mirror of
https://github.com/MicrosoftDocs/windows-itpro-docs.git
synced 2025-06-17 03:13:44 +00:00
updated suggestions
This commit is contained in:
Beth Levin
@ -48,15 +48,15 @@ To learn more about supply chain attacks, read this blog post called [attack inc
|
|||||||
|
|
||||||
### For software vendors and developers
|
### For software vendors and developers
|
||||||
|
|
||||||
* Take steps to ensure your apps are not compromised.
|
* Maintain a highly secure build and update infrastructure.
|
||||||
|
|
||||||
* Maintain a secure and up-to-date infrastructure. Restrict access to critical build systems.
|
|
||||||
* Immediately apply security patches for OS and software.
|
* Immediately apply security patches for OS and software.
|
||||||
|
* Implement mandatory integrity controls to ensure only trusted tools run.
|
||||||
* Require multi-factor authentication for admins.
|
* Require multi-factor authentication for admins.
|
||||||
|
* Build secure software updaters as part of the software development lifecycle.
|
||||||
* Build secure software update processes as part of the software development lifecycle.
|
* Require SSL for update channels and implement certificate pinning.
|
||||||
|
* Sign everything, including configuration files, scripts, XML files, and packages.
|
||||||
|
* Check for digital signatures, and don’t let the software updater accept generic input and commands.
|
||||||
* Develop an incident response process for supply chain attacks.
|
* Develop an incident response process for supply chain attacks.
|
||||||
|
* Disclose supply chain incidents and notify customers with accurate and timely information
|
||||||
|
|
||||||
For more general tips on protecting your systems and devices, see [prevent malware infection](prevent-malware-infection.md).
|
For more general tips on protecting your systems and devices, see [prevent malware infection](prevent-malware-infection.md).
|
||||||
Reference in New Issue
Block a user