Shared workspace endpoints are physically protected from tampering with or removing the hardware.
Specification
Public and/or shared workspaces are periodically reimaged, and do not have autologon.
Browsers on public workspaces delete all cookies and session information when the browser is closed.
Possible measures:
- Hardening (no unnecessary services are running)
- No network access (only for internet access - browsing and email or via VPN with authentication)
- Possibly blocking usb ports
- Up-to-date anti-malware
ISO 27001 & 27002:2022
-
SURF toetsingskader informatiebeveiliging (NBA-volwassenheidsmodel)
SM.03 Mobiele apparaten en telewerken