Home
Software
Software Security
MR Cyber Security Manual
These procedures outline the configuration of a secure environment for your MR system.

Software
- Software Security
  - Logging in as Root
  - Setting custom security settings
    These procedures outline BIOS setup and configuration, and user information for MR. This document was formally titled Setting custom security settings.
  - Importing and exporting TLS certificates
    A certificate or digital certificate is a unique, digitally signed document that identifies the identity of an individual or organization. Using public key cryptography, its authenticity can be verified to make sure the software or website you are using is legitimate.
  - Configure user accounts for Role Based access controls
  - Configuring DICOM networking (standard or DICOM over TLS)
    The DICOM network allows automatic download of exams or series to a selected node(s).
  - Installing antivirus software
  - MR customer password management process for software 29.0 and later
  - MR Cyber Security Manual
    These procedures outline the configuration of a secure environment for your MR system.
    - SSH hardening changes for MR 29 and later
      SSH hardening changes for MR 29 and later.
    - Configure user accounts for Role Based access controls
    - Accessing the EA3 admin utility
      Accessing the EA3 admin utility.
    - Enterprise Audit Trail (EAT)-audit logging
      EAT allows for remote logging of system events.
- Software Installation
- System Software
- Software Utilities

SIGNA™ Hero 3.0T Service Methods
5852800-8EN Revision 1.0
Object ID: 00000018WIA30379450GYZ
Topic ID: id_2022711 Version: 2.15
Date: Oct 11, 2021 6:34:13 PM

MR Cyber Security Manual

Prerequisites


Personnel requirements
Required persons	Preliminary requirements	Procedure	Finalization
1	Variable timing based on facility security options desired	-	-

Note: All of the prerequisite requirements mentioned in table are based on customer’s choice of implementation either by choosing to implement the security feature or by ordering the applicable option keys for the feature.


Tools and test equipment
Item	Part number	Applicability
BIOS Password	-	All configurations
All EA3 Account Usernames, Roles, and Passwords	-	All configurations
ePO Server Details for McAfee Antivirus: Server name IP address Port number Username and password	-	Software release 29 and later
Latest McAfee .dat file on a USB Note: This is the least preferred method for updating dat files. Use ePO server if available at site.	-	Software release 29 and later
Antivirus option key	-	Software release 29 and later
Certificates as needed for TLS based secure communications	-	Software release 29 and later
DICOM Destinations and Information	-	All configurations


Safety
Before working in any GE Healthcare MR suite or performing any GE Healthcare service procedure, you must: Have read and understood all hazard conditions and safety requirements in the latest revision of the GE Healthcare MR Service Safety Manual (5452735). Have successfully completed all relevant GE Healthcare Environmental Health and Safety (EHS) courses (or for non-GE employees, equivalent workplace training courses). Comply with all site-specific training and workplace safety requirements. If you have any safety concerns at any time, do not begin work or immediately stop work and move to a safe location. Immediately contact your supervisor or site safety officer for instructions on how to proceed.

Procedure