Basic steps – Milestone servers
Use physical access controls and monitor the server room
Milestone recommends that you place the hardware with the servers installed in a designated server room, and that you use physical access controls. In addition, you should maintain access logs to document who has had physical access to the servers. Surveillance of the server room is also a preventive precaution.
Milestone supports integration of access control systems and their information. For example, you can view access logs in XProtect Smart Client.
Learn more
The following control(s) provide additional guidance:
- NIST 800-53 PE-3 Physical Access Control
Use encrypted communication channels
Milestone recommends that you use a VPN for communication channels for installations where servers are distributed across untrusted networks. This is to prevent attackers from intercepting communications between the servers. Even for trusted networks, Milestone recommends that you use HTTPS for configuration of cameras and other system components.
Learn more
The following control(s) provide additional guidance:
- NIST 800-53 AC-4 Information Flow Enforcement
- NIST 800-53 AC-17 Remote Access