1. Home
  2. Products & Support
  3. Global Product Security
  4. Olympus Product Security Hardening Guide

Olympus Product Security Hardening Guide

Olympus Product General Hardening Guide

Olympus offers a wide range of products with a wide range of capabilities. These capabilities are aimed at making people’s lives healthier, safer and more fulfilling. However, these capabilities like connecting your medical device to a network, storing PHI, etc, introduce the potential of security risks.

In order to mitigate these security risks, it is essential to configure the proper security settings and use your products in a secure environment. Outlined below are several security measures Olympus recommends so customers can use products in a secure way.

Install / Setup

  1. Ensure products are connected only to trusted networks.
  2. Segment the LAN on which the products are connected to, from other areas of the network.
  3. Implement a firewall with strict blocking rules or VPN device between products and the Olympus servers.
  4. Ensure strong security controls are in place for wireless connectivity to the LAN where the products are running, such as a robust wireless connection passwords and perform monitoring/ alerting of unauthorized activity.
  5. Change the product’s default password to a new unique password.
  6. Setup Administrator and general user accounts, if possible, as per your facilities guidelines.
  7. If the product has encryption functions, enable them.
  8. If possible, disable unused ports/ functions.
  9. If possible, seal unused ports.
  10. Ensure the security settings are enabled for the product and set to the most secure.
  11. Ensure your facility has the appropriate physical security controls in place in order to prevent unauthorized access to the product.

Use of the Product

  1. Visit the Olympus Product Security websites (Global and Regional) for the most up to date security information.
  2. Contact your regional support representative to ensure your product is running the latest software version.
  3. If the product has audit log capability, ensure you review the logs, as per your facilities guidelines.
  4. Ensure you back up any data or product settings on a regular basis.

Disposal

When disposing of the product, ensure you follow the proper disposal procedures outlined in the products IFU including clearing all of the data stored in the product.