SuperMap GIS system security

Feedback


Basic approach

Generally, the security of the system should include three aspects:

For a GIS service system, the following aspects should be secured:

Security mechanism

For the entire GIS system security considerations, the four products, iServer, iPortal, iEdge, iManager use mutually compatible universal security scheme to guarantee the security of GIS sytem, GIS data, GIS services. It includes:

  1. Securing system

It means to protect the system from physical attacks and malicious network's damage by physical security, software upgrades, virus protection and regular backup measures . To protect the software and hardware through the existing security architecture, for instance, block malicious Internet users to access the local network through firewall. Besides, preventing malicious interception of user name and password by encrypting communication via HTTPS, encrypting data via SSL.

  1. Securing GIS data

It uses encryption to secure the 2D and 3D cache data .

It uses encrypting 3D data before publishing 3D services to ensure  the secure access and data reusability after publishing.

  1. Securing GIS service management

It provides administrator account to ensure only the administrator can perform publishing, modification, and deletion operations.

And it records all the managing operations of services on logs.

  1. Securing GIS services

iServer WebManager provides security module to allow users to implement the access control on services through user identity authentication and authorization.

  1. Securing integrated system

It supports CAS single sign-on, third-party user systems such as LDAP, OAuth 2.0 protocol, third-party security framework.