CRA-5.8.11
Past version: Effective from 01 Apr 2019 to 31 Mar 2023
To view other versions open the versions tab on the right
Preventive measures referred to in Paragraph CRA-5.8.10 above must include, at a minimum, the following:
(a) Deployment of anti-virus software and malware programme to detect and isolate malicious code;
(b) Layering systems and systems components;
(c) Build firewalls to reduce weak points through which attacker can gain access to a licensee's network;
(d) Rigorous testing at software development stage to limit the number of vulnerabilities;
(e) Penetration testing of existing systems and networks; and
(f) Use of authority matrix to limit privileged internal or external access rights to systems and data.
Added: April 2019