1. Tableau Server Help Documentation: The process for updating an air-gapped server follows the same principles as the initial installation. The documentation explicitly states that the installer must be downloaded on an internet-connected computer and then transferred to the offline computer. This manual transfer is a foundational step.
Source: Tableau Help
"Install Tableau Server in an Air-Gapped Environment
" Section: "Install or Upgrade Tableau Server." (This document outlines the necessity of downloading components on a connected machine and transferring them to the isolated environment).
2. National Institute of Standards and Technology (NIST): Security guidelines for high-impact systems
which are often air-gapped
emphasize controlled and manual maintenance procedures. The principle of vetting and manually transferring updates is a core tenet of maintaining isolated systems.
Source: NIST Special Publication 800-53
Revision 5
"Security and Privacy Controls for Information Systems and Organizations
" Control Family: MA (Maintenance)
specifically controls related to media protection and maintenance tools (MP-7
MA-4). These controls mandate strict procedures for introducing any external software/updates into a secure environment.
3. Academic Publication on Air-Gapped Security: Research on air-gap security consistently highlights the "human-in-the-loop" as the transfer mechanism for data and software
which must be a deliberate and audited process.
Source: Guri
M. (2020). Air-Gap Security. In: Jajodia
S.
Samarati
P.
Yung
M. (eds) Encyclopedia of Cryptography
Security and Privacy. Springer
Berlin
Heidelberg. (This encyclopedia entry discusses the fundamental nature of air gaps
where data transfer
including updates
is a highly controlled
non-networked process). DOI: https://doi.org/10.1007/978-3-642-27739-91514-1
