Security

Dimensional Insight provides enhanced security features and encryption for information that is shared between the client/server module, and the client software (DivePort, ProDiver, and NetDiver). DI security tools enable companies to provide safe and secure data access to employees, suppliers and customers, wherever they may be.

Controlling Access to Data

Only users who have been authenticated can view data, and they can only view data that they have been given explicit permission to view. This access control provides the necessary flexibility to allow users and groups of users to view specific Dimensions, summary columns, or any combination as required. Access is controlled via a centralized Access Control List (ACL) which specifies the user or groups of users and the combinations of access allowed.

  • Access control by Model: Each Model, or groups of Models, can be restricted by user, or groups of users.
  • Access control by Dimension: Each Dimension can be deleted (Dimension does not appear at all) or restricted (only certain dimension values appear). The Model behaves as if eliminated data does not exist (summaries do not include the eliminated data values.)
  • Access control by Summary: Each set of Summary data can be included or hidden.
  • Multiple Dimensions and Summaries can be restricted and/or deleted.

User Authentication

Once access control is defined, a method of user authentication must be selected.

  • Administrators may define groups of users.
  • Access control is handled by user or by group.
  • Access control is unique to each user/group. One user or group may have different access than other users or groups.
  • Access control is completely centralized and utilizes your existing security database.

Encryption Capabilities

DI products use the Secure Socket Layer (SSL) protocol to encrypt all traffic between the server and the clients. SSL, used by banks and websites world wide, uses a cryptographic system that uses two keys to encrypt data – a public key known to everyone and a private key known only to the recipient of the data. The public key length is variable and the symmetric cipher is negotiated between client and server (RC4 minimum 128 bit, with no upward limit). Therefore, your sensitive information will be well protected from system intruders.