Capabilities and Features: Security
Summary
eRealize® is designed to minimize risk and keep your information secure from prying eyes and technical failures. Our security measures allow you to focus on realizing the results that matter to your business.
Benefits
» |
Store information with confidence |
» |
Minimize the risk of compromising sensitive information |
Highlights
| Area |
Security Measures |
| Facilities Security |
- 24 hour surveillance
- On site security (badge, CCTV, locked doors)
- Multiple security measures ensure access to server room is limited to authorized individuals
- Multiple telecommunications providers serve facilities with diverse entrance routes
- State of the art cooling and dust extraction
- Redundant electricity sources
- Three utility grids fed from dual sub-stations
- UPS battery back-up
- Diesel generators (tested weekly)
|
| Operating System Security |
- Operating system access is limited to essential personnel
- Unnecessary services and protocols are disabled to limit points of access to servers
- Service updates and software patches are monitored to ensure vendor recommendations for performance and security are met or exceeded
|
| Network/Data Transmission Security |
- Firewalls protect all servers
- No direct access is allowed from the Internet to database servers
- Internet access to Web servers is limited to only two ports
- Redundant Internet backbone
- Administrative access is limited to predefined IP addresses
- Secure Sockets Layer (SSL) encryption protects Web page transmissions over the Internet
- Network traffic levels are monitored 24x7
|
| Database Security |
- Databases reside on dedicated servers for maximum performance, reliability and scaleability
- No direct database access is allowed from Internet
- Access to database server requires Windows 2000 Administrator login and password Passwords use highest possible security settings
|
| Customer Data Security |
- Data entered into eRealize® is owned by the customer
- Each customer accesses their own unique database- this minimizes potential security and performance issues
- Direct access to customer data is limited to essential employees, and granted only as required for customer requested support, monitoring or back up operations
|
| eRealize.net Service/User Level Security |
- User authentication requires correct login and password combination for access
- Strong password security can be required by customer administrators
- Passwords are stored using one way encryption
- Transmission is protected by SSL encryption
- Session cookies used to maintain session integrity contain no user information to ensure privacy
- User access permissions are set by the customer’s designated eRealize.net administrators
- Access to specific items in eRealize.net such as projects, activities, or missions can be set explicitly by the owner of the item
|
| Additional Security Measures |
- Redundant servers are available in the unlikely event of server failure
- Automatic “fail-over” protocols in place to ensure uninterrupted communications between users and Web servers
- Daily backups of data to tape media
- Virus prevention software protects servers
- Individual customer databases are backed up
- Pan Atlantic Software Inc. employee computers use firewalls and automatically lock when not in use
|
» Download in Adobe Acrobat Format
|
