IN THIS ARTICLE

Security in TRBOnet applications

Below is the information about TRBOnet applications security and recommendations to increase the security level.

Development standards:

TRBOnet app is developed securely (i.e. resistant to common security vulnerabilities and exploits).
TRBOnet Developers are following recommendations published on the following resource:
https://www.stigviewer.com/stig/application_security_and_development/

Post release evaluation:

TRBOnet apps are supported by frequent security releases and therefore, maintainable from a security perspective.
Updates and fixed versions are released as soon as vulnerability was found and eliminated. In critical cases Clients are notified about security issues and supplied with updated versions.
Releases are checked with IA scan by Motorola.
In most cases Nessus scanner (code vulnerability scanner) and Nmap (Network vulnerability scanner) are used. The same tools are used to check Motorola infrastructure for vulnerabilities.

Security level increase tips

Windows level:

TRBOnet apps are Windows application. To increase TRBOnet apps security - increase security of the Operating System. Use workspace with limited access and strict authentication.
Always Install Windows updates, .NET and SQL Server security updates.

File System level:

Use BitLocker to encrypt Archive Back ups of Audio records and Databases on Hard Drive.
Configure automatic move of Audio Records and Database backups to a secure server or storage with limited access and strict authentication.
Use SQL Backup Encryption feature instead of TRBOnet backup option.

MSSQL Server level:

MSSQL Server has Encryption solution "TDE" (Transparent Data Encryption) which can be applied.
If you are using remote MSSQL Server - use VPN tunneling between TRBOnet Server and MSSQL Server computer.

Radio system level:

Use secure environment for your applications. TRBOnet applications will be secured if used in secure environments.
AES Encryption can be applied to communication between TRBOnet Server and Radio system.
Depending on the Radio system type AES encryption applied to Voice and data transmissions or Voice transmissions only.
Communication between TRBOnet Server and Radio infrastructure is not secured. TRBOnet operates within corporate Network, secured Network means secured communication. Usage of VPN tunnels can provide increased level of communication between TRBOnet application and Radio infrastructure.

Network level:

Use secured Networks between TRBOnet Server, TRBOnet Dispatch Consoles and other nodes (MSSQL Servers, Radio systems etc.).
Starting TRBOnet Enterprise\Plus 6.3 Mobile communication between TRBOnet Enterprise\Plus Server and Mobile clients can be secured with TLS:

Below is the information about TRBOnet applications security and recommendations to increase the security level.

Development standards:

TRBOnet app is developed securely (i.e. resistant to common security vulnerabilities and exploits).
TRBOnet Developers are following recommendations published on the following resource:
https://www.stigviewer.com/stig/application_security_and_development/

Post release evaluation:

TRBOnet apps are supported by frequent security releases and therefore, maintainable from a security perspective.
Updates and fixed versions are released as soon as vulnerability was found and eliminated. In critical cases Clients are notified about security issues and supplied with updated versions.
Releases are checked with IA scan by Motorola.
In most cases Nessus scanner (code vulnerability scanner) and Nmap (Network vulnerability scanner) are used. The same tools are used to check Motorola infrastructure for vulnerabilities.

Security level increase tips

Windows level:

TRBOnet apps are Windows application. To increase TRBOnet apps security - increase security of the Operating System. Use workspace with limited access and strict authentication.
Always Install Windows updates, .NET and SQL Server security updates.

File System level:

Use BitLocker to encrypt Archive Back ups of Audio records and Databases on Hard Drive.
Configure automatic move of Audio Records and Database backups to a secure server or storage with limited access and strict authentication.
Use SQL Backup Encryption feature instead of TRBOnet backup option.

MSSQL Server level:

MSSQL Server has Encryption solution "TDE" (Transparent Data Encryption) which can be applied.
If you are using remote MSSQL Server - use VPN tunneling between TRBOnet Server and MSSQL Server computer.

Radio system level:

Use secure environment for your applications. TRBOnet applications will be secured if used in secure environments.
AES Encryption can be applied to communication between TRBOnet Server and Radio system.
Depending on the Radio system type AES encryption applied to Voice and data transmissions or Voice transmissions only.
Communication between TRBOnet Server and Radio infrastructure is not secured. TRBOnet operates within corporate Network, secured Network means secured communication. Usage of VPN tunnels can provide increased level of communication between TRBOnet application and Radio infrastructure.

Network level:

Use secured Networks between TRBOnet Server, TRBOnet Dispatch Consoles and other nodes (MSSQL Servers, Radio systems etc.).
Starting TRBOnet Enterprise\Plus 6.3 Mobile communication between TRBOnet Enterprise\Plus Server and Mobile clients can be secured with TLS:

Helpful? Yes No

We're glad this article helped.

Thanks for letting us know. What went wrong?

The steps in the article did not resolve my problem

This article did not address what I was searching for

The wording used in this article made it confusing

Other

Please don't include any personal information in your comment.