HP Insight Remote Support Security Executive Summary
5
RDM and RDC are designed to only require an outbound HTTPS connection. No inbound
connections are necessary for these components to function. All connections are made using
industry standard SSL/TLS encryption ensuring confidentiality and integrity of the information.
X.509 certificates are used to authenticate both ends of the connection before any data is
transmitted to the HP RSDC.
Inbound Security
RDA requires an inbound connection from the HP Remote Access Connection Server (RACS) to your
designated access server(s). HP understands that IT security requirements are unique to every
customer. Therefore, HP offers a number of remote access solutions (depending on the service
level agreement) that are designed to meet most security policy requirements. All of HP solutions
use industry standard techniques to ensure a secure remote access connection that includes one
or more of the following secure (encrypted) protocols: Secure Shell (SSH), IPSec, Secure Sockets
Layer (SSL), or Transport Layer Security (TLS). HP offers both hardware and software solutions
which can be configured to ensure that you are always in control of the connection. We also offer
options that allow you to view and monitor the HP engineer activities on your system and to set
automatic timeouts for active connections.
All HP engineers accessing customer systems must adhere to the same standards of business
conduct as onsite HP engineers, and are only allowed to attempt a remote access connection with
customer approval and a valid business need. If your company has an assigned HP Account
Support Team, it is possible to restrict the access to only the HP engineers assigned to your team.
Internally, HP requires ‘two factor’ authentication to access to the remote access server and
maintains logs of all RDA connections. HP engineers are only allowed to access the Remote Access
infrastructure if they are members of certain role based groups in the HP LDAP directory. Access is
limited depending on the group the HP Support engineer is assigned to.
Data Handling Security
It is important that HP maintains the availability of the Insight Remote Support infrastructure and
collected data. This is provided by HP Remote Support Data Center (RSDC) which utilizes highly
available server configurations in redundant data centers. All collected data is treated as HP
Confidential information while at HP. As required by HP data privacy policies, the data is kept
encrypted in the storage database and on backup media. It is never shared with third parties or
used to increase profit. Access to the Insight Remote Support infrastructure is strictly controlled
and only authorized HP engineers have access to the collected data, analysis systems, and
reports.
For More Information
Visit the Insight Remote Support Documentation Library
http://www.hp.com/go/insightremotesupport/docs
Get connected
hp.com/go/getconnected
Current HP driver, support, and security alerts
delivered directly to your desktop
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only
warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein
should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.
Trademark acknowledgments, if needed.
December 2012
All communications for
event monitoring and
data collection are
initiated from your
enterprise to HP.
HP offers a number of
remote access options
designed to meet your
corporate security
requirements.
HP treats your data as
confidential and
ensures that it is
protected when stored
at HP (in the database
and on backup media)