Skip to content

Commit cfd00c9

Browse files
link to Azure compl, reco for aad sec
1 parent 4377dbb commit cfd00c9

File tree

1 file changed

+4
-2
lines changed

1 file changed

+4
-2
lines changed

articles/digital-twins/security-best-practices.md

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -7,7 +7,7 @@ manager: bertvanhoof
77
ms.service: digital-twins
88
services: digital-twins
99
ms.topic: conceptual
10-
ms.date: 11/19/2019
10+
ms.date: 01/14/2020
1111
---
1212

1313
# Azure Digital Twins security best practices
@@ -35,6 +35,7 @@ Some key practices to safely secure your IoT devices include:
3535
> * Limit I/O and device bandwidth to improve performance. Rate-limiting can improve security by preventing denial-of-service attacks.
3636
> * Keep device firmware, operating system, and software up to date.
3737
> * Periodically audit and review device, software, network, and gateway security best practices as they continue to improve and evolve.
38+
> * Use [trusted, certified, and compliant](https://azure.microsoft.com/overview/trusted-cloud/compliance/) security systems, software, and devices.
3839
3940
Some key practices to safely secure an IoT space include:
4041

@@ -64,6 +65,7 @@ Azure Digital Twins uses [Azure Active Directory](https://docs.microsoft.com/azu
6465
> * Verify the length of time a token is valid and whether a token remains valid.
6566
> * Set appropriate lengths of time that tokens are valid for.
6667
> * Refresh expired tokens.
68+
> * Remove unused **Redirect URIs** and permissions.
6769
6870
## Role-based access control best practices
6971

@@ -75,4 +77,4 @@ Azure Digital Twins uses [Azure Active Directory](https://docs.microsoft.com/azu
7577

7678
* To learn about role-based access control, read [Role-based access control](./security-role-based-access-control.md).
7779

78-
* To learn about authentication, read [Authenticate with APIs](./security-authenticating-apis.md).
80+
* To learn about authentication, read [Authenticate with APIs](./security-authenticating-apis.md).

0 commit comments

Comments
 (0)