Security
HCL SafeLinx includes a range of options for configuring the security of your network, applications, and data.
Security tasks include configuring authentication, protecting network communications, and
controlling access.
- Authentication
- Authentication is the process of verifying the identity of a user at the other of a
communication link. The basic mechanism for authentication is the mutual presentation of a secret
key.
Authentication is automatically provided to connecting HTTP clients by the HTTP access service, and to SafeLinx Clients by the mobile access service. The SafeLinx Server can connect to a lightweight directory access protocol (LDAP) server or third-party remote authentication dial-in user service (RADIUS) server to authenticate users.
- Communication security
- To maintain data privacy during transmission, you can encrypt the connections between clients and the SafeLinx Server and between the SafeLinx Server and other network resources. Data encryption helps prevent unauthorized access to data by transforming data into an unintelligible form. The original data is transformed into encrypted data by using the session key that is exchanged during the authentication process. An authorized recipient can use the shared key to decrypt the transmission and read the original data. Encryption is optionally provided by the mobile access services to SafeLinx Clients.
- Access control
- The assurance that only users who are properly authorized can access data. A transport layer security (TLS) connection with the SafeLinx Server ensures that the communication link is securely accessed, confidential, and authorized.