Have You Seen Workflow Lately? Click here to check out all the new features in the latest version.

Supercharge your GE solution! Download a free trial of Proficy Operations Hub, CSense analytics, and more. Learn more about the Proficy 2024 releases, by signing up for one of our upcoming events.

Home
Get Started
Get Started Guide
Installation Security
Defense in Depth
Defense in depth is the concept of using multiple layers of security to raise the cost and complexity of a successful attack.

Workflow Products Documentation

Get Started
- Get Started Guide
  - Installation Requirements
  - Pre-Installation Consideration
  - Installation Procedures
  - Server Clustering Implementation
  - Deploy the Web Task List
  - Log On Overview
  - Post-Installation Configuration
  - Upgrade Workflow
  - Install a Reporting Database
  - Terminal Server
  - ActiveX Task Controls
  - Workflow Task Client
  - Installation Security
    - Installation Security
    - Defense in Depth
      Defense in depth is the concept of using multiple layers of security to raise the cost and complexity of a successful attack.
    - Anti-Virus Software
      GE encourages customers to use third-party anti-virus (AV) software of their choice and to keep it current with the latest updates.
    - Data Execution Prevention
      GE products function with Microsoft Windows Data Execution Prevention (DEP) enabled, and GE recommends that customers enable this feature as an added protection against the exploitation of application security vulnerabilities such as buffer overflows.
    - Software Patching
      Installing software patches is in integral part of security.
    - Platform Configuration and Hardening
      GE recommends configuring operating systems, databases, and other platforms per vendor recommendations or industry standards.
    - Contact Information
      If you purchased this product through an Authorized Channel Partner, please contact the seller directly.

Defense in Depth

Defense in depth is the concept of using multiple layers of security to raise the cost and complexity of a successful attack.

To carry out a successful attack on a system, an attacker would need to find not just a single exploitable vulnerability, but would need to exploit vulnerabilities in each layer of defense that protects an asset.

For example, if a system is on a network protected only by a firewall, the attacker needs to circumvent only the firewall to gain unauthorized access. However, if there is an additional layer of defense such as a user name/password authentication requirement, the attacker needs to find a way to circumvent both the firewall and the user name/password authentication.