The GT 450 DX Console.log file contains user login events with user names. It can also show "Possible Intrusion
`
Detected" in case of log-in discrepancies while accessing the scanner remotely through SSH. For details on
downloading the log files, see "Working with the Event Log" on page 31.
Data Protection
Data at rest is protected by encryption. However, due to limitations of the operating system, Private Health Information (PHI)
data cannot be protected in transit. Leica Biosystems recommends that you protect data in transit by using SSL with strong
security protocols such as Transport Layer Security (TLS) or network-level encryption such as IPSec or SSH tunneling.
Physical Safeguards for Aperio GT 450 DX
`
Protect the Aperio GT 450 DX scanner from unauthorized access by limiting physical access to it.
Protecting the SAM DX Server
The following sections contain recommendations for protecting the SAM DX server.
Password, Login, and User Configuration Safeguards
We recommend the following password complexity requirements for users logging into the SAM DX web-based
`
client:
Passwords must contain at least 8 characters, including:
y
One upper-case letter
y
One numeric digit
y
One lower-case letter
y
One special character from this set:
y
The last five passwords recently used may not be reused
y
`
After three invalid login attempts, the user account is locked. The user may contact a SAM DX administrator to
unlock the account.
We recommend you configure workstations used to log into SAM DX to time out screen displays after 15 minutes of
`
inactivity and require users to log in again after that time.
For security reasons, do not use user names "Admin," "Administrator," or "Demo" when adding users to SAM DX.
`
Physical Safeguards for the SAM DX Server
Protect the SAM DX server and client workstations used to log into SAM DX from unauthorized access by limiting
`
physical access to them.
To protect the SAM DX server from malware intrusion, use caution when inserting USB drives and other removable
`
devices. Consider disabling USB ports that are not in use. If you plug in a USB drive or other removable device, you
should scan the devices with an anti-malware utility.
Aperio GT 450 DX IT Manager and Lab Administrator Guide, Revision B © Leica Biosystems Imaging, Inc. 2022
! @ # $ % ^ * _
Chapter 6: Cybersecurity and Network Guidelines
37