R2 or Windows 2012 R2.
Note:
McAfee ePO must not be installed on a WSP computer or an Active Directory domain controller.
We highly recommend using Active Directory for Access Control.
Central Administration
Updaters
Installers, executables, Checksums (SHA1)
Installers
Executables; .exe, .msi, .msm
People
Training
Policies
SOPs and
Tools
Technology
Thank you!