HP Innovation Journal Special Edition: Security | Page 18
H P P R I N T S E C U R IT Y
HP’s Cyber Resilient Printers
Ongoing
Initial Startup
art
ureSt
HP S
sion
Intru ction
e
m
i
t
e
Run
Det
sting
eli
Whit
e
antag
tAdv upport
e
J
P
S
H
er
anag
rity M
e
teabl
Upda Software
e
r
u
c
Se ware &
Firm
Secu
ction
onne ection
C
P
H
Insp
ith
tion t w
a
r
ols
g
o
e
Int
SIEM
Figure 1: Device Lifecycle Initial Startup HP SureStart
devices come equipped with hard disk drives and run internal
web servers. Hackers are becoming more sophisticated, with
the availability of commercial tools designed by and for cyber
criminals (e.g., Metasploit, IdaPro) that make it easy to reverse
engineer code and craft new exploits. HP Printers must protect
against these increasingly sophisticated attacks.
Malicious attacks can occur from inside or outside
the organization. Here are some of the ways potential
print-related security breaches can occur:
• Access via unsecured network ports/protocols are
an entry point to the company network and
information assets.
• The interception of print/scan data in transmission
can expose a company’s sensitive data.
• Injection attacks into the memory of printers can
compromise an entire network.
17
HP’s printers provide multiple layers of defense to pro-
tect the device and the customer’s data. HP’s printers
have device protection features to ensure a root of trust
at boot time and intrusion detection features to guard
against runtime injection attacks.
Device vendors need to ensure that they reduce
their exposure points (attack surface) by locking down
the device as much as possible. Products also need
to be developed with security requirements from the
beginning. This means that devices need to be devel-
oped using secure coding methodologies, designing
for security, performing a threat analysis early in the
development cycle, and finishing with thorough pene-
tration testing. HP follows these best practices using a
security-in-design process to reduce potential exposure
points and vulnerabilities on their printers.