Home
Software
Software Security
MR Cyber Security Manual
These procedures outline the configuration of a secure environment for your MR system.

Software
- Software Security
  - Data privacy
    Learn more about the system's controlled access and data privacy protections.
  - Logging in as Root
  - Login Screens (DV25.1 and later)
  - MR Cyber Security Manual
    These procedures outline the configuration of a secure environment for your MR system.
    - Setting the boot sequence
      These procedures apply to Dell T5810, Dell T5820, or HP Z420.
    - Setting or changing the BIOS password
      These procedures apply to Dell T5810, Dell T5820, or HP Z420.
    - Security levels
    - Security levels for software 29.0 and later
    - SSH hardening changes for MR 29 and later
      SSH hardening changes for MR 29 and later.
    - Product Network Filter (PNF) firewall
    - Importing and exporting TLS certificates
      A certificate or digital certificate is a unique, digitally signed document that identifies the identity of an individual or organization. Using public key cryptography, its authenticity can be verified to make sure the software or website you are using is legitimate.
    - Configure user accounts for Role Based access controls
    - Accessing the EA3 admin utility
      Accessing the EA3 admin utility.
    - MR customer password management process
    - Configuring DICOM networking (standard or DICOM over TLS)
      The DICOM network allows automatic download of exams or series to a selected node(s).
    - Installing antivirus software
    - Enterprise Audit Trail (EAT)-audit logging
      EAT allows for remote logging of system events.
    - Checking the SW Media integrity (Iso # Checksum)
  - Security levels
  - Service licensing
    Secure Service Access (SSA) is a secure service key platform for GE medical devices developed to improve the service license renewal and replacement processes.
  - Setting custom security settings
    These procedures outline BIOS setup and configuration, and user information for MR. This document was formally titled Setting custom security settings.
- Software Installation
- System Software
- Software Utilities

Discovery MR750w and SIGNA™ Architect T 3.0T System Service Methods
5690002-2EN Revision 4
Object ID: 00000018WIA30379450GYZ
Topic ID: id_2022711 Version: 2.15
Date: Oct 11, 2021 6:34:13 PM

MR Cyber Security Manual

Prerequisites


Personnel requirements
Required persons	Preliminary requirements	Procedure	Finalization
1	Variable timing based on facility security options desired	-	-

Note: All of the prerequisite requirements mentioned in table are based on customer’s choice of implementation either by choosing to implement the security feature or by ordering the applicable option keys for the feature.


Tools and test equipment
Item	Part number	Applicability
BIOS Password	-	All configurations
All EA3 Account Usernames, Roles, and Passwords	-	All configurations
ePO Server Details for McAfee Antivirus: Server name IP address Port number Username and password	-	DV26 and Software release 29 and later
Latest McAfee .dat file on a USB Note: This is the least preferred method for updating dat files. Use ePO server if available at site.	-	DV26 and Software release 29 and later
McAfee Antivirus Software	-	DV26
Antivirus option key	-	Software release 29 and later
Certificates as needed for TLS based secure communications	-	Software release 29 and later
IPv4/IPv6 Network Addresses Device IPv6 Address Note: Typically 2005::5/64 or can be a site custom address. Transformer IPv6 Address Note: Typically 2005::11/64 or can be a site custom address. Device IPv4 Address Note: Not applicable for IPv6-only networks. For mixed IPv6/IPv4 networks this is a site custom address. Transformer IPv4 Address Note: Not applicable for IPv6-only networks. For mixed IPv6/IPv4 networks this is a site custom address.	-	DV26
DICOM Destinations and Information	-	All configurations
VPN Software	-	DV26
Translated IPs	-	DV26


Safety
Before working in any GE Healthcare MR suite or performing any GE Healthcare service procedure, you must: Have read and understood all hazard conditions and safety requirements in the latest revision of the GE Healthcare MR Service Safety Manual (5452735). Have successfully completed all relevant GE Healthcare Environmental Health and Safety (EHS) courses (or for non-GE employees, equivalent workplace training courses). Comply with all site-specific training and workplace safety requirements. If you have any safety concerns at any time, do not begin work or immediately stop work and move to a safe location. Immediately contact your supervisor or site safety officer for instructions on how to proceed.

Procedure