We work with each MFD manufacturer to make our application secure and to support the device's SDK in the intended way. No application is 100% secure, but below are recommendations you can follow to keep your data as safe as possible.
Two-Step / Multi-Factor Authentication (MFA)
It is STRONGLY recommended that MFA be enabled for all StratoQ devices running in Single Sign-On (SSO) mode. If it is not enabled we rely on the control of the device's administrative page to ensure security.
Device Secret
Each Sharp MFD running the StratoQ app uses a unique URL authentication scheme. This URL "Device Secret" lets our servers know that the device connecting to us is actually the device configured and licensed in your account, and not an unauthorized connection. These Device Secrets cannot be replicated, and only one secret can be valid at a time for each MFD registered in StratoQ.
If SSO is enabled and MFA is disabled, it is VERY important that you follow the below recommendations.
- This secret should not be shared outside of the administrative group of your organization. It should not be emailed or stored outside of the Sharp's admin page itself.
- The Administrative password for the Sharp should be changed from the default to a secure string that is not easily guessable or used elsewhere.
- This Device Secret should be periodically changed. This can be done from within the StratoQ administrative portal.
HTTPS/SSL
StratoQ only provides URLs over HTTPS, and the Sharp device forces all OSA traffic overt this port.
Comments
0 comments
Please sign in to leave a comment.