UC Berkeley security policy mandates that all devices connected to the UCB network comply with Minimum Security Standard for Networked Devices. The recommendations below are provided as optional guidance to assist with achieving the Anti-malware Software requirement.
For Microsoft Windows or Apple OSX devices for which anti-malware software is available, anti-malware software must be running and up-to-date. In addition, the software must run real-time scanning and/or scan the device regularly.
Background and description of riskMalware is short for “malicious software” and broadly describes all software that is designed to provide unauthorized access or perform unauthorized actions on a system. The impact of malware can range from minor system performance issues to complete hard drive deletion or even full, remote control of a system by an attacker. It is important to detect malware before it infects a system.
For institutionally-owned and managed devices:
For personal devices and un-managed institutionally-owned devices:
Current, manufacturer-supported versions of Windows 8 and higher, and Mac OS X operating systems contain built-in anti-malware protections that meet MSSND requirements. Personal devices and unmanaged institutionally-owned devices should be maintained at these operating system release levels. For Windows computers, be sure to confirm that Windows Defender is turned on.
While anti-malware software provides significant protection against malware of all types, it is not 100% effective. Requirement #9, “Privileged Accounts" provides additional protection against malware which may not be detected by anti-malware software.