What are the security features of vConnect?
1 Like
The vConnect portal offers the following security based features.
| Feature | Description |
|---|---|
| Time-Synchronization Check | It checks the time difference between the device and server times. |
| Authentication Levels | It manages different levels of authentication. |
| IMEI (International Mobile Equipment Identity)/SIM Authentication | It enables IMEI number or SIM card type authentication. |
| Session Management | It maintains two types of sessions: Device Session and User Session. The device session is created after the app is installed on the device. The user session is created after the user logs in to the app. The scope of server side APIs is defined as a device session or a user session. If the scope of an API is defined as a user session and the API is invoked with the device session token, it cannot use the respective API. This feature configures the session timeout for the device session and user session. The inactive session timeout can also be configured. For instance: – If a user does not perform any activity for the last x minutes, the user session will automatically log out of the application. |
| Strong Encryption Algorithm | It offers different types of encryption mechanisms such as RSA, AES, RSA+AES, etc. |
| Different Level of Keys Management | It provides user key management and device key management. |
| Encrypted Request and Response Over Format | It encrypts all requests and responses that are transmitted between the front-end application and middleware system by using a RSA+AES key algorithm. |
| User Key Management and Rotation | Every user has different RSA and AES keys to encrypt the data. The rotation of the user-specific key is configured in vConnect. Each end-user request is authenticated by using a JWT (JSON Web Token). For a user or app, the keys can be rotated dynamically. |
| Data Masking | In the vConnect portal, this feature allows you to mask the information for security purposes. |
| PI Data Encryption | This feature allows you to encrypt the personal data by using a AES key. We can configure the JSON key’s name for encryption. |
| Digital Signing of Request/Response | This security feature digitally signs data that is transmitted between the application and middleware. During the data transmission, if any single byte of data is spoofed, the middleware system does not accept the data. |
| Unique Request ID | Every request that is posted to the middleware should have a unique request Id. If someone attempts to copy and paste the existing request, middleware will not validate the request. As a result of validation failure, it will return the error message. |
| Application Access Control | It remotely blocks the access to an application by configuring the application access on the vConnect portal. |
| IP Whitelisting/Filtering | If any application needs to work only on a specific IP address or a range of IP addresses, you can configure the IP address filtering/whitelisting property in the middleware. |
| Device and Login ID Binding | You can use this feature to configure a IMEI (Internation Mobile Equipment Identity) number. |
4 Likes