Barco ClickShare Instrukcja Użytkownika Pobierz pdf (Strona 13)

Wi-Fi and Security Considerations for ClickShare

Page 13 of 14

Administration of the Base Unit is done with a web browser via

an HTTP interface

. The administrator logs on with a username

+ password. In addition to this, the Base Unit also accepts

incoming SSH connections: the connection is SSL encrypted

and authentication is performed with a username + password.

The Base Unit does not place specific requirements on the

passwords that are used: it is the administrator’s responsibility

to choose a password that is secure and difficult to hack

It is possible to abuse the system by taking a Button before a

meeting starts and pairing it with the Base Unit in the meeting

room in order to show unwanted content from outside the

meeting room (within Wi-Fi range) during the meeting. We

acknowledge this security weakness: it is the result of trading

some security for greater ease of use.

Nevertheless, such abuse can easily be overcome by resetting

the meeting room SSID or WPA2 password via the

administration interface at the beginning of a critical meeting,

and then pairing only the Buttons present in the meeting room

during the meeting. This is why we strongly recommend not

extending access to the Base Unit USB ports beyond the

physical boundaries of the meeting room. Also, note that each

additional Button that shares content with the Base Unit

reveals the user on the central screen (i.e., the name of the

user as read from the operating system configuration).

The ClickShare system contains an extensive logging engine

(primarily using syslog) – each individual Button has a local log

file that logs operations executed on that particular Button, the

Base Units it has already been paired with, etc. The Base Unit

collects the log files from the Buttons connected to it. It also

has its own log file, which contains all Button actions as well as

administrator manipulations performed on the Base Unit.

In future versions, this will be replaced by the more secure HTTPS.

In future versions, to guard the system from being hacked by

dictionary trials, the Base Unit will not accept passwords that do not

fulfill certain minimum requirements. After 3 false attempts, the

administration interface will be blocked for 24 hours.

SECURE

MANAGEMENT

INTERFACES

EXTERNAL PARTIES

DISTURBING THE

MEETING

LOGGING

1 2 ... 8 9 10 11 12 13 14

Komentarze do niniejszej Instrukcji

Brak uwag

Barco ClickShare Instrukcja Użytkownika Strona 13

Komentarze do niniejszej Instrukcji

Powiązane produkty i podręczniki dla Nie Barco ClickShare