HP Integrity BL890c i2 Quickspecs page 13

QuickSpecs
Standard Features
Platform security fundamentals
For the past 25 years HP has been building one of the most trustworthy and secure UNIX operating
systems on the market. Designed for the optimal protection against both external and internal threats.
HP-UX 11i offers industry-leading breadth and depth of UNIX security features. Focused on
comprehensive security integration aimed at proactively mitigating risk, reducing compliance cost and
accelerating time to implementation, HP-UX security solutions significantly lower IT costs. This set of
fully integrated and complementary features is designed to provide layered security with in-depth
protection of all your enterprise assets by protecting all these aspects of data, systems, data and
identity security. HP-UX independently validates its comprehensive security portfolio through Common
Criteria security evaluations. For more details, visit www.hp.com/go/hpux11isecurity
Protecting systems:
One critical factor in enterprise security is system minimization and hardening. HP-UX 11i offers a set
of security features designed to address known and unknown vulnerabilities by running only the
services that are needed, thus minimizing a potential point of attack. The following security features
have built-in mechanisms not only to minimize and harden the system, but also to detect and react to
attack in real time:
Protecting data:
HP-UX 11i offers data protection in many forms: protecting data in transit, in use and at rest. By using
security features designed to protect data in its three forms, HP-UX 11i customers can minimize
possible breaches not only in terms of data loss, but in customer trust as well. Several security features
offer data protection capabilities to HP-UX customers:
Protecting Identity:
In modern day global enterprise companies, managing identity is not an easy task , especially as

Integrity iLO 3 access control- 19 customizable local user accounts with assignable rights for
power, console, configuration, etc.

OA and Integrity iLO 3 Directory Services Integration (LDAP)

Integrity iLO 3 access via SSL encryption or SSH

Integrity iLO 3 access methods via web, SSH, etc. can be disabled

SSL encryption on web console

Trusted Platform Module (TPM) option for secure cryptographic key storage, integrates with
HP-UX security features

Bastille system hardening

Host Intrusion Detection System

Secure Resource Partitions

IPFilter - firewall technology

Software Assistant (security bulletin currency)

Install-time Security

Boot Authentication

Standard Mode Security Extensions

Shadow Passwords

Strong Random Number Generator

Encrypted volume and file system

Trusted Computing Services

Security containment

OpenSSL

IPSec

Secure Shell

MD5sum
c04111605 — DA – 13619 Worldwide — Version 24 — June 01, 2015
HP Integrity BL890c i2 Server Blade
Page 13