HP Innovation Journal Special Edition: Security | Page 18

H P P R I N T S E C U R IT Y HP’s Cyber Resilient Printers Ongoing Initial Startup art ureSt HP S sion Intru ction e m i t e Run Det sting eli Whit e antag tAdv upport e J P S H er anag rity M e teabl Upda Software e r u c Se ware & Firm Secu ction onne ection C P H Insp ith tion t w a r ols g o e Int SIEM Figure 1: Device Lifecycle Initial Startup HP SureStart devices come equipped with hard disk drives and run internal web servers. Hackers are becoming more sophisticated, with the availability of commercial tools designed by and for cyber criminals (e.g., Metasploit, IdaPro) that make it easy to reverse engineer code and craft new exploits. HP Printers must protect against these increasingly sophisticated attacks. Malicious attacks can occur from inside or outside the organization. Here are some of the ways potential print-related security breaches can occur: • Access via unsecured network ports/protocols are an entry point to the company network and information assets. • The interception of print/scan data in transmission can expose a company’s sensitive data. • Injection attacks into the memory of printers can compromise an entire network. 17 HP’s printers provide multiple layers of defense to pro- tect the device and the customer’s data. HP’s printers have device protection features to ensure a root of trust at boot time and intrusion detection features to guard against runtime injection attacks. Device vendors need to ensure that they reduce their exposure points (attack surface) by locking down the device as much as possible. Products also need to be developed with security requirements from the beginning. This means that devices need to be devel- oped using secure coding methodologies, designing for security, performing a threat analysis early in the development cycle, and finishing with thorough pene- tration testing. HP follows these best practices using a security-in-design process to reduce potential exposure points and vulnerabilities on their printers.