Data Protection; Debugging Interface; Ssh Access: Reduced File System Privileges; Android Security Updates - AudioCodes C455HD User's And Administrator's Manual

CHAPTER 1 Overview
Trusted certificates are provisioned by parameter security/ca_certificate/[0-4]/

Data Protection

AudioCodes devices run Android which has integral procedures for protecting and securing user
data.

Debugging Interface

■ AudioCodes devices leverage SSH as a debugging interface.
AudioCodes recommends that customers disable SSH on devices via AudioCodes' Device
■
Manager (OVOC).
AudioCodes recommends changing the Admin password from the default, via the Teams
■
Admin Center or AudioCodes' Device Manager (OVOC).
■ When a device - or multiple devices - needs to be debugged, users can enable SSH on it /
them, access SSH with the new Admin password for the debugging phase, and disable SSH
once debugging is finished.
SSH is by default disabled and can be enabled with Administrator permissions in the
phone screen (Device Administration > Debugging > SSH).

SSH Access: Reduced File System Privileges

Administrator users who access SSH have reduced file system privileges. For example, files can-
not be deleted, and some parts of the file system cannot be reviewed. This prevents malicious
actions or unintended errors that might cause damage to the device.

Android Security Updates

AudioCodes regularly adopts and integrates Android security updates.
For reference, see here.

AudioCodes Root CA Certificate

The following figure shows the AudioCodes Root CA Certificate.
C455HD | Users & Administrator's Manual
- 9 -