Should an IT Security Strategy include MFP’s?
According to InfoTrends, there are almost 30 million printers and multifunction devices in offices throughout Western Europe and the U.S. and most are connected to a network. This means they are just as vulnerable to malware and hacker attacks as PCs, but for a variety of reasons they are often overlooked by IT professionals and used without proper safeguards by employees.
I have been working in the managed print services space for over 15 years and have been warning of the dangers of MFP security. In the last couple of years the demand for printer security has finally increased. I’m often asked the question by customers, if their IT security strategy should include MPF’s and the answer is 100% yes. However, I still see a hole in the print security of many organisations.
Security threats are real, and as printing and imaging devices become increasingly sophisticated, they offer greater opportunities for attackers to compromise the device or the entire network. This is due to the lack of security on networked devices which are not controlled by network firewalls, leaving printing and imaging devices often overlooked and exposed. In Europe, Quocirca research showed that 70% of organisations have suffered a print security breach.
The first step in making sure that your company doesn’t fall prey to such a data breach is to understand the risk your print environment poses and then develop a strategy to manage this risk.
There are 5 simple steps to include in this strategy which will improve your print fleet’s security:
- Introduce simple role based printing and document right policies to ensure that print jobs are only seen by the author.
- Ensure that you use a supplier who operates a recognised process for the removal and disposal of printing devices.
- Use a secure pull print solution, data overwrite and encryption processes.
- Review your existing infrastructure, policies and technologies and look for external reviews as the introduction of a trusted supplier can often lead to higher levels of security than many companies can achieve in-house.
- Take advantage of enhanced security systems for MFP’s and printers such as the HP JetAdvantage Security.
Step 5 is key as these technologies help to safeguard the printing and imaging devices from attacks, creating ease of mind for IT managers and removing the need for intervention from IT staff. Any notifications regarding risks can be sent to IT via applications such as Jetadvantage Security Manager and ArcSight.
HP are leading the way in this space and have developed and deployed an end-to-end printing security strategy, an industry first in security management.
The latest HP Futuresmart Enterprise models are monitored by 3 key technologies:
1. HP Sure Start:
As your printer powers on for the first time, HP Sure Start works in the background, validating the BIOS at every power cycle and also inspecting the FutureSmart Firmware. If the BIOS is in any way compromised, the printer will reboot to a “Safe Mode” version of the BIOS. This gives the end user the time to download a new, safe copy of Firmware to be uploaded to the printer.
Multi-function devices these days are much like the end-user computer, they incorporate memory, processor, hard drives and software. In order for these components to integrate and communicate, the Futuresmart firmware is uploaded to the internal hard drive of the printer. Whitelisting ensures that the firmware is genuine and uncompromised, and if there is any detection of an intrusion, the device again, boots into the “safe mode” function and notifies the relevant group/person.
3. Run-Time Intrusion:
Companies install their multi-function devices on their network unaware that these are prime targets for network intrusion. Although a firewall is configured for a client’s network to safeguard their systems, printers installed on the same network are open to malware/virus attacks by other sources. Run-Time Intrusion is a live protection service which, if an intrusion is detected, automatically reboots the device.
The Futuresmart Firmware includes these 3 functions as standard. To increase security for your business the benefits of the HP Futuresmart Firmware and current devices should not be overlooked. It is useful and productive and brings multiple benefits for IT operators.
HP Jetadvantage Security Manager is an application that comes as standard on the latest HP Futuresmart Enterprise models. This gives the customer a continuous assurance of security policy settings.
These settings are deployed through the use of a security compliance tool. Within the application, the IT department can create policy templates to be distributed to devices in their productive print environment.
It allows numerous tasks to be run within the policy editor including:
- Policy validations to identify missed items and potential conflicts
- Adding, verifying and grouping devices
- Assessing devices to set up reccurring tasks
- Running executive level risk based reporting
- Providing detailed reports on assessments and remediation
By implementing these types of solutions for clients, we are starting to see that users are no longer scared of the risks that multifunction printers pose. Security assessments and workshops help identify and target specific security risks within your current fleet and also help with a standard security policy for the future. We soon should see a time where the MFP is considered a “real” piece of networked hardware rather than an “outsider” and taking the time to protect it is just as important as all other networked devices.