Basic precautions

Use a single-purpose server for Bravura Security Fabric . Sharing this server with other applications introduces more complexity and more administrators, each of which carries its own incremental risk.

Use strong passwords for every administrative account on the server.

Maintain a current, well-patched operating system on the Bravura Security Fabric server. This eliminates well-known bugs that have already been addressed by the vendor; for example, Microsoft.

Automatically apply patches, especially security patches, to the OS, database server and any third party software.

Keep the Bravura Security Fabric server in a physically secure location.

Provide security awareness training to all employees.

Install and keep up to date anti-virus software.

Do not leave a login session open and unattended on the Bravura Security Fabric server’s console.

If you are hosting Bravura Security Fabric on your own server, attach the server to a secure, internal network rather than the public Internet. If access from the Internet is required, mediate it via a reverse web proxy running a different OS an web server platform than Bravura Security Fabric – platform diversity reduces the risk of zero-day exploits. This is not an issue when using the software-as-a-service (SaaS) option.

Regularly review Bravura Security Fabric , OS and network logs.

Use the Microsoft Security Compliance Toolkit to learn more about server hardening.