Elekta product security

Anti-malware policy

Introduction

Malicious software (or malware) is software that can get on a computer and cause damage to the computer or the data on it. Malware can include computer viruses, worms, Trojan horses (Trojans), spyware, and rootkits.

Policy

Elekta软件在Microsoft Windows或GNU / Linux操作系统上运行。Elekta建议您在治疗交付套件（TDS）中的计算机上没有安装反恶意软件软件¹。在TDS中计算机上的软件的设计包括一些保护恶意软件污染的保护。Elekta建议您从同一网络上的计算机中从计算机中的临床时间内检查TDS中的计算机。如果您在TDS中的计算机上找到恶意软件，请隔离计算机并再次安装操作系统和软件。

建议使用在TD中不在TDS的计算机上的反恶意软件软件的安装。

ELEKTA反恶意软件策略提供了有关来自网络连接或存储设备和介质的恶意软件污染的信息。该策略还包括有关使用反恶意软件软件时可能发生的问题的信息。此页面包含在此页面有两个表，其中包含Elekta软件列表，其适用的操作系统升级保护和政策。

Network connection

In some installations, Elekta software connects to the same networks as other computers that connect to the Internet. This network connection increases the risk of contamination from malware. Elekta recommends that you use a VLAN, with no other connected computers, for computers in the TDS. We can then keep the applicable ports for some interfaces open, for example, DICOM from a treatment planning system.

Elekta软件的最大风险来自与您用来阅读电子邮件的同一网络上的其他计算机，或者转到可能导致这些计算机上的恶意软件污染的网站，随后，其他连接的计算机。因此，Elekta建议您：

• 不要在TDS中使用计算机上的电子邮件或互联网软件
• Do not connect portable computers to the network
• Where applicable, run Elekta software from a user account that does not have administrator user rights.

当t恶意污染的风险减少he malware tries to run on an account that does not have administrator user rights. If the malware runs on a user account without administrator user rights, the malware cannot change system files and settings. The design of Elekta software is such, that it is not necessary to use administrator user rights for the usual operation of the software.

通常，Internet Explorer和Outlook Express是Microsoft Windows的标准部分。但在TDS中大多数计算机上，我们使用使用Internet Explorer和Outlook Express的安装CD。如果适用，Elekta确实使用操作系统中的安全功能，例如Windows防火墙。

Storage devices and media

所有计算机都面临恶意软件污染的风险，例如，CD-ROM，DVD-ROM，USB硬盘和USB闪存驱动器。Elekta建议您检查存储设备和媒体，以获取恶意软件，并在使用TDS中计算机上的设备或介质之前删除恶意软件。

Windows XP和稍后的版本降低了USB设备的恶意软件污染的风险。在连接USB设备时，这些版本中的自动播放功能不会自动启动程序，而无需您的批准。只有在打开或运行包含危险数据的文件时，才能发生来自存储设备或介质的恶意软件污染。

Operating system upgrades

Elekta不会让您在TD中的计算机上安装操作系统安全升级，因为：

• Installation of these upgrades can change operating system files that can have an effect on the operation of the TDS computer.
• Elekta must make sure that the computers in the TDS which are delivered to its customers have a stable configuration.

Note: The warranty on computers in the TDS states that you must not make changes to the configuration, without the correct authority of the manufacturer²。Elekta will not be responsible for any unauthorized changes in configuration or their effect on patient safety.

Anti-malware software problems

运行反恶意软件软件的系统中可能发生的问题如下。

• Decreased performance
  In real time, it is possible that the anti-malware software scans all opened or run files, all received network packets, and all received e-mail and IRC messages. All malware scans (those done automatically in real time, and those done by the user) use processing time, hard disk access, and memory. Malware scans can cause unsatisfactory performance of the computers in the TDS. This decrease in performance can cause abnormal termination of treatment delivery, but it will not have an effect on the beam quality or safety.
• Changes in file location
  Most anti-malware software will change or move files that contain dangerous data to a safe location on the hard disk. If the software moves or changes a file that is necessary for the operation of a computer in the TDS, it can prevent correct operation or cause full system failure.
• 报告不正确
  Anti-malware software can give incorrect reports of dangerous files, and change or move these files incorrectly. This can also prevent correct operation or cause full system failure. It is important, therefore, that you update the malware database in the anti-malware software regularly.
• Scheduled backup failures
  During backup, it is possible that the anti-malware software incorrectly finds files with dangerous data. The software changes or moves these files, which can cause a failure in the backup of the files, or a failure of the scheduled backup.
• Blocked network ports
  The firewall functions in the anti-malware software can make it necessary for the system administrator to open some ports for communication from other systems. This can prevent or decrease communication between the computers in the TDS or other Elekta systems (or systems from other manufacturers) on the network. And some functions, such as DICOM, backup and restore, and IntelliMax™ will not operate correctly.

Elekta software protection level

遵循的表显示Elekta软件，具有适用的保护水平。

表1：Windows操作系统上的Elekta软件

Table 2: Elekta products on GNU/Linux operating systems

Elekta Software

Elekta软件建议其客户使用以下信息来对其软件进行抗动软件保护作出决定。

• Elekta recommends that updates to operating systems or third-party programs must first have non-clinical tests of the upgraded system in a test environment. For some updates, Software Support will know if they cause problems or prevent correct operation. Contact Software Support for more information and a list of known updates that cause problems.
• Only install software updates without validation to third-party programs if the update decreases the risk to operation.
• 在更新操作系统或第三方计划之后，对更新具有效果的每个程序进行适用的非临床测试。确保每个程序正常运行。在可能的情况下，在测试环境中进行测试。联系软件支持以帮助设置测试环境的配置。
• Most anti-malware software can have a negative effect on system performance. Elekta recommends that you disable real-time malware scans and set all malware scans to run during non-clinical hours. If you must do real-time scans, contact Software Support for more information.

1. A treatment delivery suite (TDS) contains all computers connected to a Digital Accelerator, for example, Desktop Pro™, iViewGT™, XVI, MOSAIQ SEQUENCER™.

2. FDA，工业指南，网络医疗设备的网络安全，包含现成的现成（OTS）软件，2005年1月14日。

注意：Elekta将定期更新此策略，其中包含其他Elekta软件的信息，包括治疗计划系统（TPS）。