Architecture security
Apteco software architecture means that all connection requests are managed by the FastStats Web Service, which authenticates, authorises, and records an audit trail of all user interactions.
Web service security features¶
- Password size and structure
- Password expiry and re-use timer
- Login retries / lock out
- Session expiry timer
- User identity encryption
- Suppress previous user / database names
- Minimum inbound connection from DMZ
- Case-sensitive usernames
- Non-reversible password hashing
- Generic failed login responses
- Session inactivity timer
- HTTPS / SSL connection
- Client certificates
- Suppress web service documentation
- Automatic audit trail of all user activity
Protecting the users of your system¶
The FastStats Web Service Configuration Utility provides additional security options. Open the FastStats Configurator, select Web Service > Security page for your system.
Database security¶
The FastStats database which powers the Apteco software portfolio includes the following data protection features:
- AES encryption of text fields
- Encrypted and zipped file transfer
- Per-variable control of selection, view, and export functions
- Activity logging
- Restrict access to tables / columns / rows
- Restrict access to tools and wizards
- Time of day and day of week extract limits
- A cumulative extraction limit
- Restrictions on export file types
- Disable copy and paste / transfer to Office