HEALTHCARE Technical Bulletin

Global Services Organisation

Title

Policy on Use of Anti-Virus Software

Bulletin Information

Bulletin Information Regional Classification Urgency

Applicability

Bulletin Number 2004-05-11 [ x ] Americas [ ] Mandatory – Safety Related [ x ] Immediately

Original Author B. Amil [ x ] EMEA [ ] Mandatory – For Affected Systems [ ] Next Service

Reviewer J. Saba [ x ] AS/PAC [ x ] Recommended [ ] In Case of Failure

Category Security (General) [ ] Information only [ ] As Required

Document Type Customer Bulletin [ ] Not Applicable

Affected Systems All Windows NT & 2000 Systems

Revision History

Revision Changes Date Author Approver

F Updated Bulletin and Moved to MedNet May 11, 2004 J.S. J. Saba

E Replaced Norton/Symantec Anti-Virus Installation Aug. 21, 2003 B. A. J. Saba

Procedure with updated version. Added systems to the
Norton/Symantec validated column.

D Replaced Norton Anti-Virus Installation Procedure Dec. 2, 2002 J. Saba J. Saba

(Originally provided by Integration Engineering -
Glasgow) with an abridged version {See Revision History
inside document for details}

C Added further clarification regarding maintenance policies Oct. 14, 2002 B. Amil J. Saba
for Anti Virus Software. For the purpose of updating the
Anti-Virus software, Agfa Field Service shall point the
software to whichever source is requested by the
customer {see below for details} and advise the customer
of their responsibilities toward the AntiVirus software.

B Added information about the support of Norton AntiVirus Aug. 26, 2002 B. Amil J. Saba

A Initial Release Sept. 21, 2001 B. Amil J. Saba

1 INTRODUCTION
The purpose of this bulletin is to outline Agfa’s policy on the use of AntiVirus Software.

2 OBTAINING THE NECESSARY SOFTWARE

Agfa has chosen not to package any one particular AV software with its product. The reason for
this is that 80% of the AV market is split between two major players: Norton & McAfee. To endorse

Copyright © 2004 Agfa Corporation

CONFIDENTIALITY NOTE:
This document contains information that may be confidential, protected by applicable legal privileges, or constitute non-public information.
It is intended to be conveyed only to the designated recipient(s).
Use, dissemination, distribution or reproduction of this bulletin by unauthorized personnel is not authorized and may be unlawful.

DOCUMENT CONTROL NOTE:

The version of this document which resides on MedNet is the controlled version.
Any printed copy of this document is uncontrolled and should be disposed of within 24 hours.

Agfa Company Confidential

Bulletin No. Technical Bulletin

one of these would mean that it will not be acceptable to almost 50% of our customers. Instead,
we have "validated the use of" Norton & McAfee. That is, if the customers (who usually have an
Enterprise license to one or the other) provide us with the software, we will assist with the
installation & configuration of the software.

3 PREREQUISITES
• Licensed Copy of Anti-Virus Software
o McAfee Virus Shield/NetShield Version 4.5 or higher
o Symantec/Norton Anti-Virus 8.1 or higher
• Shut down all Agfa Impax/ADC software

4 Software Installation, Configuration, and Maintenance

It is recommended that the following procedure be executed by an Agfa Field Engineer.

4.1 Software Installation

Install the Anti-Virus Software according to the installation procedures outlined in the OEM’s
installation manual.

Durring the installation You will arrive at a screen that asks you to accept a default file scanning
profile. At this point it is important that you make sure you are not scanning ALL file types and that
you are scanning only inbound files.

4.2 File Scanning

Attention

Improper file scanning policies can cause performance problems. It is critical that specified
application files be excluded from the scanning process. Failure to exclude the specified files may
cause systems to become unstable and in extreme cases may cause data loss

File extensions to be excluded from scanning:

Impax Enterprise and Basix: .dcm
Agfa ADC systems: .dcm
Agfa WEB1000: .dcm .wvl .jpg .mpg
Agfa Talk Server and Talk Stations: .voc

4.3 Scan Time

Hint - As a scan can take a fair amount of time, be sure to schedule scans at off-peak hours.

Copyright © 2004 Agfa Corporation

CONFIDENTIALITY NOTE:
This document contains information that may be confidential, protected by applicable legal privileges, or constitute non-public information.
It is intended to be conveyed only to the designated recipient(s).
Use, dissemination, distribution or reproduction of this bulletin by unauthorized personnel is not authorized and may be unlawful.

DOCUMENT CONTROL NOTE:

The version of this document which resides on MedNet is the controlled version.
Any printed copy of this document is uncontrolled and should be disposed of within 24 hours.

Agfa Company Confidential Page 2 of 3

Bulletin No. Technical Bulletin

4.4 Scan Frequency

Agfa recomends a daily scan of all files at off peak hours.
Agfa strongly discurages configuration of Agfa systems as a product antivirus server. By server
we mean that the system acts as a controller for the various antivirus clients deployed at the site.
Running in antivirus server role will adversely affect the performance of your system.

4.5 Maintenance of Anti-Virus Software

Attention – It is recommended that Internet Access be disabled from as many machines as possible.

Anti-Virus software is only as good as it's most recent update. For this, we recommend one of two
methods:

1) That the hospital set up a single server that accesses the Internet for the latest DAT files and
that this server be the one that distributes the DAT files to the internal machines. We do NOT
recommend that every machine have its own Internet access.

Local Antivirus
Antivirus
antivirus vendor
host
server

2) Hospital IT personnel can burn the latest DAT files to a CD and manually distribute them to all
machines.

5 VERIFICATION

Post Installation testing.

Norton recomends testing the installation. You can test the ability of your software to detect a virus
by downloading a “test virus”. This file is harmless and designed only to test the capabilities of the
antivirus software. It can be downloaded from http://eicar.org. The filename is eicar.com. It is not a
virus but it will be detected as the EICAR Test String.70 virus. Be sure to turn off “realtime” file
protection temporarily before saving the file and to turn it back on for the test.

6 KEY WORDS
AntiVirus, Anti-Virus, AV, Norton, McAfee

Copyright © 2004 Agfa Corporation

CONFIDENTIALITY NOTE:
This document contains information that may be confidential, protected by applicable legal privileges, or constitute non-public information.
It is intended to be conveyed only to the designated recipient(s).
Use, dissemination, distribution or reproduction of this bulletin by unauthorized personnel is not authorized and may be unlawful.

DOCUMENT CONTROL NOTE:

The version of this document which resides on MedNet is the controlled version.
Any printed copy of this document is uncontrolled and should be disposed of within 24 hours.

Agfa Company Confidential Page 3 of 3