SuperMap GIS system security |
Generally, the security of the system should include three aspects:
For a GIS service system, the following aspects should be secured:
For the entire GIS system security considerations, the four products, iServer, iPortal, iEdge, iManager use mutually compatible universal security scheme to guarantee the security of GIS sytem, GIS data, GIS services. It includes:
It means to protect the system from physical attacks and malicious network's damage by physical security, software upgrades, virus protection and regular backup measures . To protect the software and hardware through the existing security architecture, for instance, block malicious Internet users to access the local network through firewall. Besides, preventing malicious interception of user name and password by encrypting communication via HTTPS, encrypting data via SSL.
It uses encryption to secure the 2D and 3D cache data .
It uses encrypting 3D data before publishing 3D services to ensure the secure access and data reusability after publishing.
It provides administrator account to ensure only the administrator can perform publishing, modification, and deletion operations.
And it records all the managing operations of services on logs.
iServer WebManager provides security module to allow users to implement the access control on services through user identity authentication and authorization.
It supports CAS single sign-on, third-party user systems such as LDAP, OAuth 2.0 protocol, third-party security framework.