OSDU Repo Scanning
Opportunity
OSDU repositories are open to 100s of personnel that can upload files and we cannot ensure the end user's device has an adequate virus/malware scanning solution. If malware is unknowingly (or knowingly) uploaded to an OSDU repository there isn't a mechanism in place to continuously scan for malicious documents. Not having a malware scanning solution in place can cause a virus to be propagated throughout the OSDU community.
Solution
Implement an anti-virus solution that will periodically scan files in OSDU repositories for malicious files.
Recommendation
- Tool: Leverage ClamAV for scanning all OSDU repos for viruses.
- Frequency: Daily partial scan of new files or modified files and weekly scan on all files.
- Reporting & Monitoring: OSDU InfoSec team will monitor "event" logs for detected malware.