OpenAccess SDK supports security mechanisms for the following purposes:
Verification of a user by the OpenAccess SDK Server. The Authentication security mechanism allows the OpenAccess SDK Server to verify the identity of the user.
Defining the types of requests that are accepted by the server. The Authorization security mechanism controls whether the user can send data access requests and administrative (OpenAccess SDK Manager) requests. Server configuration settings determine whether the server can accept the requests.
Connection to a data store using the following security mechanisms:
Data Store Logon controls whether a user who is connected to the OpenAccess SDK Server can connect to the data store.
Application IDs control whether a client application can connect to the data store. This mechanism adds a layer of security on top of Data Store Logon.
TCP/IP Location Filters control whether a client application can connect to the data store based on the TCP/IP network identifier from which the connection request originates.
Defining the types of SQL statements accepted by the data store. The ReadOnly security mechanism controls whether the data store connection is read-only.
The privacy of the data being transmitted. The data privacy security mechanism ensures that data transmitted between the client and server is kept private using SSL for data encryption.
Verification of a user by the OpenAccess SDK Server. The Authentication security mechanism allows the OpenAccess SDK Server to verify the identity of the user.
