Minimum requirements for the SecureDrop environment¶

  • The Application and Monitor Servers should be dedicated physical machines, not virtual machines.
  • A trusted location to host the servers. The servers should be hosted in a location that is owned or occupied by the organization to ensure that their legal department can not be bypassed with gag orders.
  • The SecureDrop servers should be on a separate internet connection or completely segmented from the corporate network, such as a dedicated subnet with DENY rules for all traffic to and from the corporate LAN.
  • All traffic from the corporate network should be blocked at the SecureDrop’s point of demarcation.
  • Video monitoring should be recorded of the server area and the organizations safe.
  • Journalists should ensure that while using the air-gapped viewing station they are in an area without video cameras.
  • An established monitoring plan and incident response plan. Who will receive the OSSEC alerts and what will their response plan be? These should cover technical outages and a compromised environment plan.